Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2019-1620
A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote malicious user to upload arbitrary files on an affected device. The vulnerability is due to incorrect permission settings in affected DCNM soft...
Cisco Data Center Network Manager 11.0\\(1\\)
1 EDB exploit
1000
VMScore
CVE-2019-1821
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote malicious user to execute code with root-level privileges on the underlying operating system. This vu...
Cisco Prime Infrastructure
Cisco Evolved Programmable Network Manager
Cisco Network Level Service 3.0\\(0.0.83b\\)
2 EDB exploits
1 Github repository
1 Article
1000
VMScore
CVE-2019-6441
An issue exists on Shenzhen Coship RT3050 4.0.0.40, RT3052 4.0.0.48, RT7620 10.0.0.49, WM3300 5.0.0.54, and WM3300 5.0.0.55 devices. The password reset functionality of the router doesn't have backend validation for the current password and doesn't require any type of a...
Coship Rt3050 Firmware 4.0.0.40
Coship Rt3052 Firmware 4.0.0.48
Coship Rt7620 Firmware 10.0.0.49
Coship Wm3300 Firmware 5.0.0.54
Coship Wm3300 Firmware 5.0.0.55
1 EDB exploit
1000
VMScore
CVE-2018-20218
An issue exists on Teracue ENC-400 devices with firmware 2.56 and below. The login form passes user input directly to a shell command without any kind of escaping or validation in /usr/share/www/check.lp file. An attacker is able to perform command injection using the "passw...
Teracue Enc-400 Hdmi Firmware
Teracue Enc-400 Hdmi2 Firmware
Teracue Enc-400 Hdsdi Firmware
1 EDB exploit
1000
VMScore
CVE-2015-9266
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated malicious user to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain roo...
Ui Airmax Ac Firmware 7.1.3
Ui Airmax M Xm Firmware
Ui Airmax M Xw Firmware
Ui Airmax M Ti Firmware
Ui Airgateway Firmware
Ui Airfiber Af24 Firmware
Ui Airfiber Af24hd Firmware
Ui Af5x Firmware
Ui Af5 Firmware
Ubnt Airos 4 Xs5
Ubnt Airos 4 Xs2
Ubnt Edgeswitch Xp Firmware
1 EDB exploit
1000
VMScore
CVE-2018-6546
plays_service.exe in the plays.tv service prior to 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, executes code at a user-defined (local or SMB) path as SYSTEM when the execute_installer parameter is used in an HTTP message. This occurs ...
Plays.tv Plays.tv
1 EDB exploit
1 Github repository
1000
VMScore
CVE-2018-7756
RunExeFile.exe in the installer for DEWESoft X3 SP1 (64-bit) devices does not require authentication for sessions on TCP port 1999, which allows remote malicious users to execute arbitrary code or access internal commands, as demonstrated by a RUN command that launches a .EXE fil...
Dewesoft Dewesoft X3
1 EDB exploit
1000
VMScore
CVE-2018-7300
Directory Traversal / Arbitrary File Write / Remote Code Execution in the User.setLanguage method in eQ-3 AG Homematic CCU2 2.29.2 and previous versions allows remote malicious users to write arbitrary files to the device's filesystem. This vulnerability can be exploited by ...
Eq-3 Homematic Ccu2 Firmware
1 EDB exploit
1000
VMScore
CVE-2018-5701
In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003.
Iolo System Shield 5.0.0.136
1 EDB exploit
1000
VMScore
CVE-2016-6598
BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting file storage service (FileStorageService) on port 9010. This service contains a method that allows uploading a file to an arbitrary path on the machine that is running Track-It!. This can be used to uploa...
Bmc Track-it\\!
Bmc Track-it\\! 11.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »