Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netmask vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2023-29108
The IP filter in ABAP Platform and SAP Web Dispatcher - versions WEBDISP 7.85, 7.89, KERNEL 7.85, 7.89, 7.91, may be vulnerable by erroneous IP netmask handling. This may enable access to backend applications from unwanted sources.
Sap Abap Platform Kernel 7.85
Sap Web Dispatcher 7.85
Sap Web Dispatcher 7.89
Sap Abap Platform Kernel 7.89
Sap Abap Platform Kernel 7.91
NA
CVE-2003-0993
mod_access in Apache 1.3 prior to 1.3.30, when running big-endian 64-bit platforms, does not properly parse Allow/Deny rules using IP addresses without a netmask, which could allow remote malicious users to bypass intended access restrictions.
Apache Http Server 1.3.23
Apache Http Server 1.3.27
Apache Http Server 1.3.1
Apache Http Server 1.3.25
Apache Http Server 1.3.28
Apache Http Server 1.3.19
Apache Http Server 1.3.24
Apache Http Server 1.3.20
Apache Http Server 1.3.7
Apache Http Server 1.3.6
Apache Http Server 1.3.4
Apache Http Server 1.3.18
Apache Http Server 1.3
Apache Http Server 1.3.12
Apache Http Server 1.3.3
Apache Http Server 1.3.17
Apache Http Server 1.3.26
Apache Http Server 1.3.9
Apache Http Server 1.3.14
Apache Http Server 1.3.29
Apache Http Server 1.3.22
Apache Http Server 1.3.11
NA
CVE-2005-0581
Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote malicious users to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, ...
Broadcom License Software 0.1.0.15
4 EDB exploits
5.3
CVSSv3
CVE-2017-15093
When api-config-dir is set to a non-empty value, which is not the case by default, the API in PowerDNS Recursor 4.x up to and including 4.0.6 and 3.x up to and including 3.7.4 allows an authorized user to update the Recursor's ACL by adding and removing netmasks, and to conf...
Powerdns Recursor
1 Article
NA
CVE-2006-1590
Cross-site scripting (XSS) vulnerability in the PrintFreshPage function in (1) Basic Analysis and Security Engine (BASE) 1.2.4 and (2) Analysis Console for Intrusion Databases (ACID) 0.9.6b23 allows remote malicious users to inject arbitrary web script or HTML via the (a) back pa...
Kevin Johnson Basic Analysis And Security Engine 1.0.2
Kevin Johnson Basic Analysis And Security Engine 1.1
Kevin Johnson Basic Analysis And Security Engine 1.1.2
Roman Danyliw Analysis Console For Intrusion Databases \\(acid\\) 0.9.6b23
Kevin Johnson Basic Analysis And Security Engine 0.9.8
Kevin Johnson Basic Analysis And Security Engine 0.9.9
Kevin Johnson Basic Analysis And Security Engine 1.2.0
Kevin Johnson Basic Analysis And Security Engine 1.2.1
Kevin Johnson Basic Analysis And Security Engine 1.0
Kevin Johnson Basic Analysis And Security Engine 1.0.1
Kevin Johnson Basic Analysis And Security Engine 1.2.2
Kevin Johnson Basic Analysis And Security Engine 1.2.4
Kevin Johnson Basic Analysis And Security Engine 0.9.7
Kevin Johnson Basic Analysis And Security Engine 0.9.7.1
Kevin Johnson Basic Analysis And Security Engine 1.1.3
Kevin Johnson Basic Analysis And Security Engine 1.1.4
1 EDB exploit
NA
CVE-2010-0584
Unspecified vulnerability in Cisco IOS 12.4, when NAT SCCP fragmentation support is enabled, allows remote malicious users to cause a denial of service (device reload) via crafted Skinny Client Control Protocol (SCCP) packets, aka Bug ID CSCsy09250.
Cisco Ios 12.4gc
Cisco Ios 12.4xg
Cisco Ios 12.4xj
Cisco Ios 12.4xt
Cisco Ios 12.4xv
Cisco Ios 12.4ye
Cisco Ios 12.4md
Cisco Ios 12.4mda
Cisco Ios 12.4xk
Cisco Ios 12.4xl
Cisco Ios 12.4xw
Cisco Ios 12.4xy
Cisco Ios 12.4sw
Cisco Ios 12.4t
Cisco Ios 12.4xm
Cisco Ios 12.4xn
Cisco Ios 12.4xp
Cisco Ios 12.4xz
Cisco Ios 12.4ya
Cisco Ios 12.4yg
Cisco Ios 12.4xe
Cisco Ios 12.4xf
6.8
CVSSv3
CVE-2022-43625
This vulnerability allows network-adjacent malicious users to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific f...
Dlink Dir-1935 Firmware
Dlink Dir-1935 Firmware 1.03
6.5
CVSSv3
CVE-2017-12222
A vulnerability in the wireless controller manager of Cisco IOS XE could allow an unauthenticated, adjacent malicious user to cause a restart of the switch and result in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation. An attacker co...
Cisco Ios Xe 16.3.1
Cisco Ios Xe 16.3.3
Cisco Ios Xe 16.1.2
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.1.4
Cisco Ios Xe 16.1.3
Cisco Ios Xe 16.1.3a
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.2.2a
Cisco Ios Xe 16.2.3
Cisco Ios Xe 16.1.1
Cisco Ios Xe 16.2.1
Cisco Ios Xe 16.2.2
6.5
CVSSv3
CVE-2020-1637
A vulnerability in Juniper Networks SRX Series device configured as a Junos OS Enforcer device may allow a user to access network resources that are not permitted by a UAC policy. This issue might occur when the IP address range configured in the Infranet Controller (IC) is confi...
Juniper Junos 12.3x48
Juniper Junos 15.1x49
Juniper Junos 17.3
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 18.4
Juniper Junos 19.1
Juniper Junos 19.2
Juniper Junos 19.3
Juniper Junos 19.4
NA
CVE-2014-3361
The ALG module in Cisco IOS 15.0 up to and including 15.4 does not properly implement SIP over NAT, which allows remote malicious users to cause a denial of service (device reload) via multipart SDP IPv4 traffic, aka Bug ID CSCun54071.
Cisco Ios 15.2
Cisco Ios 15.3
Cisco Ios 15.0
Cisco Ios 15.1
Cisco Ios 15.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »