Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nsa vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-6305
PI Rest Adapter of SAP Process Integration (update provided in SAP_XIAF 7.31, 7.40, 7.50) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability.
Sap Process Integration 7.31
Sap Process Integration 7.40
Sap Process Integration 7.50
1 Article
7
CVSSv3
CVE-2020-3941
The repair operation of VMware Tools for Windows 10.x.y has a race condition which may allow for privilege escalation in the Virtual Machine where Tools is installed. This vulnerability is not present in VMware Tools 11.x.y since the affected functionality is not present in VMwar...
Vmware Tools
1 Article
7.5
CVSSv3
CVE-2020-6304
Improper input validation in SAP NetWeaver Internet Communication Manager (update provided in KRNL32NUC & KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT KRNL64NUC & KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49 KERNEL 7.21, 7.49, 7.53) allows an malicious user to prevent users from ...
Sap Netweaver Internet Communication Manager \\(kernel\\) 7.21
Sap Netweaver Internet Communication Manager \\(kernel\\) 7.22
Sap Netweaver Internet Communication Manager \\(kernel\\) 7.49
Sap Netweaver Internet Communication Manager \\(kernel\\) 7.53
Sap Netweaver Internet Communication Manager \\(krnl32nuc\\) 7.21
Sap Netweaver Internet Communication Manager \\(krnl32nuc\\) 7.21ext
Sap Netweaver Internet Communication Manager \\(krnl32nuc\\) 7.22
Sap Netweaver Internet Communication Manager \\(krnl32nuc\\) 7.22ext
Sap Netweaver Internet Communication Manager \\(krnl32uc\\) 7.21
Sap Netweaver Internet Communication Manager \\(krnl32uc\\) 7.21ext
Sap Netweaver Internet Communication Manager \\(krnl32uc\\) 7.22
Sap Netweaver Internet Communication Manager \\(krnl32uc\\) 7.22ext
Sap Netweaver Internet Communication Manager \\(krnl64nuc\\) 7.21
Sap Netweaver Internet Communication Manager \\(krnl64nuc\\) 7.21ext
Sap Netweaver Internet Communication Manager \\(krnl64nuc\\) 7.22
Sap Netweaver Internet Communication Manager \\(krnl64nuc\\) 7.22ext
Sap Netweaver Internet Communication Manager \\(krnl64nuc\\) 7.49
Sap Netweaver Internet Communication Manager \\(krnl64uc\\) 7.21
Sap Netweaver Internet Communication Manager \\(krnl64uc\\) 7.21ext
Sap Netweaver Internet Communication Manager \\(krnl64uc\\) 7.22
Sap Netweaver Internet Communication Manager \\(krnl64uc\\) 7.22ext
Sap Netweaver Internet Communication Manager \\(krnl64uc\\) 7.49
1 Article
7.8
CVSSv3
CVE-2017-3622
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Common Desktop Environment (CDE)). The supported version that is affected is 10. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure...
Oracle Solaris 10
1 EDB exploit
1 Article
7.8
CVSSv3
CVE-2020-0651
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0650, CVE-2020-0653.
Microsoft Excel 2010
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2019
Microsoft Office 365 Proplus -
2 Articles
7.8
CVSSv3
CVE-2020-0653
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0650, CVE-2020-0651.
Microsoft Office 365 Proplus -
2 Articles
7.8
CVSSv3
CVE-2020-0650
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0651, CVE-2020-0653.
Microsoft Excel 2010
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2019
Microsoft Office 365 Proplus -
2 Articles
7.8
CVSSv3
CVE-2020-0652
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka 'Microsoft Office Memory Corruption Vulnerability'.
Microsoft Excel 2010
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2019
Microsoft Office 365 Proplus -
2 Articles
7.8
CVSSv3
CVE-2021-28310
Win32k Elevation of Privilege Vulnerability
Microsoft Windows 10 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1909
Microsoft Windows 10 1909
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
2 Github repositories
1 Article
10
CVSSv3
CVE-2017-3623
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel RPC). For supported versions that are affected see note. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via multiple protocols to co...
Oracle Solaris
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »