Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p1 vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2019-8109
A remote code execution vulnerability exists in Magento 2.2 before 2.2.10, Magento 2.3 before 2.3.3 or 2.3.2-p1. An authenticated user can craft a malicious CSRF payload that can result in arbitrary command execution.
Magento Magento
Magento Magento 2.3.2
8
CVSSv3
CVE-2016-1991
HPE ArcSight ESM 5.x prior to 5.6, 6.0, 6.5.x prior to 6.5C SP1 Patch 2, and 6.8c before P1, and ArcSight ESM Express prior to 6.9.1, allows remote authenticated users to conduct unspecified "file download" attacks via unknown vectors.
Microfocus Arcsight Enterprise Security Manager 6.0
Microfocus Arcsight Enterprise Security Manager 6.8
Microfocus Arcsight Enterprise Security Manager
Microfocus Arcsight Enterprise Security Manager 6.5
Microfocus Arcsight Enterprise Security Manager 6.9
7.8
CVSSv3
CVE-2023-22809
In Sudo prior to 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local malicious user to append arbitrary entries to the list of files to process. This can lead to p...
Sudo Project Sudo 1.9.12
Sudo Project Sudo
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Apple Macos
11 Github repositories
7.8
CVSSv3
CVE-2022-41741
NGINX Open Source prior to 1.23.2 and 1.22.1, NGINX Open Source Subscription prior to R2 P1 and R1 P1, and NGINX Plus prior to R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local malicious user to corrupt NGINX worker memory, resultin...
F5 Nginx Ingress Controller
F5 Nginx
F5 Nginx 1.23.1
F5 Nginx 1.23.0
F5 Nginx R2
F5 Nginx R1
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Debian Debian Linux 10.0
Debian Debian Linux 11.0
1 Github repository
7.8
CVSSv3
CVE-2022-30984
A buffer overflow vulnerability in the Rubrik Backup Service (RBS) Agent for Linux or Unix-based systems in Rubrik CDM 7.0.1, 7.0.1-p1, 7.0.1-p2 or 7.0.1-p3 before CDM 7.0.2-p2 could allow a local malicious user to obtain root privileges by sending a crafted message to the RBS ag...
Rubrik Cdm 7.0.1
7.8
CVSSv3
CVE-2019-5603
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2019-5606
In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r349806, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, code which handles close of a descriptor created by posix_openpt fails to undo a signal con...
Freebsd Freebsd 12.0
Freebsd Freebsd 11.2
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2019-5607
In FreeBSD 12.0-STABLE before r350222, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350223, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, rights transmitted over a domain socket did not properly release a reference on transmissio...
Freebsd Freebsd 12.0
Freebsd Freebsd 11.2
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2017-3141
The BIND installer on Windows uses an unquoted service path which can enable a local user to achieve privilege escalation if the host file system permissions allow this. Affects BIND 9.2.6-P2->9.2.9, 9.3.2-P1->9.3.6, 9.4.0->9.8.8, 9.9.0->9.9.10, 9.10.0->9.10.5, 9.1...
Isc Bind
Isc Bind 9.3.2
Isc Bind 9.2.6
1 EDB exploit
1 Github repository
7.8
CVSSv3
CVE-2015-1416
Larry Wall's patch; patch in FreeBSD 10.2-RC1 prior to 10.2-RC1-p1, 10.2 prior to 10.2-BETA2-p2, and 10.1 prior to 10.1-RELEASE-p16; Bitrig; GNU patch prior to 2.2.5; and possibly other patch variants allow remote malicious users to execute arbitrary shell commands via a cra...
Freebsd Freebsd 10.1
Freebsd Freebsd 10.0
Freebsd Freebsd 10.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »