Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mono mono vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-7289
Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote malicious users to obtain access via the web management interface, SSH, TELNET,...
Arris Na Model 862 Gw Mono Firmware Ts070593c 073013
Arris Na Model 862 Gw Mono Firmware Ts0703128 100611
Arris Na Model 862 Gw Mono Firmware Ts0703135 112211
Arris Na Model 862 Gw Mono Firmware Ts0705125 062314
Arris Na Model 862 Gw Mono Firmware Ts0705125d 031115
9
CVSSv2
CVE-2020-12473
MonoX up to and including 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.
Mono Monox
7.5
CVSSv2
CVE-2021-24112
.NET Core Remote Code Execution Vulnerability
Microsoft Visual Studio 2019 -
Microsoft Mono
Microsoft .net
Microsoft .net Core
1 Github repository
7.5
CVSSv2
CVE-2020-12471
MonoX up to and including 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.
Mono Monox
7.5
CVSSv2
CVE-2015-2320
The TLS stack in Mono prior to 3.12.1 allows remote malicious users to have unspecified impact via vectors related to client-side SSLv2 fallback.
Mono-project Mono
Debian Debian Linux 7.0
7.5
CVSSv2
CVE-2010-4254
Mono, when Moonlight prior to 2.3.0.1 or 2.99.x prior to 2.99.0.10 is used, does not properly validate arguments to generic methods, which allows remote malicious users to bypass generic constraints, and possibly execute arbitrary code, via a crafted method call.
Mono Mono
Novell Moonlight
Novell Moonlight 2.99.0
Novell Moonlight 2.99.1
Novell Moonlight 2.99.2
Novell Moonlight 2.99.7
Novell Moonlight 2.99.9
1 EDB exploit
7.5
CVSSv2
CVE-2007-5197
Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and previous versions allows context-dependent malicious users to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods.
Mono Mono
Mono Mono 1.0
Mono Mono 1.0.5
Mono Mono 1.1.4
Mono Mono 1.1.8.3
Mono Mono 1.1.13
Mono Mono 1.1.13.4
Mono Mono 1.1.13.6
Mono Mono 1.1.13.7
Mono Mono 1.1.17
Mono Mono 1.1.17.1
Mono Mono 1.1.18
7.5
CVSSv2
CVE-2006-2504
Multiple SQL injection vulnerabilities in mono AZBOARD 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) search and (2) cate parameters to (a) list.asp, and the (3) id and cate parameters to (b) admin_ok.asp.
Azboard Azboard
6.9
CVSSv2
CVE-2010-4159
Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and previous versions allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Mono Mono 2.4.2.2
Mono Mono 1.1.17.2
Mono Mono 1.1.11
Mono Mono 1.9
Mono Mono 1.1.13.8
Mono Mono 2.2
Mono Mono 1.1.13.4
Mono Mono
Mono Mono 1.1.13.5
Mono Mono 1.2.2
Mono Mono 1.1.13
Mono Mono 1.0
Mono Mono 2.6.3
Mono Mono 1.1.8
Mono Mono 1.1.8.3
Mono Mono 1.1.3
Mono Mono 1.2.5.2
Mono Mono 2.0.1
Mono Mono 1.2.1
Mono Mono 1.0.2
Mono Mono 1.0.1
Mono Mono 2.4.2.3
6.9
CVSSv2
CVE-2010-3369
The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, and other versions prior to 2.8.1, place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Debian Mono-debugger 2.6
Debian Mono-debugger 2.6.7
Debian Mono-debugger 2.6.4
Debian Mono-debugger 2.8
Debian Mono-debugger 2.6.1
Debian Mono-debugger 2.6.3
Debian Mono-debugger 2.4.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »