Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openssl vulnerabilities and exploits
(subscribe to this query)
802
VMScore
CVE-2008-0166
OpenSSL 0.9.8c-1 up to versions prior to 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote malicious users to conduct brute force guessing attacks against cryptographic keys.
Openssl Openssl
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
3 EDB exploits
22 Github repositories
801
VMScore
CVE-2020-28021
Exim 4 prior to 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command.
Exim Exim
801
VMScore
CVE-2020-17095
Windows Hyper-V Remote Code Execution Vulnerability
Microsoft Windows Server 2016 -
Microsoft Windows 10 1607
Microsoft Windows 10 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1903
Microsoft Windows 10 1903
Microsoft Windows Server 2016 1909
Microsoft Windows 10 1909
Microsoft Windows Server 2016 2004
Microsoft Windows 10 2004
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 20h2
1 Article
801
VMScore
CVE-2020-26829
SAP NetWeaver AS JAVA (P2P Cluster Communication), versions - 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allows arbitrary connections from processes because of missing authentication check, that are outside the cluster and even outside the network segment dedicated for the internal clus...
Sap Netweaver Application Server Java 7.11
Sap Netweaver Application Server Java 7.20
Sap Netweaver Application Server Java 7.30
Sap Netweaver Application Server Java 7.31
Sap Netweaver Application Server Java 7.40
Sap Netweaver Application Server Java 7.50
1 Article
801
VMScore
CVE-2014-2170
Cisco TelePresence TC Software 4.x and 5.x prior to 5.1.7 and 6.x prior to 6.0.1 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to tshell (aka tcsh) scripts, aka Bug ID CSCue60202.
Cisco Telepresence Te Software 4.1.0
Cisco Telepresence Te Software 4.1.2
Cisco Telepresence Te Software 4.1.3
Cisco Telepresence Te Software 6.0
Cisco Telepresence Te Software 4.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 5.1.5
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
Cisco Telepresence Tc Software 4.0.0
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.2.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 4.2.2
Cisco Telepresence Tc Software 5.0.2
801
VMScore
CVE-2014-2169
Cisco TelePresence TC Software 4.x up to and including 6.x prior to 6.2.0 and TE Software 4.x and 6.0 allow remote authenticated users to execute arbitrary commands by using the commands as arguments to internal system scripts, aka Bug ID CSCue60211.
Cisco Telepresence Tc Software 5.1.1
Cisco Telepresence Tc Software 5.1.2
Cisco Telepresence Tc Software 5.1.3
Cisco Telepresence Tc Software 5.1.4
Cisco Telepresence Tc Software 6.0.0
Cisco Telepresence Tc Software 5.0.0
Cisco Telepresence Tc Software 5.0.2
Cisco Telepresence Tc Software 5.1.6
Cisco Telepresence Tc Software 4.0.1
Cisco Telepresence Tc Software 4.2.3
Cisco Telepresence Tc Software 6.0.1
Cisco Telepresence Tc Software 6.1.0
Cisco Telepresence Tc Software 6.1.1
Cisco Telepresence Tc Software 6.1.2
Cisco Telepresence Tc Software 4.0.4
Cisco Telepresence Tc Software 4.1.1
Cisco Telepresence Tc Software 4.1.2
Cisco Telepresence Tc Software 4.2.0
Cisco Telepresence Tc Software 4.2.1
Cisco Telepresence Tc Software 5.1.7
Cisco Telepresence Tc Software 5.0.1
Cisco Telepresence Tc Software 5.1.0
801
VMScore
CVE-2013-1640
The (1) template and (2) inline_template functions in the master server in Puppet prior to 2.6.18, 2.7.x prior to 2.7.21, and 3.1.x prior to 3.1.1, and Puppet Enterprise prior to 1.2.7 and 2.7.x prior to 2.7.2 allows remote authenticated users to execute arbitrary code via a craf...
Puppet Puppet
Puppet Puppet 3.1.0
Puppet Puppet Enterprise
Puppet Puppet Enterprise 2.7.0
Puppet Puppet Enterprise 2.7.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
766
VMScore
CVE-2002-0082
The dbm and shm session cache code in mod_ssl prior to 2.8.7-1.3.23, and Apache-SSL prior to 1.3.22+1.46, does not properly initialize memory using the i2d_SSL_SESSION function, which allows remote malicious users to use a buffer overflow to execute arbitrary code via a large cli...
Apache-ssl Apache-ssl 1.45
Apache-ssl Apache-ssl 1.46
Mod Ssl Mod Ssl 2.8.5
Mod Ssl Mod Ssl 2.8.6
Apache-ssl Apache-ssl 1.42
Apache-ssl Apache-ssl 1.44
Mod Ssl Mod Ssl 2.8.3
Mod Ssl Mod Ssl 2.8.4
Mod Ssl Mod Ssl 2.7.1
Mod Ssl Mod Ssl 2.8
Apache-ssl Apache-ssl 1.40
Apache-ssl Apache-ssl 1.41
Mod Ssl Mod Ssl 2.8.1
Mod Ssl Mod Ssl 2.8.2
3 EDB exploits
3 Github repositories
755
VMScore
CVE-2018-7584
In PHP up to and including 5.6.33, 7.0.x prior to 7.0.28, 7.1.x up to and including 7.1.14, and 7.2.x up to and including 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper....
Php Php
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 EDB exploit
755
VMScore
CVE-2012-2131
Multiple integer signedness errors in crypto/buffer/buffer.c in OpenSSL 0.9.8v allow remote malicious users to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly have unspecified other impact, via crafted DER data, as demonstrated by an...
Openssl Openssl 0.9.8v
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »