Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
micha borrmann vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-18566
The SIP service in Polycom VVX 500 and 601 devices 5.8.0.12848 and previous versions allow remote malicious users to obtain sensitive phone configuration information by leveraging use with an on-premise installation with Skype for Business.
Polycom Unified Communications Software
Polycom Vvx 601 Firmware -
Polycom Vvx 500 Firmware -
5.9
CVSSv3
CVE-2018-18567
AudioCodes 440HD and 450HD devices 3.1.2.89 and previous versions allows man-in-the-middle malicious users to obtain sensitive credential information by leveraging failure to validate X.509 certificates when used with an on-premise installation with Skype for Business.
Audiocodes 440hd Firmware
Audiocodes 450hd Firmware
5.9
CVSSv3
CVE-2018-18568
Polycom VVX 500 and 601 devices 5.8.0.12848 and previous versions allows man-in-the-middle malicious users to obtain sensitive credential information by leveraging failure to validate X.509 certificates when used with an on-premise installation with Skype for Business.
Polycom Unified Communications Software
Polycom Vvx 601 Firmware -
Polycom Vvx 500 Firmware -
5.9
CVSSv3
CVE-2014-2845
Cyberduck prior to 4.4.4 on Windows does not properly validate X.509 certificate chains, which allows man-in-the-middle malicious users to spoof FTP-SSL servers via a certificate issued by an arbitrary root Certification Authority.
Cyberduck Cyberduck
5.3
CVSSv3
CVE-2020-10110
Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache headers on Citrix ADC. The "Via" header lists cache protocols and recipient...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
7.5
CVSSv3
CVE-2020-10111
Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic for performance optimization
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
5.4
CVSSv3
CVE-2020-10112
Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies ...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
7.4
CVSSv3
CVE-2019-19199
REDDOXX MailDepot 2032 SP2 2.2.1242 has Insufficient Session Expiration because tokens are not invalidated upon a logout.
Reddoxx Maildepot 2032
6.1
CVSSv3
CVE-2018-19694
HMS Industrial Networks Netbiter WS100 3.30.5 devices and previous have reflected XSS in the login form.
Hms-networks Netbiter Ws100 Firmware
Hms-networks Netbiter Ws200 Firmware
Hms-networks Netbiter Ec150 Firmware
Hms-networks Netbiter Ec250 Firmware
Hms-networks Netbiter Lc310 Firmware
Hms-networks Netbiter Lc310 Thingworx Firmware
Hms-networks Netbiter Lc350 Firmware
Hms-networks Netbiter Lc350 Thingworx Firmware
9.8
CVSSv3
CVE-2018-19783
Kentix MultiSensor-LAN 5.63.00 devices and previous allow Authentication Bypass via an Alternate Path or Channel.
Kentix Multisensor-lan Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »