Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mono vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12471
MonoX up to and including 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.
Mono Monox
NA
CVE-2010-1526
Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow malicious users to execute arbitrary code via (1) a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; (2) a crafted JPEG file, related to the gdip_load_jpeg_image_internal functio...
Mono-project Libgdiplus 2.6.7
7.5
CVSSv3
CVE-2012-3543
mono 2.10.x ASP.NET Web Form Hash collision DoS
Mono-project Mono
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
NA
CVE-2010-4254
Mono, when Moonlight prior to 2.3.0.1 or 2.99.x prior to 2.99.0.10 is used, does not properly validate arguments to generic methods, which allows remote malicious users to bypass generic constraints, and possibly execute arbitrary code, via a crafted method call.
Mono Mono
Novell Moonlight 2.99.0
Novell Moonlight
Novell Moonlight 2.99.7
Novell Moonlight 2.99.9
Novell Moonlight 2.99.1
Novell Moonlight 2.99.2
1 EDB exploit
NA
CVE-2011-0991
Use-after-free vulnerability in Mono, when Moonlight 2.x prior to 2.4.1 or 3.x prior to 3.99.3 is used, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors related to finalizing and then resurrecting a DynamicMethod ins...
Novell Moonlight 2.0
Novell Moonlight 3.0
Novell Moonlight 3.99
Novell Moonlight 2.3.0
Novell Moonlight 2.4
Novell Moonlight 2.31
Mono Mono
NA
CVE-2011-0989
The RuntimeHelpers.InitializeArray method in metadata/icall.c in Mono, when Moonlight 2.x prior to 2.4.1 or 3.x prior to 3.99.3 is used, does not properly restrict data types, which allows remote malicious users to modify internal read-only data structures, and cause a denial of ...
Novell Moonlight 3.99
Novell Moonlight 2.31
Novell Moonlight 2.0
Novell Moonlight 3.0
Mono Mono
Novell Moonlight 2.3.0
Novell Moonlight 2.4
NA
CVE-2011-0990
Race condition in the FastCopy optimization in the Array.Copy method in metadata/icall.c in Mono, when Moonlight 2.x prior to 2.4.1 or 3.x prior to 3.99.3 is used, allows remote malicious users to trigger a buffer overflow and modify internal data structures, and cause a denial o...
Novell Moonlight 2.31
Novell Moonlight 3.0
Novell Moonlight 3.99
Mono Mono
Novell Moonlight 2.3.0
Novell Moonlight 2.4
Novell Moonlight 2.0
NA
CVE-2011-0992
Use-after-free vulnerability in Mono, when Moonlight 2.x prior to 2.4.1 or 3.x prior to 3.99.3 is used, allows remote malicious users to cause a denial of service (plugin crash) or obtain sensitive information via vectors related to member data in a resurrected MonoThread instanc...
Novell Moonlight 2.31
Novell Moonlight 3.0
Novell Moonlight 3.99
Mono Mono
Novell Moonlight 2.3.0
Novell Moonlight 2.4
Novell Moonlight 2.0
8.1
CVSSv3
CVE-2021-24112
.NET Core Remote Code Execution Vulnerability
Microsoft Visual Studio 2019 -
Microsoft Mono
Microsoft .net
Microsoft .net Core
1 Github repository
6.5
CVSSv3
CVE-2019-0757
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated malicious user to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.
Microsoft Visual Studio 2017 -
Microsoft Nuget 4.9.4
Microsoft Nuget 4.3.1
Microsoft Nuget 4.4.2
Microsoft Nuget 4.7.2
Microsoft Nuget 4.8.2
Microsoft Nuget 4.5.2
Microsoft Nuget 4.6.3
Mono-project Mono Framework 5.18.0.223
Mono-project Mono Framework 5.20.0
Microsoft .net Core Sdk 1.1
Microsoft .net Core Sdk 2.1.500
Microsoft .net Core Sdk 2.2.100
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Tus 8.4
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »