Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drone vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-51452
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to cause a crash of the service through a crafted payload triggering a missing input size check in the pull_file_v2_proc function i...
NA
CVE-2023-51454
A Out-of-bounds Write issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to overwrite a pointer in the process memory through a crafted payload triggering an unsafe memory write operation in the my_tcp_receive ...
8.1
CVSSv3
CVE-2023-31191
DroneScout ds230 Remote ID receiver from BlueMark Innovations is affected by an information loss vulnerability through traffic injection. An attacker can exploit this vulnerability by injecting, on carefully selected channels, high power spoofed Open Drone ID (ODID) messages whic...
Bluemark Dronescout Ds230 Firmware
NA
CVE-2023-51453
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to cause a crash of the service through a crafted payload triggering a missing input size check in the process_push_file function i...
NA
CVE-2023-51455
A Improper Validation of Array Index issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to corrupt a controlled memory location due to a missing input validation in the on_receive_session_packet_ack function im...
NA
CVE-2023-6948
A Buffer Copy without Checking Size of Input issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to cause a crash of the service through a crafted payload triggering a missing input size check in the sdk_printf ...
NA
CVE-2023-51456
A Improper Input Validation issue affecting the v2_sdk_service running on a set of DJI drone devices on the port 10000 could allow an malicious user to trigger an out-of-bound read/write into the process memory through a crafted payload due to a missing input sanity check in the ...
NA
CVE-2014-5023
Repository.php in Gitter, as used in Gitlist, allows remote attackers with commit privileges to execute arbitrary commands via shell metacharacters in a branch name, as demonstrated by a "git checkout -b" command.
Gitlist Gitlist -
1 EDB exploit
NA
CVE-2013-5948
The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and other RT series routers with firmware prior to 3.0.0.4.374.5047 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the Target field (destIP parameter).
T-mobile Tm-ac1900 3.0.0.4.376 3169
Asus Rt-ac68u Firmware 3.0.0.4.374 4561
Asus Rt-ac68u Firmware 3.0.0.4.374 4887
Asus Rt-ac68u Firmware 3.0.0.4.374.4755
Asus Rt-ac68u -
1 EDB exploit
NA
CVE-2013-6720
Directory traversal vulnerability in download.php in the Passive Capture Application (PCA) web console in IBM Tealeaf CX 7.x, 8.x up to and including 8.6, 8.7 before FP2, and 8.8 before FP2 allows remote authenticated users to bypass intended access restrictions via a .. (dot dot...
Ibm Tealeaf Cx 8.0
Ibm Tealeaf Cx 8.1
Ibm Tealeaf Cx 7.1
Ibm Tealeaf Cx 7.2
Ibm Tealeaf Cx 8.6
Ibm Tealeaf Cx 8.7
Ibm Tealeaf Cx 8.8
Ibm Tealeaf Cx 8.2
Ibm Tealeaf Cx 8.3
Ibm Tealeaf Cx 8.4
Ibm Tealeaf Cx 8.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »