Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
presentation server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2850
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote malicious users to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.
Citrix Metaframe 3.0
Citrix Metaframe 4.0
Citrix Access Essentials 1.0
Citrix Access Essentials 1.5
4.6
CVSSv3
CVE-2016-2782
The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel prior to 4.5 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that la...
Linux Linux Kernel
Linux Linux Kernel 4.5.0
Suse Linux Enterprise Debuginfo 11
Suse Linux Enterprise Module For Public Cloud 12
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Real Time Extension 11
Suse Linux Enterprise Real Time Extension 12
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Software Development Kit 12
Suse Linux Enterprise Workstation Extension 12
1 EDB exploit
NA
CVE-2005-3134
Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote malicious users to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).
Citrix Metaframe 4.0
Citrix Metaframe 3.0
NA
CVE-2008-6561
Citrix Presentation Server Client for Windows prior to 10.200 does not clear "credential information" from process memory in unspecified circumstances, which might allow local users to gain privileges.
Citrix Presentation Server Client 10.200
5.3
CVSSv3
CVE-2021-44533
Node.js < 12.22.9, < 14.18.3, < 16.13.2, and < 17.3.1 did not handle multi-value Relative Distinguished Names correctly. Attackers could craft certificate subjects containing a single-value Relative Distinguished Name that would be interpreted as a multi-value Relativ...
Nodejs Node.js
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Enterprise Monitor
Oracle Mysql Connectors
Oracle Mysql Workbench
Oracle Mysql Server
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Mysql Cluster
Oracle Mysql Cluster 8.0.29
Debian Debian Linux 11.0
NA
CVE-2004-1077
Citrix Program Neighborhood Agent for Win32 8.00.24737 and previous versions and MetaFrame Presentation Server client for WinCE prior to 8.33 allows remote servers to create arbitrary shortcuts on the client via a full UNC path in the AppInStartmenu directive.
Citrix Program Neighborhood Agent 8.0
Citrix Metaframe Client 8.0
NA
CVE-2004-1078
Stack-based buffer overflow in the client for Citrix Program Neighborhood Agent for Win32 8.00.24737 and previous versions and Citrix MetaFrame Presentation Server client for WinCE prior to 8.33 allows remote malicious users to execute arbitrary code via a long cached icon filena...
Citrix Metaframe Client 8.0
Citrix Program Neighborhood Agent 8.0
6.5
CVSSv3
CVE-2023-33176
BigBlueButton is an open source virtual classroom designed to help teachers teach and learners learn. In affected versions are affected by a Server-Side Request Forgery (SSRF) vulnerability. In an `insertDocument` API request the user is able to supply a URL from which the presen...
Bigbluebutton Bigbluebutton
4.6
CVSSv3
CVE-2015-7566
The clie_5_attach function in drivers/usb/serial/visor.c in the Linux kernel up to and including 4.4.1 allows physically proximate malicious users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB...
Novell Suse Linux Enterprise Real Time Extension 12
Novell Suse Linux Enterprise Debuginfo 11
Novell Suse Linux Enterprise Software Development Kit 11
Novell Suse Linux Enterprise Real Time Extension 11
Novell Suse Linux Enterprise Server 11
Linux Linux Kernel
1 EDB exploit
5.4
CVSSv3
CVE-2018-5754
Cross-site scripting (XSS) vulnerability in the office-web component in Open-Xchange OX App Suite prior to 7.8.3-rev12 and 7.8.4 prior to 7.8.4-rev9 allows remote malicious users to inject arbitrary web script or HTML via a crafted presentation file, related to copying content to...
Open-xchange Open-xchange Appsuite 7.8.4
Open-xchange Open-xchange Appsuite 7.8.3
Open-xchange Open-xchange Appsuite
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »