Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p1 vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2022-36437
The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated malicious user to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are up to and including 4.0.6, 4.1.9, 4...
Hazelcast Hazelcast-jet
Hazelcast Hazelcast
NA
CVE-2011-0376
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x, 1.6.0, and 1.6.1 allows remote malicious users to obtain sensitive information via a GET request, aka Bug ID CSCte43876.
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System Software 1.6.1
Cisco Telepresence System Software 1.6.0
Cisco Telepresence System 500 Series
NA
CVE-2011-0375
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.6.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCth24671.
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.6.8
Cisco Telepresence System Software 1.6.5
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.6.0
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.6.4
Cisco Telepresence System Software 1.6.6
Cisco Telepresence System Software 1.6.7
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.6.2
Cisco Telepresence System Software 1.6.3
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
NA
CVE-2011-0377
Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.6.x allow remote malicious users to cause a denial of service (service crash) via a malformed SOAP request in conjunction with a spoofed TelePresence Manager that supplies an invalid IP address, aka Bug...
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.6.3
Cisco Telepresence System Software 1.6.4
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.6.5
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.6.0
Cisco Telepresence System Software 1.6.2
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.6.6
Cisco Telepresence System Software 1.6.7
Cisco Telepresence System Software 1.6.8
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
7.1
CVSSv3
CVE-2018-1247
RSA Authentication Manager Security Console, version 8.3 and previous versions, contains a XML External Entity (XXE) vulnerability. This could potentially allow admin users to cause a denial of service or extract server data via injecting a maliciously crafted DTD in an XML file ...
Rsa Authentication Manager
1 EDB exploit
7.3
CVSSv3
CVE-2021-22573
The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes from valid provider, not from someone else. An attacker can provide a compromised token with custom payload. The token wil...
Google Oauth Client Library For Java
1 Github repository
NA
CVE-2006-4924
sshd in OpenSSH prior to 4.4, when using the version 1 SSH protocol, allows remote malicious users to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Openbsd Openssh 1.2.1
Openbsd Openssh 1.2.2
Openbsd Openssh 1.2.27
Openbsd Openssh 2.5.1
Openbsd Openssh 2.5.2
Openbsd Openssh 3.0.1
Openbsd Openssh 3.0.1p1
Openbsd Openssh 3.2.2
Openbsd Openssh 3.2.2p1
Openbsd Openssh 3.2.3p1
Openbsd Openssh 3.6
Openbsd Openssh 3.6.1
Openbsd Openssh 3.8
Openbsd Openssh 3.8.1
Openbsd Openssh 4.2
Openbsd Openssh 4.2p1
Openbsd Openssh 1.2
Openbsd Openssh 2.3
Openbsd Openssh 2.5
Openbsd Openssh 2.9p2
Openbsd Openssh 3.0
Openbsd Openssh 3.1p1
1 EDB exploit
9.8
CVSSv3
CVE-2022-31259
The route lookup process in beego prior to 1.12.9 and 2.x prior to 2.0.3 allows malicious users to bypass access control. When a /p1/p2/:name route is configured, attackers can access it by appending .xml in various places (e.g., p1.xml instead of p1).
Beego Beego
1 Github repository
6.5
CVSSv3
CVE-2020-9689
Magento versions 2.3.5-p1 and previous versions, and 2.3.5-p1 and previous versions have a path traversal vulnerability. Successful exploitation could lead to arbitrary code execution.
Magento Magento
Magento Magento 2.3.5
NA
CVE-2013-3919
resolver.c in ISC BIND 9.8.5 prior to 9.8.5-P1, 9.9.3 prior to 9.9.3-P1, and 9.6-ESV-R9 prior to 9.6-ESV-R9-P1, when a recursive resolver is configured, allows remote malicious users to cause a denial of service (assertion failure and named daemon exit) via a query for a record i...
Isc Bind 9.9.3
Isc Bind 9.6
Isc Bind 9.8.5
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »