Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dragonfly dragonfly vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-33564
An argument injection vulnerability in the Dragonfly gem prior to 1.4.0 for Ruby allows remote malicious users to read and write to arbitrary files via a crafted URL when the verify_url option is disabled. This may lead to code execution. The problem occurs because the generate a...
Dragonfly Project Dragonfly
3 Github repositories
9.1
CVSSv3
CVE-2021-33473
An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows malicious users to read and write arbitrary files when the verify_url option is disabled. This vulnerability is exploited via a crafted URL.
Dragonfly Project Dragonfly 1.3.0
8.8
CVSSv3
CVE-2021-39300
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
Hp Z1 Entry Tower G5 Workstation Firmware
Hp Z1 Entry Tower G6 Workstation Firmware
Hp Z1 G8 Tower Desktop Pc Firmware
Hp Z4 G4 Workstation (core-x) Firmware
Hp Z4 G4 Workstation (xeon W) Firmware
Hp Z6 G4 Workstation Firmware
Hp Z8 G4 Workstation Firmware
Hp Engage Flex Mini Retail System Firmware
Hp Mp9 G4 Retail System Firmware
Hp Elite Dragonfly Firmware
Hp Elite Dragonfly G2 Firmware
Hp Elite Dragonfly Max Firmware
Hp Elite X2 1013 G3 Firmware
Hp Elite X2 G4 Firmware
Hp Elite X2 G8 Tablet Firmware
Hp Elitebook 1050 G1 Firmware
Hp Elitebook 830 G5 Firmware
Hp Elitebook 830 G6 Firmware
Hp Elitebook 830 G7 Firmware
Hp Elitebook 830 G8 Firmware
Hp Elitebook 836 G5 Firmware
Hp Elitebook 836 G6 Firmware
8.8
CVSSv3
CVE-2021-39301
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
Hp Z1 Entry Tower G5 Workstation Firmware
Hp Z1 Entry Tower G6 Workstation Firmware
Hp Z1 G8 Tower Desktop Pc Firmware
Hp Z4 G4 Workstation (core-x) Firmware
Hp Z4 G4 Workstation (xeon W) Firmware
Hp Z6 G4 Workstation Firmware
Hp Z8 G4 Workstation Firmware
Hp Engage Flex Mini Retail System Firmware
Hp Mp9 G4 Retail System Firmware
Hp Elite Dragonfly Firmware
Hp Elite Dragonfly G2 Firmware
Hp Elite Dragonfly Max Firmware
Hp Elite X2 1013 G3 Firmware
Hp Elite X2 G4 Firmware
Hp Elite X2 G8 Tablet Firmware
Hp Elitebook 1050 G1 Firmware
Hp Elitebook 830 G5 Firmware
Hp Elitebook 830 G6 Firmware
Hp Elitebook 830 G7 Firmware
Hp Elitebook 830 G8 Firmware
Hp Elitebook 836 G5 Firmware
Hp Elitebook 836 G6 Firmware
8.8
CVSSv3
CVE-2021-39297
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
Hp 260 G3 Desktop Mini Pc Firmware
Hp Elitedesk 800 35w G4 Desktop Mini Pc Firmware
Hp Elitedesk 800 65w G4 Desktop Mini Pc Firmware
Hp Elitedesk 800 95w G4 Desktop Mini Pc Firmware
Hp Elitedesk 800 G4 Small Form Factor Pc Firmware
Hp Elitedesk 800 G4 Tower Pc Firmware
Hp Elitedesk 800 G4 Workstation Edition Firmware
Hp Elitedesk 800 G5 Desktop Mini Pc Firmware
Hp Elitedesk 800 G5 Small Form Factor Pc Firmware
Hp Elitedesk 800 G5 Tower Pc Firmware
Hp Elitedesk 800 G6 Desktop Mini Pc Firmware
Hp Elitedesk 800 G6 Small Form Factor Pc Firmware
Hp Elitedesk 800 G6 Tower Pc Firmware
Hp Elitedesk 800 G8 Desktop Mini Pc Firmware
Hp Elitedesk 800 G8 Small Form Factor Pc Firmware
Hp Elitedesk 800 G8 Tower Pc Firmware
Hp Elitedesk 805 G6 Desktop Mini Pc Firmware
Hp Elitedesk 805 G6 Small Form Factor Pc Firmware
Hp Elitedesk 805 G8 Desktop Mini Pc Firmware
Hp Elitedesk 805 G8 Small Form Factor Pc Firmware
Hp Elitedesk 880 G4 Tower Pc Firmware
Hp Elitedesk 880 G5 Tower Pc Firmware
8.8
CVSSv3
CVE-2021-39298
A potential vulnerability in AMD System Management Mode (SMM) interrupt handler may allow an attacker with high privileges to access the SMM resulting in arbitrary code execution which could be used by malicious actors to bypass security mechanisms provided in the UEFI firmware.
Hp Z1 Entry Tower G5 Workstation Firmware
Hp Z1 Entry Tower G6 Workstation Firmware
Hp Z1 G8 Tower Desktop Pc Firmware
Hp Z4 G4 Workstation (core-x) Firmware
Hp Z4 G4 Workstation (xeon W) Firmware
Hp Z6 G4 Workstation Firmware
Hp Z8 G4 Workstation Firmware
Hp Engage Flex Mini Retail System Firmware
Hp Mp9 G4 Retail System Firmware
Hp Elite Dragonfly Firmware
Hp Elite Dragonfly G2 Firmware
Hp Elite Dragonfly Max Firmware
Hp Elite X2 1013 G3 Firmware
Hp Elite X2 G4 Firmware
Hp Elite X2 G8 Tablet Firmware
Hp Elitebook 1050 G1 Firmware
Hp Elitebook 830 G5 Firmware
Hp Elitebook 830 G6 Firmware
Hp Elitebook 830 G7 Firmware
Hp Elitebook 830 G8 Firmware
Hp Elitebook 836 G5 Firmware
Hp Elitebook 836 G6 Firmware
8.8
CVSSv3
CVE-2021-39299
Potential vulnerabilities have been identified in UEFI firmware (BIOS) for some PC products which may allow escalation of privilege and arbitrary code execution.
Hp Elite Dragonfly Firmware
Hp Elite Dragonfly G2 Firmware
Hp Elite Dragonfly Max Firmware
Hp Elite X2 1013 G3 Firmware
Hp Elite X2 G4 Firmware
Hp Elite X2 G8 Tablet Firmware
Hp Elitebook 1050 G1 Firmware
Hp Elitebook 830 G5 Firmware
Hp Elitebook 830 G6 Firmware
Hp Elitebook 830 G7 Firmware
Hp Elitebook 830 G8 Firmware
Hp Elitebook 836 G5 Firmware
Hp Elitebook 836 G6 Firmware
Hp Elitebook 840 Aero G8 Firmware
Hp Elitebook 840 G5 Firmware
Hp Elitebook 840 G5 Healthcare Edition Firmware
Hp Elitebook 840 G6 Firmware
Hp Elitebook 840 G6 Healthcare Edition Firmware
Hp Elitebook 840 G7 Firmware
Hp Elitebook 840 G8 Firmware
Hp Elitebook 840r G4 Firmware
Hp Elitebook 846 G5 Firmware
8.1
CVSSv3
CVE-2019-9497
The implementations of EAP-PWD in hostapd EAP Server and wpa_supplicant EAP Peer do not validate the scalar and element values in EAP-pwd-Commit. This vulnerability may allow an malicious user to complete EAP-PWD authentication without knowing the password. However, unless the cr...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
8.1
CVSSv3
CVE-2019-9498
The implementations of EAP-PWD in hostapd EAP Server, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. An attacker may be able to use invalid scalar/element values to complete au...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Debian Debian Linux 8.0
Synology Router Manager 1.2
Synology Radius Server 3.0
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd
8.1
CVSSv3
CVE-2019-9499
The implementations of EAP-PWD in wpa_supplicant EAP Peer, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. An attacker may complete authentication, session key and control of th...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Debian Debian Linux 8.0
Synology Router Manager 1.2
Synology Radius Server 3.0
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »