Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mono mono vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2015-7289
Arris DG860A, TG862A, and TG862G devices with firmware TS0703128_100611 through TS0705125D_031115 have a hardcoded administrator password derived from a serial number, which makes it easier for remote malicious users to obtain access via the web management interface, SSH, TELNET,...
Arris Na Model 862 Gw Mono Firmware Ts070593c 073013
Arris Na Model 862 Gw Mono Firmware Ts0703128 100611
Arris Na Model 862 Gw Mono Firmware Ts0703135 112211
Arris Na Model 862 Gw Mono Firmware Ts0705125 062314
Arris Na Model 862 Gw Mono Firmware Ts0705125d 031115
801
VMScore
CVE-2020-12473
MonoX up to and including 5.1.40.5152 allows admins to execute arbitrary programs by reconfiguring the Converter Executable setting from ffmpeg.exe to a different program.
Mono Monox
755
VMScore
CVE-2010-4254
Mono, when Moonlight prior to 2.3.0.1 or 2.99.x prior to 2.99.0.10 is used, does not properly validate arguments to generic methods, which allows remote malicious users to bypass generic constraints, and possibly execute arbitrary code, via a crafted method call.
Mono Mono
Novell Moonlight
Novell Moonlight 2.99.0
Novell Moonlight 2.99.1
Novell Moonlight 2.99.2
Novell Moonlight 2.99.7
Novell Moonlight 2.99.9
1 EDB exploit
668
VMScore
CVE-2021-24112
.NET Core Remote Code Execution Vulnerability
Microsoft Visual Studio 2019 -
Microsoft Mono
Microsoft .net
Microsoft .net Core
1 Github repository
668
VMScore
CVE-2020-12471
MonoX up to and including 5.1.40.5152 allows remote code execution via HTML5Upload.ashx or Pages/SocialNetworking/lng/en-US/PhotoGallery.aspx because of deserialization in ModuleGallery.HTML5Upload, ModuleGallery.SilverLightUploadModule, HTML5Upload, and SilverLightUploadHandler.
Mono Monox
668
VMScore
CVE-2015-2320
The TLS stack in Mono prior to 3.12.1 allows remote malicious users to have unspecified impact via vectors related to client-side SSLv2 fallback.
Mono-project Mono
Debian Debian Linux 7.0
668
VMScore
CVE-2007-5197
Buffer overflow in the Mono.Math.BigInteger class in Mono 1.2.5.1 and previous versions allows context-dependent malicious users to execute arbitrary code via unspecified vectors related to Reduce in Montgomery-based Pow methods.
Mono Mono
Mono Mono 1.0
Mono Mono 1.0.5
Mono Mono 1.1.4
Mono Mono 1.1.8.3
Mono Mono 1.1.13
Mono Mono 1.1.13.4
Mono Mono 1.1.13.6
Mono Mono 1.1.13.7
Mono Mono 1.1.17
Mono Mono 1.1.17.1
Mono Mono 1.1.18
668
VMScore
CVE-2006-2504
Multiple SQL injection vulnerabilities in mono AZBOARD 1.0 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) search and (2) cate parameters to (a) list.asp, and the (3) id and cate parameters to (b) admin_ok.asp.
Azboard Azboard
614
VMScore
CVE-2010-4159
Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and previous versions allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Mono Mono 2.4.2.2
Mono Mono 1.1.17.2
Mono Mono 1.1.11
Mono Mono 1.9
Mono Mono 1.1.13.8
Mono Mono 2.2
Mono Mono 1.1.13.4
Mono Mono
Mono Mono 1.1.13.5
Mono Mono 1.2.2
Mono Mono 1.1.13
Mono Mono 1.0
Mono Mono 2.6.3
Mono Mono 1.1.8
Mono Mono 1.1.8.3
Mono Mono 1.1.3
Mono Mono 1.2.5.2
Mono Mono 2.0.1
Mono Mono 1.2.1
Mono Mono 1.0.2
Mono Mono 1.0.1
Mono Mono 2.4.2.3
614
VMScore
CVE-2010-3369
The (1) mdb and (2) mdb-symbolreader scripts in mono-debugger 2.4.3, and other versions prior to 2.8.1, place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
Debian Mono-debugger 2.6
Debian Mono-debugger 2.6.7
Debian Mono-debugger 2.6.4
Debian Mono-debugger 2.8
Debian Mono-debugger 2.6.1
Debian Mono-debugger 2.6.3
Debian Mono-debugger 2.4.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »