Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
indexing service vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-11467
In Couchbase Server 4.6.3 and 5.5.0, secondary indexing encodes the entries to be indexed using collatejson. When index entries contain certain characters like \t, <, >, it caused buffer overrun as encoded string would be much larger than accounted for, causing indexer serv...
Couchbase Couchbase Server 5.5.0
Couchbase Couchbase Server 4.6.3
5.5
CVSSv3
CVE-2019-1788
A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerab...
Clamav Clamav
Opensuse Leap 15.0
Opensuse Leap 42.3
Debian Debian Linux 8.0
5.5
CVSSv3
CVE-2019-1786
A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerabilit...
Clamav Clamav 0.101.0
Clamav Clamav 0.101.1
5.5
CVSSv3
CVE-2019-1787
A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability ...
Clamav Clamav
Debian Debian Linux 8.0
Opensuse Leap 42.3
Opensuse Leap 15.0
8.8
CVSSv3
CVE-2018-4210
In iOS prior to 11.3, Safari prior to 11.1, tvOS prior to 11.3, watchOS prior to 4.3, iTunes prior to 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.
Apple Iphone Os
Apple Safari
Apple Watchos
Apple Tvos
Apple Itunes
Canonical Ubuntu Linux 18.04
Webkitgtk Webkitgtk\\+
7.5
CVSSv3
CVE-2018-15448
A vulnerability in the user management functions of Cisco Registered Envelope Service could allow an unauthenticated, remote malicious user to discover sensitive user information. The attacker could use this information to conduct additional reconnaissance attacks. The vulnerabil...
Cisco Registered Envelope Service -
6.5
CVSSv3
CVE-2018-4113
An issue exists in certain Apple products. iOS prior to 11.3 is affected. Safari prior to 11.1 is affected. iCloud prior to 7.4 on Windows is affected. iTunes prior to 12.7.4 on Windows is affected. tvOS prior to 11.3 is affected. watchOS prior to 4.3 is affected. The issue invol...
Apple Safari
Apple Watchos
Apple Iphone Os
Apple Tvos
Apple Icloud
Apple Itunes
Webkitgtk Webkitgtk\\+
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
7.5
CVSSv3
CVE-2017-6657
Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. That makes it possible to craft packets that have IP protocol numbers in the ether ...
Cisco Snort\\+\\+ -
NA
CVE-2013-2465
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and previous versions, 6 Update 45 and previous versions, and 5.0 Update 45 and previous versions, and OpenJDK 7, allows remote malicious users to affect confidentiality, integ...
Oracle Jre 1.7.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Sun Jre 1.5.0
Oracle Jre 1.5.0
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 10
Suse Linux Enterprise Java 11
Suse Linux Enterprise Java 10
1 EDB exploit
2 Github repositories
8 Articles
NA
CVE-2011-2004
Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote malicious users to cause a denial of service (reboot) via a crafted TrueType font file, aka "TrueType Font Parsing Vulnerability...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »