Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
firmware vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2019-18259
In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
668
VMScore
CVE-2019-18269
Omron’s CS and CJ series PLCs have an unrestricted externally accessible lock vulnerability.
Omron Plc Cs Firmware
Omron Plc Cj Firmware
605
VMScore
CVE-2019-13533
In Omron PLC CJ series, all versions, and Omron PLC CS series, all versions, an attacker could monitor traffic between the PLC and the controller and replay requests that could result in the opening and closing of industrial valves.
Omron Plc Cj Firmware
Omron Plc Cs Firmware
890
VMScore
CVE-2015-8362
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2015-10-12 has a hardcoded password for the BlackWidow account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-20...
Harman Amx Firmware 1.2.322
Harman Amx Firmware 1.3.100
641
VMScore
CVE-2015-3959
The firmware in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches has a hardcoded serial-console password for a privileged account, which might allow physically proximate malicious users to obtain access by establishing a console session to a nonstandard i...
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
312
VMScore
CVE-2015-3961
The web-server component in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allows remote authenticated users to cause a denial of service (memory corruption and reboot) via a crafted URL.
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
383
VMScore
CVE-2021-21580
Dell EMC iDRAC8 versions before 2.80.80.80 & Dell EMC iDRAC9 versions before 5.00.00.00 contain a Content spoofing / Text injection, where a malicious URL can inject text to present a customized message on the application that can phish users into believing that the message i...
Dell Emc Idrac8 Firmware
Dell Emc Idrac9 Firmware
890
VMScore
CVE-2016-1984
The setUpSubtleUserAccount function in /bin/bw on Harman AMX devices prior to 2016-01-20 has a hardcoded password for the 1MB@tMaN account, which makes it easier for remote malicious users to obtain access via a (1) SSH or (2) HTTP session, a different vulnerability than CVE-2015...
Harman Amx Firmware 1.3.100
Harman Amx Firmware 1.2.322
383
VMScore
CVE-2015-3942
Multiple cross-site scripting (XSS) vulnerabilities in the web-server component in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Garrettcom Magnum 10k Firmware
Garrettcom Magnum 6k Firmware
383
VMScore
CVE-2015-3960
The firmware in MNS prior to 4.5.6 on Belden GarrettCom Magnum 6K and Magnum 10K switches uses hardcoded RSA private keys and certificates across different customers' installations, which makes it easier for remote malicious users to defeat cryptographic protection mechanism...
Garrettcom Magnum 6k Firmware
Garrettcom Magnum 10k Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »