Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
discovery vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-1245
It exists that the zebra daemon in Quagga prior to 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor Discovery messages. The root cause was relying on BUFSIZ to be compatible with a message size; however, BUFSIZ is system-dependent.
Quagga Quagga
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2016-9361
An issue exists in Moxa NPort 5110 versions before 2.6, NPort 5130/5150 Series versions before 3.6, NPort 5200 Series versions before 2.8, NPort 5400 Series versions before 3.11, NPort 5600 Series versions before 3.7, NPort 5100A Series & NPort P5150A versions before 1.3, NPo...
Moxa Nport 5100 Series Firmware
Moxa Nport 5200 Series Firmware
Moxa Nport 5400 Series Firmware
Moxa Nport 5600 Series Firmware
Moxa Nport 5100a Series Firmware
Moxa Nport P5150a Series Firmware
Moxa Nport 5200a Series Firmware
Moxa Nport 5x50a1-m12 Series Firmware
Moxa Nport 5600-8-dtl Series Firmware
Moxa Nport 6100 Series Firmware
2 Metasploit modules
9.8
CVSSv3
CVE-2016-3236
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandles proxy discovery, which allows remot...
Microsoft Windows 7
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1511
Microsoft Windows 10 -
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
9.8
CVSSv3
CVE-2016-4368
HPE Universal CMDB 10.0 up to and including 10.21, Universal CMDB Configuration Manager 10.0 up to and including 10.21, and Universal Discovery 10.0 up to and including 10.21 allow remote malicious users to execute arbitrary commands via a crafted serialized Java object, related ...
Hp Universal Cmbd Foundation 10.20
Hp Universal Cmbd Foundation 10.11
Hp Universal Cmbd Foundation 10.10
Hp Universal Cmbd Foundation 10.01
Hp Universal Cmbd Foundation 10.0
Hp Universal Cmbd Foundation 10.21
Hp Universal Cmbd Configuration Manager 10.10
Hp Universal Cmbd Configuration Manager 10.11
Hp Universal Cmbd Configuration Manager 10.20
Hp Universal Cmbd Configuration Manager 10.21
Hp Universal Cmbd Configuration Manager 10.01
Hp Universal Cmbd Configuration Manager 10.0
Hp Universal Discovery 10.11
Hp Universal Discovery 10.20
Hp Universal Discovery 10.21
Hp Universal Discovery 10.01
Hp Universal Discovery 10.0
Hp Universal Discovery 10.10
9.4
CVSSv3
CVE-2021-32642
radsecproxy is a generic RADIUS proxy that supports both UDP and TLS (RadSec) RADIUS transports. Missing input validation in radsecproxy's `naptr-eduroam.sh` and `radsec-dynsrv.sh` scripts can lead to configuration injection via crafted radsec peer discovery DNS records. Use...
Uninett Radsecproxy
Fedoraproject Fedora 33
Fedoraproject Fedora 34
9.1
CVSSv3
CVE-2022-1399
An Argument Injection or Modification vulnerability in the "Change Secret" username field as used in the Discovery component of Device42 CMDB allows a local malicious user to run arbitrary code on the appliance with root privileges. This issue affects: Device42 CMDB ver...
Device42 Cmdb
9.1
CVSSv3
CVE-2018-3100
Vulnerability in the Oracle Business Process Management Suite component of Oracle Fusion Middleware (subcomponent: Process Analysis & Discovery). Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnera...
Oracle Business Process Management Suite 12.1.3.0.0
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Business Process Management Suite 11.1.1.7.0
Oracle Business Process Management Suite 12.2.1.2.0
Oracle Business Process Management Suite 11.1.1.9.0
8.8
CVSSv3
CVE-2023-47142
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0 up to and including 7.3.0.10 could allow an attacker on the organization's local network to escalate their privileges due to unauthorized API access. IBM X-Force ID: 270267.
Ibm Tivoli Application Dependency Discovery Manager
8.8
CVSSv3
CVE-2023-45230
EDK2's Network Package is susceptible to a buffer overflow vulnerability via a long server ID option in DHCPv6 client. This vulnerability can be exploited by an malicious user to gain unauthorized access and potentially lead to a loss of Confidentiality, Integrity and/or Av...
Tianocore Edk2
8.8
CVSSv3
CVE-2023-45234
EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Servers option from a DHCPv6 Advertise message. This vulnerability can be exploited by an malicious user to gain unauthorized access and potentially lead to a loss of Confidentialit...
Tianocore Edk2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »