Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iii vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2020-11951
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. There is a Backdoor root account.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
436
VMScore
CVE-2020-11952
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. Attackers can bypass the CLI menu.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
641
VMScore
CVE-2020-10262
An issue exists on XIAOMI XIAOAI speaker Pro LX06 1.58.10. Attackers can activate the failsafe mode during the boot process, and use the mi_console command cascaded by the SN code shown on the product to get the root shell password, and then the attacker can (i) read Wi-Fi SSID o...
Mi Xiaomi Xiaoai Speaker Pro Lx06 Firmware 1.58.10
641
VMScore
CVE-2020-10263
An issue exists on XIAOMI XIAOAI speaker Pro LX06 1.52.4. Attackers can get root shell by accessing the UART interface and then they can (i) read Wi-Fi SSID or password, (ii) read the dialogue text files between users and XIAOMI XIAOAI speaker Pro LX06, (iii) use Text-To-Speech t...
Mi Xiaomi Xiaoai Speaker Pro Lx06 Firmware 1.52.4
445
VMScore
CVE-2014-5138
Innovative Interfaces Sierra Library Services Platform 1.2_3 does not properly handle query strings with multiple instances of the same parameter, which allows remote malicious users to bypass parameter validation via unspecified vectors, possibly related to the Webpac Pro submod...
Iii Sierra 1.2 3
891
VMScore
CVE-2019-1222
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote De...
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2016 1903
Microsoft Windows Server 2019 -
Microsoft Windows 10 1803
Microsoft Windows 10 1903
3 Articles
891
VMScore
CVE-2019-1226
A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote De...
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1803
Microsoft Windows 10 1903
Microsoft Windows Server 2016 1903
3 Articles
828
VMScore
CVE-2019-1201
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1205.
Microsoft Office Online Server -
Microsoft Office Web Apps Server 2013
Microsoft Word 2013
Microsoft Sharepoint Enterprise Server 2016
Microsoft Sharepoint Server 2010
Microsoft Sharepoint Server 2019
Microsoft Word 2010
Microsoft Office 365 Proplus -
Microsoft Office 2010
Microsoft Office 2016
Microsoft Office 2019
Microsoft Office Web Apps 2010
Microsoft Sharepoint Enterprise Server 2013
Microsoft Word 2016
2 Articles
685
VMScore
CVE-2019-0720
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V Remote Code Execution Vulnerability'.
Microsoft Windows 10 1803
Microsoft Windows 10 1607
Microsoft Windows 10 1709
Microsoft Windows Server 2008 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 1809
Microsoft Windows 7 -
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2016 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 -
Microsoft Windows 10 1703
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
2 Articles
668
VMScore
CVE-2019-0736
A memory corruption vulnerability exists in the Windows DHCP client when an attacker sends specially crafted DHCP responses to a client, aka 'Windows DHCP Client Remote Code Execution Vulnerability'.
Microsoft Windows 10 1703
Microsoft Windows 10 1709
Microsoft Windows 10 1803
Microsoft Windows 7 -
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2016 1803
Microsoft Windows 10 -
Microsoft Windows Rt 8.1 -
2 Articles
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »