Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quantum vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-1906
A heap-based buffer overflow issue exists in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a...
Imagemagick Imagemagick 7.1.1-4
Imagemagick Imagemagick
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Fedora 37
605
VMScore
CVE-2020-7534
A CWE-352: Cross-Site Request Forgery (CSRF) vulnerability exists on the web server used, that could cause a leak of sensitive data or unauthorized actions on the web server during the time the user is logged in. Affected Products: Modicon M340 CPUs: BMXP34 (All Versions), Modico...
Schneider-electric Modicon M340 Bmxp342020 Firmware
Schneider-electric 140cpu65 Firmware
Schneider-electric Tsxp57 Firmware
Schneider-electric Bmxnoc0401 Firmware
Schneider-electric Bmxnoe01 Firmware
Schneider-electric Bmxnor0200h Firmware
Schneider-electric 140noe77111 Firmware
Schneider-electric 140noc78000 Firmware
Schneider-electric Tsxety5103 Firmware
Schneider-electric Tsxety4103 Firmware
NA
CVE-2022-44356
WAVLINK Quantum D4G (WL-WN531G3) running firmware versions M31G3.V5030.201204 and M31G3.V5030.200325 has an access control issue which allows unauthenticated malicious users to download configuration data and log files.
Wavlink Wl-wn531g3 Firmware M31g3.v5030.200325
Wavlink Wl-wn531g3 Firmware M31g3.v5030.201204
NA
CVE-2024-29922
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Quantum Cloud Slider Hero allows Stored XSS.This issue affects Slider Hero: from n/a up to and including 8.6.1.
NA
CVE-2023-3745
A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h. This issue may allow a local malicious user to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an applicatio...
Imagemagick Imagemagick
1 Github repository
445
VMScore
CVE-2018-7762
A vulnerability exists in the web services to process SOAP requests in Schneider Electric's Modicon M340, Modicon Premium, Modicon Quantum PLC, BMXNOR0200 which could allow result in a buffer overflow.
Schneider-electric Bmxnor0200 Firmware -
Schneider-electric Bmxnor0200h Firmware -
Schneider-electric 140cpu65150 Firmware -
Schneider-electric 140cpu31110 Firmware -
Schneider-electric 140cpu43412u Firmware -
Schneider-electric 140cpu65160 Firmware -
Schneider-electric 140cpu65260 Firmware -
Schneider-electric 140cpu65860 Firmware -
Schneider-electric 140cpu65160s Firmware -
Schneider-electric 140cpu65150c Firmware -
Schneider-electric 140cpu31110c Firmware -
Schneider-electric 140cpu43412uc Firmware -
Schneider-electric 140cpu65160c Firmware -
Schneider-electric 140cpu65260c Firmware -
Schneider-electric 140cpu65860c Firmware -
Schneider-electric Modicon M340 Bmxp341000 Firmware -
Schneider-electric Modicon M340 Bmxp342000 Firmware -
Schneider-electric Modicon M340 Bmxp3420102 Firmware -
Schneider-electric Modicon M340 Bmxp3420102cl Firmware -
Schneider-electric Modicon M340 Bmxp342020 Firmware -
Schneider-electric Modicon M340 Bmxp3420302 Firmware -
Schneider-electric Modicon M340 Bmxp3420302cl Firmware -
570
VMScore
CVE-2019-6815
In Modicon Quantum all firmware versions, CWE-264: Permissions, Privileges, and Access Control vulnerabilities could cause a denial of service or unauthorized modifications of the PLC configuration when using Ethernet/IP protocol.
Schneider-electric Modicon Quantum Firmware
445
VMScore
CVE-2021-22787
A CWE-20: Improper Input Validation vulnerability exists that could cause denial of service of the device when an attacker sends a specially crafted HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3.40), Modicon M340 X...
Schneider-electric Modicon M340 Bmxp342020 Firmware
Schneider-electric Bmxnoe0100 Firmware
Schneider-electric Bmxnoe0110 Firmware
Schneider-electric Bmxnoc0401 Firmware
Schneider-electric Bmxnor0200h Rtu Firmware
Schneider-electric Tsxp574634 Firmware
Schneider-electric Tsxp575634 Firmware
Schneider-electric Tsxp576634 Firmware
Schneider-electric 140cpu65150 Firmware
Schneider-electric 140noe771x1 Firmware
Schneider-electric 140noc78x00 Firmware
Schneider-electric 140noc77101 Firmware
Schneider-electric Tsxety4103 Firmware
Schneider-electric Tsxety5103 Firmware
605
VMScore
CVE-2018-16413
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function.
Imagemagick Imagemagick 7.0.8-11
445
VMScore
CVE-2021-22785
A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 (Versions prior to V3....
Schneider-electric Modicon M340 Bmxp342020 Firmware
Schneider-electric Bmxnoe0100 Firmware
Schneider-electric Bmxnoe0110 Firmware
Schneider-electric Bmxnoc0401 Firmware
Schneider-electric Bmxnor0200h Rtu Firmware
Schneider-electric Tsxp574634 Firmware
Schneider-electric Tsxp575634 Firmware
Schneider-electric Tsxp576634 Firmware
Schneider-electric 140cpu65150 Firmware
Schneider-electric 140noe771x1 Firmware
Schneider-electric 140noc78x00 Firmware
Schneider-electric 140noc77101 Firmware
Schneider-electric Tsxety4103 Firmware
Schneider-electric Tsxety5103 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »