Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
non customers vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2278
The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and other products allows context-de...
Sap Maxdb 7.5
Sap Netweaver Java Application Server -
Sap Netweaver Rfc Sdk -
Sap Gui -
Sap Rfc Library
Sap Maxdb 7.6
Sap Netweaver Abap Application Server -
1 Article
10
CVSSv3
CVE-2022-20695
A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote malicious user to bypass authentication controls and log in to the device through the management interface This vulnerability is due to the i...
Cisco Wireless Lan Controller 8.10.151.0
Cisco Wireless Lan Controller 8.10.162.0
8.8
CVSSv3
CVE-2021-40444
<p>Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.</p> <p&...
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1607
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 10 1909
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 7 -
Microsoft Windows 8.1 -
59 Github repositories
8 Articles
9.8
CVSSv3
CVE-2022-33936
Cloud Mobility for Dell EMC Storage, 1.3.0.XXX contains a RCE vulnerability. A non-privileged user could potentially exploit this vulnerability, leading to achieving a root shell. This is a critical issue; so Dell recommends customers to upgrade at the earliest opportunity.
Dell Cloud Mobility For Dell Emc Storage 1.3.0
9.8
CVSSv3
CVE-2019-6177
A vulnerability reported in Lenovo Solution Center version 03.12.003, which is no longer supported, could allow log files to be written to non-standard locations, potentially leading to privilege escalation. Lenovo ended support for Lenovo Solution Center and recommended that cus...
Lenovo Solution Center 03.12.003
1 Article
8.4
CVSSv3
CVE-2023-45159
1E Client installer can perform arbitrary file deletion on protected files. A non-privileged user could provide a symbolic link or Windows junction to point to a protected directory in the installer that the 1E Client would then clear on service startup. A hotfix is available fro...
1e Client 8.1.2.62
1e Client 8.4.1.159
1e Client 9.0.1.88
1e Client 23.7.1.151
8.8
CVSSv3
CVE-2023-45160
In the affected version of the 1E Client, an ordinary user could subvert downloaded instruction resource files, e.g., to substitute a harmful script. by replacing a resource script file created by an instruction at run time with a malicious script. The 1E Client's temporary...
1e Client 8.1.2.62
1e Client 8.4.1.159
1e Client 9.0.1.88
1e Client 23.7.1.151
NA
CVE-2009-0638
The Cisco Firewall Services Module (FWSM) 2.x, 3.1 prior to 3.1(16), 3.2 prior to 3.2(13), and 4.0 prior to 4.0(6) for Cisco Catalyst 6500 switches and Cisco 7600 routers allows remote malicious users to cause a denial of service (traffic-handling outage) via a series of malforme...
Cisco Firewall Services Module 2.1 \\(0.208\\)
Cisco Firewall Services Module 2.3
Cisco Firewall Services Module 3.2\\(2\\)
Cisco Firewall Services Module 3.2\\(3\\)
Cisco Firewall Services Module 2.3\\(1\\)
Cisco Firewall Services Module 3.1
Cisco Firewall Services Module 4.0
Cisco Firewall Services Module 4.0\\(4\\)
Cisco Firewall Services Module 3.2
Cisco Firewall Services Module 3.2\\(1\\)
Cisco Firewall Services Module 3.1\\(5\\)
Cisco Firewall Services Module 3.1\\(6\\)
Cisco Firewall Services Module 2.2\\(1\\)
Cisco Firewall Services Module 2.2
9.8
CVSSv3
CVE-2023-22527
A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated malicious user to achieve RCE on an affected instance. Customers using an affected version must take immediate action. Most recent supported versions of Confluence ...
Atlassian Confluence Data Center
Atlassian Confluence Server
26 Github repositories
2 Articles
NA
CVE-2012-2567
The Xelex MobileTrack application 2.3.7 and previous versions for Android uses hardcoded credentials, which allows remote malicious users to obtain sensitive information via an unencrypted (1) FTP or (2) HTTP session.
Xelex Mobiletrack
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »