Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
physical vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2007-1365
Buffer overflow in kern/uipc_mbuf2.c in OpenBSD 3.9 and 4.0 allows remote malicious users to execute arbitrary code via fragmented IPv6 packets due to "incorrect mbuf handling for ICMP6 packets." NOTE: this was originally reported as a denial of service.
Openbsd Openbsd 3.9
Openbsd Openbsd 4.0
1 EDB exploit
935
VMScore
CVE-2013-6021
Buffer overflow in WGagent in WatchGuard WSM and Fireware prior to 11.8 allows remote malicious users to execute arbitrary code via a long sessionid value in a cookie.
Watchguard Fireware 11.7.2
Watchguard Fireware
Watchguard Fireware 11.3.6
Watchguard Fireware 11.4.2
Watchguard Fireware 11.5.3
Watchguard Fireware 11.5.1
Watchguard Fireware 11.3
Watchguard Fireware 11.0.2
Watchguard Fireware 11.2.3
Watchguard Fireware 11.1
Watchguard Fireware 11.4
Watchguard Fireware 11.6.6
1 EDB exploit
890
VMScore
CVE-2022-27250
The UNISOC chipset through 2022-03-15 allows malicious users to obtain remote control of a mobile phone, e.g., to obtain sensitive information from text messages or the device's screen, record video of the device's physical environment, or modify data.
Unisoc Unisoc Chipset
890
VMScore
CVE-2020-24051
The Moog EXO Series EXVF5C-2 and EXVP7C2-3 units support the ONVIF interoperability IP-based physical security protocol, which requires authentication for some of its operations. It was found that the authentication check for those ONVIF operations can be bypassed. An attacker ca...
Moog Exvf5c-2 Firmware -
Moog Exvp7c2-3 Firmware -
890
VMScore
CVE-2020-11552
An elevation of privilege vulnerability exists in ManageEngine ADSelfService Plus before build 6003 because it does not properly enforce user privileges associated with a Certificate dialog. This vulnerability could allow an unauthenticated malicious user to escalate privileges o...
Zohocorp Manageengine Adselfservice Plus 6.0
Zohocorp Manageengine Adselfservice Plus
890
VMScore
CVE-2019-9493
The MyCar Controls of AutoMobility Distribution Inc., mobile application contains hard-coded admin credentials. A remote unauthenticated attacker may be able to send commands to and retrieve data from a target MyCar unit. This may allow the malicious user to learn the location of...
Mycarcontrols Mycar Controls
890
VMScore
CVE-2016-6406
Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance (ESA) devices, when Enrollment Client prior to 1.0.2-065 is installed, allows remote malicious users to obtain root access via a connect...
Cisco Email Security Appliance Firmware 9.1.2-028
Cisco Email Security Appliance Firmware 9.7.2-047
Cisco Email Security Appliance Firmware 9.1.2-036
Cisco Email Security Appliance Firmware 10.0.0-125
Cisco Email Security Appliance Firmware 10.0.0-124
Cisco Email Security Appliance Firmware 9.7.2-054
Cisco Email Security Appliance Firmware 9.7.2-046
Cisco Email Security Appliance Firmware 9.1.2-023
890
VMScore
CVE-2014-2940
Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows malicious users to obtain administrative control by leveraging physical access or terminal access.
Cobham Sailor 900 Firmware 1.08 Mfhf
Cobham Sailor 900 Firmware 2.11 Vhf
Cobham Sailor 6000 Series Firmware 1.08 Mfhf
Cobham Sailor 6000 Series Firmware 2.11 Vhf
890
VMScore
CVE-2008-7173
The Jura Internet Connection Kit for the Jura Impressa F90 coffee maker does not properly restrict access to privileged functions, which allows remote malicious users to cause a denial of service (physical damage), modify coffee settings, and possibly execute code via a crafted r...
Juracapecoffee Internet Connectivity Kit
858
VMScore
CVE-2016-6366
Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software up to and including 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv, Firepower 9300 ASA Security Module, PIX, and FWSM devices allows remote authenticated users to execute arbitrary code via...
Cisco Firepower Threat Defense Software 6.0.0
Cisco Firepower Threat Defense Software 6.0.1
Cisco Firepower Services Software For Asa 5.4.1
Cisco Firepower Services Software For Asa 5.4.0
Cisco Firepower Services Software For Asa 5.4.1.5
Cisco Firepower Services Software For Asa 5.4.1.3
Cisco Firepower Services Software For Asa 5.4.1.1
Cisco Firepower Services Software For Asa 5.4.1.6
Cisco Firepower Services Software For Asa 5.4.1.4
Cisco Firepower Services Software For Asa 5.4.1.7
Cisco Firepower Services Software For Asa 5.4.1.2
Cisco Pix Firewall 525 6.3
Cisco Pix Firewall 515 Base
Cisco Pix Firewall 525 Base
Cisco Pix Firewall Base
Cisco Pix Firewall 520 Base
Cisco Pix Firewall 535 Base
Cisco Pix Firewall 501 Base
Cisco Pix Firewall 515e Base
Cisco Pix Firewall 506 Base
Cisco Adaptive Security Appliance Software 9.3.2
Cisco Adaptive Security Appliance Software 9.1.1.4
1 EDB exploit
9 Github repositories
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »