Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mobile infrastructure vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2013-7359
Unspecified vulnerability in SAP Mobile Infrastructure allows remote malicious users to obtain sensitive port information via unknown vectors, related to an "internal port scanning" issue.
Sap Mobile Infrastructure -
801
VMScore
CVE-2016-6270
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in Trend Micro Virtual Mobile Infrastructure prior to 5.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the password to api/v1/cfg/oauth/save_id...
Trendmicro Virtual Mobile Infrastructure 5.0
890
VMScore
CVE-2021-1393
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
570
VMScore
CVE-2021-1396
Multiple vulnerabilities in Cisco Application Services Engine could allow an unauthenticated, remote malicious user to gain privileged access to host-level operations or to learn device-specific information, create diagnostic files, and make limited configuration changes. For mor...
Cisco Application Services Engine
Cisco Application Policy Infrastructure Controller 1.1.3
1 Article
187
VMScore
CVE-2017-10188
Vulnerability in the Hospitality Hotel Mobile component of Oracle Hospitality Applications (subcomponent: Suite 8/Android). The supported version that is affected is 1.01. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Hospi...
Oracle Hospitality Hotel Mobile 1.01
NA
CVE-2022-20655
A vulnerability in the implementation of the CLI on a device that is running ConfD could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient validation of a process argument on an affected device. An attacker coul...
NA
CVE-2023-27532
Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 12.0.0.1420
3 Github repositories
2 Articles
641
VMScore
CVE-2020-11210
Possible memory corruption in RPM region due to improper XPU configuration in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Qualcomm Ar8035 Firmware -
Qualcomm Pm4125 Firmware -
Qualcomm Pm4250 Firmware -
Qualcomm Pm6125 Firmware -
Qualcomm Pm6150a Firmware -
Qualcomm Pm6150l Firmware -
Qualcomm Pm6350 Firmware -
Qualcomm Pm7250b Firmware -
Qualcomm Pm8008 Firmware -
Qualcomm Pmd9655 Firmware -
Qualcomm Pmi632 Firmware -
Qualcomm Pmk8003 Firmware -
Qualcomm Qat3519 Firmware -
Qualcomm Qat3522 Firmware -
Qualcomm Qat3555 Firmware -
Qualcomm Qat5515 Firmware -
Qualcomm Qat5516 Firmware -
Qualcomm Qca6390 Firmware -
Qualcomm Qca9984 Firmware -
Qualcomm Qcm2290 Firmware -
Qualcomm Qcm4290 Firmware -
Qualcomm Qcs2290 Firmware -
436
VMScore
CVE-2021-30345
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Qualcomm Ar8035 Firmware -
Qualcomm Qca9984 Firmware -
Qualcomm Qcm2290 Firmware -
Qualcomm Qcm4290 Firmware -
Qualcomm Qcs2290 Firmware -
Qualcomm Qcs405 Firmware -
Qualcomm Qcs4290 Firmware -
Qualcomm Sd460 Firmware -
Qualcomm Sd480 Firmware -
Qualcomm Sd662 Firmware -
Qualcomm Sd680 Firmware -
Qualcomm Sm6375 Firmware -
Qualcomm Sw5100 Firmware -
Qualcomm Sw5100p Firmware -
Qualcomm Wcd9370 Firmware -
Qualcomm Wcd9375 Firmware -
Qualcomm Wcd9385 Firmware -
Qualcomm Wcn3910 Firmware -
Qualcomm Wcn3950 Firmware -
Qualcomm Wcn3980 Firmware -
Qualcomm Wcn3988 Firmware -
Qualcomm Wcn3991 Firmware -
445
VMScore
CVE-2022-0732
The backend infrastructure shared by multiple mobile device monitoring services does not adequately authenticate or authorize API requests, creating an IDOR (Insecure Direct Object Reference) vulnerability.
1byte Copy9 -
1byte Fonetracker -
1byte Ispyoo -
1byte Guestspy -
1byte Thespyapp -
1byte Secondclone -
1byte The Truth Spy -
1byte Mxspy -
1byte Exactspy -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »