Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
leak vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-13868
An issue exists in certain Apple products. iOS prior to 11.2 is affected. macOS prior to 10.13.2 is affected. tvOS prior to 11.2 is affected. watchOS prior to 4.2 is affected. The issue involves the "Kernel" component. It allows malicious users to bypass intended memory...
Apple Tvos
Apple Iphone Os
Apple Mac Os X
Apple Watchos
1 EDB exploit
1 Github repository
6.6
CVSSv3
CVE-2017-7154
An issue exists in certain Apple products. iOS prior to 11.2 is affected. macOS prior to 10.13.2 is affected. tvOS prior to 11.2 is affected. The issue involves the "Kernel" component. It allows local users to bypass intended memory-read restrictions or cause a denial o...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
1 EDB exploit
7.5
CVSSv3
CVE-2018-6610
Information Leakage exists in the jLike 1.0 component for Joomla! via a task=getUserByCommentId request.
Jlike Project Jlike 1.0
1 EDB exploit
5.5
CVSSv3
CVE-2017-13869
An issue exists in certain Apple products. iOS prior to 11.2 is affected. macOS prior to 10.13.2 is affected. tvOS prior to 11.2 is affected. watchOS prior to 4.2 is affected. The issue involves the "Kernel" component. It allows malicious users to bypass intended memory...
Apple Tvos
Apple Mac Os X
Apple Iphone Os
Apple Watchos
1 EDB exploit
NA
CVE-2002-0505
Memory leak in the Call Telephony Integration (CTI) Framework authentication for Cisco CallManager 3.0 and 3.1 prior to 3.1(3) allows remote malicious users to cause a denial of service (crash and reload) via a series of authentication failures, e.g. via incorrect passwords.
Cisco Call Manager 3.0
Cisco Call Manager 3.1
NA
CVE-2014-8609
The addAccount method in src/com/android/settings/accounts/AddAccountSettings.java in the Settings application in Android prior to 5.0.0 does not properly create a PendingIntent, which allows malicious users to use the SYSTEM uid for broadcasting an intent with arbitrary componen...
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
Google Android 4.3.1
Google Android
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 4.0.1
Google Android 4.0.3
Google Android 4.2.1
Google Android 4.3
4 Github repositories
NA
CVE-2014-3777
Directory traversal vulnerability in Reportico PHP Report Designer prior to 4.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the xmlin parameter.
Reportico Php Report Designer 2.3.1
Reportico Php Report Designer 2.3
Reportico Php Report Designer 2.2
Reportico Php Report Designer 2.1
Reportico Php Report Designer 2.0
Reportico Php Report Designer
Reportico Php Report Designer 3.2
Reportico Php Report Designer 3.1
Reportico Php Report Designer 3.0
Reportico Php Report Designer 1.0.4
Reportico Php Report Designer 1.0.3
Reportico Php Report Designer 1.0.2
Reportico Php Report Designer 1.0.1
Reportico Php Report Designer 2.7
Reportico Php Report Designer 2.5
Reportico Php Report Designer 2.0.1
Reportico Php Report Designer 1.0.6
Reportico Php Report Designer 2.6
Reportico Php Report Designer 2.4
Reportico Php Report Designer 1.0.5
Reportico Php Report Designer 1.0.0
6.5
CVSSv3
CVE-2017-7942
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote malicious users to consume an amount of available memory via a crafted file.
Imagemagick Imagemagick 7.0.5-4
7.5
CVSSv3
CVE-2021-41158
FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on any commodity hardware. Prior to version 1.10.7, an attacker can perform a SIP digest leak attack against FreeSWITCH and ...
Freeswitch Freeswitch
7.5
CVSSv3
CVE-2009-5139
The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote malicious users to obtain access via a brute-force attack, related to a "SIP Digest Leak" issue.
Google Gizmo5 -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »