Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
home firmware vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-27534
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its intended use as the first element to indicate a path relative to the user's h...
Haxx Curl
Fedoraproject Fedora 36
Netapp Active Iq Unified Manager -
Broadcom Brocade Fabric Operating System Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
8.1
CVSSv3
CVE-2016-6564
Android devices with code from Ragentek contain a privileged binary that performs over-the-air (OTA) update checks. Additionally, there are multiple techniques used to hide the execution of this binary. This behavior could be described as a rootkit. This binary, which resides as ...
Infinixauthority Hot X507 Firmware -
Infinixauthority Hot 2 X510 Firmware -
Infinixauthority Zero X506 Firmware -
Infinixauthority Zero 2 X509 Firmware -
Bluproducts Studio G Firmware -
Bluproducts Studio G Plus Firmware -
Bluproducts Studio 6.0 Hd Firmware -
Bluproducts Studio X Firmware -
Bluproducts Studio X Plus Firmware -
Bluproducts Studio C Hd Firmware -
Xolo Cube 5.0 Firmware -
Beeline Pro 2 Firmware -
Iku-mobile Colorful K45i Firmware -
Leagoo Lead 5 Firmware -
Leagoo Lead 6 Firmware -
Leagoo Lead 3i Firmware -
Leagoo Lead 2s Firmware -
Leagoo Alfa 6 Firmware -
Doogee Voyager 2 Dg310i Firmware -
1 Article
9.8
CVSSv3
CVE-2021-1295
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an unauthenticated, remote malicious user to execute arbitrary code as the root user on an affected device. These vulnerabilitie...
Cisco Rv160w Wireless-ac Vpn Router Firmware
Cisco Rv260 Vpn Router Firmware
Cisco Rv260p Vpn Router With Poe Firmware
Cisco Rv260w Wireless-ac Vpn Router Firmware
Cisco Rv160 Vpn Router Firmware
1 Article
7.5
CVSSv3
CVE-2021-1297
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an unauthenticated, remote malicious user to conduct directory traversal attacks and overwrite certain files that should be rest...
Cisco Rv160w Wireless-ac Vpn Router Firmware
Cisco Rv260 Vpn Router Firmware
Cisco Rv260p Vpn Router With Poe Firmware
Cisco Rv260w Wireless-ac Vpn Router Firmware
Cisco Rv160 Vpn Router Firmware
1 Article
9.8
CVSSv3
CVE-2021-1289
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an unauthenticated, remote malicious user to execute arbitrary code as the root user on an affected device. These vulnerabilitie...
Cisco Rv160w Wireless-ac Vpn Router Firmware
Cisco Rv260 Vpn Router Firmware
Cisco Rv260p Vpn Router With Poe Firmware
Cisco Rv260w Wireless-ac Vpn Router Firmware
Cisco Rv160 Vpn Router Firmware
1 Article
7.5
CVSSv3
CVE-2021-1296
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an unauthenticated, remote malicious user to conduct directory traversal attacks and overwrite certain files that should be rest...
Cisco Rv160w Wireless-ac Vpn Router Firmware
Cisco Rv260 Vpn Router Firmware
Cisco Rv260p Vpn Router With Poe Firmware
Cisco Rv260w Wireless-ac Vpn Router Firmware
Cisco Rv160 Vpn Router Firmware
1 Article
5.9
CVSSv3
CVE-2023-27537
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due t...
Haxx Libcurl 7.88.1
Haxx Libcurl 7.88.0
Netapp Active Iq Unified Manager -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Clustered Data Ontap 9.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
1 Github repository
7.2
CVSSv3
CVE-2021-1318
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. These vulnerabilit...
Cisco Rv016 Multi-wan Vpn Router Firmware
Cisco Rv042 Dual Wan Vpn Router Firmware
Cisco Rv042g Dual Gigabit Wan Vpn Router Firmware
Cisco Rv082 Dual Wan Vpn Router Firmware
Cisco Rv320 Dual Gigabit Wan Vpn Router Firmware
Cisco Rv325 Dual Gigabit Wan Vpn Router Firmware
1 Article
7.2
CVSSv3
CVE-2021-1314
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges. These vulnerabilit...
Cisco Rv016 Multi-wan Vpn Router Firmware
Cisco Rv042 Dual Wan Vpn Router Firmware
Cisco Rv042g Dual Gigabit Wan Vpn Router Firmware
Cisco Rv082 Dual Wan Vpn Router Firmware
Cisco Rv320 Dual Gigabit Wan Vpn Router Firmware
Cisco Rv325 Dual Gigabit Wan Vpn Router Firmware
1 Article
5.5
CVSSv3
CVE-2023-27538
An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse t...
Haxx Libcurl
Fedoraproject Fedora 36
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Clustered Data Ontap 9.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »