Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
on-premise vulnerabilities and exploits
(subscribe to this query)
891
VMScore
CVE-2022-23166
Sysaid – Sysaid Local File Inclusion (LFI) – An unauthenticated attacker can access to the system by accessing to "/lib/tinymce/examples/index.html" path. in the "Insert/Edit Embedded Media" window Choose Type : iFrame and File/URL : [here is the L...
Sysaid Sysaid
890
VMScore
CVE-2020-10569
SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may...
Sysaid On-premise 20.1.11
828
VMScore
CVE-2022-1362
The affected On-Premise cnMaestro is vulnerable inside a specific route where a user can upload a crafted package to the system. An attacker could abuse this user-controlled data to execute arbitrary commands on the server.
Cambiumnetworks Cnmaestro 2.4.2
Cambiumnetworks Cnmaestro 3.0.0
Cambiumnetworks Cnmaestro 3.0.3
801
VMScore
CVE-2022-25152
The ITarian platform (SAAS / on-premise) offers the possibility to run code on agents via a function called procedures. It is possible to require a mandatory approval process. Due to a vulnerability in the approval process, present in any version before 6.35.37347.20040, a malici...
Itarian Saas Service Desk
Itarian On-premise
801
VMScore
CVE-2021-34417
The network proxy page on the web portal for the Zoom On-Premise Meeting Connector Controller before version 4.6.365.20210703, Zoom On-Premise Meeting Connector MMR before version 4.6.365.20210703, Zoom On-Premise Recording Connector before version 3.8.45.20210703, Zoom On-Premis...
Zoom Zoom On-premise Meeting Connector Controller
Zoom Zoom On-premise Meeting Connector Mmr
Zoom Zoom On-premise Recording Connector
Zoom Zoom On-premise Virtual Room Connector
Zoom Zoom On-premise Virtual Room Connector Load Balancer
801
VMScore
CVE-2020-29299
Certain Zyxel products allow command injection by an admin via an input string to chg_exp_pwd during a password-change action. This affects VPN On-premise before ZLD V4.39 week38, VPN Orchestrator before SD-OS V10.03 week32, USG before ZLD V4.39 week38, USG FLEX before ZLD V4.55 ...
Zyxel Vpn Orchestrator
Zyxel Zld
Zyxel Nsg Firmware
Zyxel Nsg Firmware 1.33
Zyxel Usg Flex Firmware -
694
VMScore
CVE-2021-34415
The Zone Controller service in the Zoom On-Premise Meeting Connector Controller before version 4.6.358.20210205 does not verify the cnt field sent in incoming network packets, which leads to exhaustion of resources and system crash.
Zoom Meeting Connector
1 Article
668
VMScore
CVE-2022-1357
The affected On-Premise cnMaestro allows an unauthenticated malicious user to access the cnMaestro server and execute arbitrary code in the privileges of the web server. This lack of validation could allow an malicious user to append arbitrary data to the logger command.
Cambiumnetworks Cnmaestro 2.4.2
Cambiumnetworks Cnmaestro 3.0.0
Cambiumnetworks Cnmaestro 3.0.3
668
VMScore
CVE-2022-1360
The affected On-Premise cnMaestro is vulnerable to execution of code on the cnMaestro hosting server. This could allow a remote malicious user to change server configuration settings.
Cambiumnetworks Cnmaestro 2.4.2
Cambiumnetworks Cnmaestro 3.0.0
Cambiumnetworks Cnmaestro 3.0.3
668
VMScore
CVE-2021-34423
A buffer overflow vulnerability exists in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings for intune (for Android and iOS) bef...
Zoom Meetings
Zoom Meetings For Blackberry
Zoom Meetings For Intune
Zoom Meetings For Chrome Os
Zoom Rooms For Conference Rooms
Zoom Controllers For Zoom Rooms
Zoom Virtual Desktop Infrastructure
Zoom Windows Meeting Sdk
Zoom Macos Meeting Sdk
Zoom Iphone Os Meeting Sdk
Zoom Android Meeting Sdk
Zoom Windows Video Sdk
Zoom Iphone Os Video Sdk
Zoom Macos Video Sdk
Zoom Android Video Sdk
Zoom Hybrid Mmr
Zoom Hybrid Zproxy
Zoom Zoom On-premise Meeting Connector Controller
Zoom Zoom On-premise Virtual Room Connector
Zoom Zoom On-premise Recording Connector
Zoom Zoom On-premise Virtual Room Connector Load Balancer
Zoom Zoom On-premise Meeting Connector Mmr
2 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »