Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

james fitts vulnerabilities and exploits

(subscribe to this query)
405
VMScore

CVE-2017-6020

Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.
Lcds Laquis Scada
505
VMScore

CVE-2017-5177

A Stack Buffer Overflow issue exists in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafted packet could overflow the fixed length buffer. This could allow remote code execution.
Vipa Controls Winplc7 Firmware
510
VMScore

CVE-2016-9349

An issue exists in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.
Advantech Susiaccess
605
VMScore

CVE-2016-9351

An issue exists in Advantech SUISAccess Server Version 3.0 and prior. The directory traversal/file upload error allows an malicious user to upload and unpack a zip file.
Advantech Susiaccess
605
VMScore

CVE-2016-8377

An issue exists in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, resulting in a stack buffer overflow. This causes an exploitable Structured Exception Ha...
Fatek Plc Winproladder Firmware 3.11
660
VMScore

CVE-2015-7901

Infinite Automation Mango Automation 2.5.x and 2.6.x up to and including 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.
Infinite Automation Systems Mango Automation 2.6.0Infinite Automation Systems Mango Automation 2.5.0Infinite Automation Systems Mango Automation 2.5.5
1000
VMScore

CVE-2014-5210

The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability than CVE-2014-3804 and CVE-2014-3805.
Alienvault Open Source Security Information Management 4.1.2Alienvault Open Source Security Information Management 4.3.3Alienvault Open Source Security Information Management 2.1.5-3Alienvault Open Source Security Information Management 3.1Alienvault Open Source Security Information Management 4.2Alienvault Open Source Security Information Management 2.1.5-2Alienvault Open Source Security Information Management 2.1Alienvault Open Source Security Information Management 3.1.12Alienvault Open Source Security Information Management 4.2.2Alienvault Open Source Security Information Management 4.0.4Alienvault Open Source Security Information Management 2.1.5-1Alienvault Open Source Security Information Management 4.3.1Alienvault Open Source Security Information Management 4.5Alienvault Open Source Security Information Management 1.0.4Alienvault Open Source Security Information Management 4.1.3Alienvault Open Source Security Information Management 2.1.2Alienvault Open Source Security Information Management 4.0.3Alienvault Open Source Security Information ManagementAlienvault Open Source Security Information Management 4.0Alienvault Open Source Security Information Management 4.2.3Alienvault Open Source Security Information Management 4.4Alienvault Open Source Security Information Management 2.1.5
785
VMScore

CVE-2014-4153

The av-centerd SOAP service in AlienVault OSSIM prior to 4.8.0 allows remote malicious users to read arbitrary files via a crafted get_file request.
Alienvault Open Source Security Information Management 4.3.3Alienvault Open Source Security Information Management 4.5Alienvault Open Source Security Information Management 4.0Alienvault Open Source Security Information Management 4.4Alienvault Open Source Security Information Management 4.6.1Alienvault Open Source Security Information Management 4.6Alienvault Open Source Security Information Management
1000
VMScore

CVE-2014-3804

The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip requ...
Alienvault Open Source Security Information Management 4.1.2Alienvault Open Source Security Information Management 4.3.3Alienvault Open Source Security Information Management 4.2Alienvault Open Source Security Information Management 4.2.2Alienvault Open Source Security Information Management 4.0.4Alienvault Open Source Security Information Management 4.3.1Alienvault Open Source Security Information Management 4.5Alienvault Open Source Security Information Management 4.1.3Alienvault Open Source Security Information Management 4.0.3Alienvault Open Source Security Information ManagementAlienvault Open Source Security Information Management 4.0Alienvault Open Source Security Information Management 4.2.3Alienvault Open Source Security Information Management 4.4Alienvault Open Source Security Information Management 4.3.2Alienvault Open Source Security Information Management 4.3Alienvault Open Source Security Information Management 4.6Alienvault Open Source Security Information Management 4.1
1000
VMScore

CVE-2014-3805

The av-centerd SOAP service in AlienVault OSSIM prior to 4.7.0 allows remote malicious users to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
Alienvault Open Source Security Information Management 4.1.2Alienvault Open Source Security Information Management 4.3.3Alienvault Open Source Security Information Management 4.2Alienvault Open Source Security Information Management 4.2.2Alienvault Open Source Security Information Management 4.0.4Alienvault Open Source Security Information Management 4.3.1Alienvault Open Source Security Information Management 4.5Alienvault Open Source Security Information Management 4.1.3Alienvault Open Source Security Information Management 4.0.3Alienvault Open Source Security Information ManagementAlienvault Open Source Security Information Management 4.0Alienvault Open Source Security Information Management 4.2.3Alienvault Open Source Security Information Management 4.4Alienvault Open Source Security Information Management 4.3.2Alienvault Open Source Security Information Management 4.3Alienvault Open Source Security Information Management 4.6Alienvault Open Source Security Information Management 4.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884CVE-2024-6003remotebrute forceinformation disclosureCVE-2024-27801CVE-2024-30078CVE-2024-31870CVE-2024-6042
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook