Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ports vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-24142
Server-side request forgery in the Video Downloader for TikTok (aka downloader-tiktok) plugin 1.3 for WordPress lets an attacker send crafted requests from the back-end server of a vulnerable web application via the njt-tk-download-video parameter. It can help identify open ports...
Ninjateam Video Downloader For Tiktok 1.3
9.8
CVSSv3
CVE-2021-1870
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution. Apple is aware of a re...
Apple Mac Os X
Apple Mac Os X 10.15.7
Apple Iphone Os
Apple Ipad Os
Apple Macos
Webkitgtk Webkitgtk
Fedoraproject Fedora 32
Fedoraproject Fedora 33
1 Article
9.8
CVSSv3
CVE-2020-35205
Server Side Request Forgery (SSRF) in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows malicious users to scan internal ports and make outbound connections via the initFile.jsp file. NOTE: This vulnerability only affects products that are no longer suppor...
Quest Policy Authority For Unified Communications 8.1.2.200
9.8
CVSSv3
CVE-2020-10271
MiR100, MiR200 and other MiR robots use the Robot Operating System (ROS) default packages exposing the computational graph to all network interfaces, wireless and wired. This is the result of a bad set up and can be mitigated by appropriately configuring ROS and/or applying custo...
Aliasrobotics Mir100 Firmware
Aliasrobotics Mir200 Firmware
Aliasrobotics Mir250 Firmware
Aliasrobotics Mir500 Firmware
Aliasrobotics Mir1000 Firmware
Mobile-industrial-robotics Er200 Firmware
Enabled-robotics Er-lite Firmware
Enabled-robotics Er-flex Firmware
Enabled-robotics Er-one Firmware
Uvd-robots Uvd Robots Firmware
9.8
CVSSv3
CVE-2020-3198
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker or an authenticated, local malicious user to execut...
Cisco Ios 12.2\\(60\\)ez16
Cisco Ios 15.0\\(2\\)sg11a
Cisco Ios 15.3\\(3\\)jaa1
Cisco Ios 15.3\\(3\\)jpj
Cisco Ios 15.4\\(1\\)cg
Cisco Ios 15.4\\(2\\)cg
Cisco Ios 15.4\\(3\\)m
Cisco Ios 15.4\\(3\\)m1
Cisco Ios 15.4\\(3\\)m2
Cisco Ios 15.4\\(3\\)m3
Cisco Ios 15.4\\(3\\)m4
Cisco Ios 15.4\\(3\\)m5
Cisco Ios 15.4\\(3\\)m6
Cisco Ios 15.4\\(3\\)m6a
Cisco Ios 15.4\\(3\\)m7
Cisco Ios 15.4\\(3\\)m8
Cisco Ios 15.4\\(3\\)m9
Cisco Ios 15.4\\(3\\)m10
Cisco Ios 15.5\\(1\\)t
Cisco Ios 15.5\\(1\\)t2
Cisco Ios 15.5\\(1\\)t3
Cisco Ios 15.5\\(1\\)t4
9.8
CVSSv3
CVE-2020-3258
Multiple vulnerabilities in Cisco IOS Software for Cisco 809 and 829 Industrial Integrated Services Routers (Industrial ISRs) and Cisco 1000 Series Connected Grid Routers (CGR1000) could allow an unauthenticated, remote attacker or an authenticated, local malicious user to execut...
Cisco Ios 15.8\\(3\\)m2
Cisco Ios 15.8\\(9\\)
Cisco Ios 15.9
9.8
CVSSv3
CVE-2013-1592
A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a remot...
Sap Netweaver 7.01
Sap Netweaver 7.02
Sap Netweaver 7.30
Sap Netweaver 2004s
1 EDB exploit
9.8
CVSSv3
CVE-2019-18337
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0). The Control Center Server (CCS) contains an authentication bypass vulnerability in its XML-based communication protocol as provided by default on ports 5444/tcp and 5440/tcp. A remote a...
Siemens Sinvr 3 Video Server
Siemens Sinvr 3 Central Control Server
9.8
CVSSv3
CVE-2019-16948
An SSRF issue exists in Enghouse Web Chat 6.1.300.31. In any POST request, one can replace the port number at WebServiceLocation=http://localhost:8085/UCWebServices/ with a range of ports to determine what is visible on the internal network (as opposed to what general web traffic...
Enghouse Web Chat 6.1.300.31
9.8
CVSSv3
CVE-2019-14809
net/url in Go prior to 1.11.13 and 1.12.x prior to 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port nu...
Golang Go
Debian Debian Linux 10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »