Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
reflection vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2021-21985
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute com...
Vmware Vcenter Server 6.5
Vmware Vcenter Server 6.7
Vmware Vcenter Server 7.0
Vmware Cloud Foundation
15 Github repositories
1 Article
10
CVSSv2
CVE-2014-0603
The rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to cause a denial of service (memory corruption) and execute arbitrary code via vectors related to the (1) GetGlobalSettings or (2) GetSiteProperties3 methods, whic...
Attachmate Reflection Ftp Client
10
CVSSv2
CVE-2014-0604
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to execute arbitrary code via unspecified vectors to the StartLog method.
Attachmate Reflection Ftp Client
10
CVSSv2
CVE-2014-0605
Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client prior to 14.1.429 allows remote malicious users to execute arbitrary code via unspecified vectors to the SaveSettings method.
Attachmate Reflection Ftp Client
10
CVSSv2
CVE-2013-0428
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and previous versions, and OpenJDK 6 and 7, allows remote malicious users to affect confidentiality, integrity...
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Sun Jdk 1.6.0
Oracle Jdk 1.6.0
Sun Jre 1.5.0
Oracle Jre 1.5.0
Sun Jdk 1.5.0
Oracle Jdk 1.5.0
Sun Jre 1.4.2 26
Sun Jre 1.4.2 7
Sun Jre 1.4.2 27
Sun Jre 1.4.2 16
Sun Jre 1.4.2 24
Sun Jre 1.4.2 4
Sun Jre 1.4.2 2
Sun Jre 1.4.2 19
Sun Jre 1.4.2 25
Sun Jre 1.4.2 15
Sun Jre 1.4.2 17
Sun Jre 1.4.2 9
10
CVSSv2
CVE-2012-3174
Unspecified vulnerability in Oracle Java 7 before Update 11 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-0422. NOTE: some parties have mapped CVE-2012-3174 to an issue involving r...
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
1 Article
10
CVSSv2
CVE-2013-0422
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote malicious users to execute arbitrary code by (1) using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary...
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Canonical Ubuntu Linux 12.10
Opensuse Opensuse 12.2
1 EDB exploit
16 Github repositories
8 Articles
10
CVSSv2
CVE-2012-4681
Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and previous versions allow remote malicious users to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.Cla...
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Eus 6.3
1 EDB exploit
4 Github repositories
9 Articles
10
CVSSv2
CVE-2011-5012
Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 prior to 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 prior to 15.4.1.327, Reflection Windows Client 7.2 SP1 ...
Attachmate Reflection 2011r1
Attachmate Reflection 2008r1 Sp1
Attachmate Reflection 2008r2
Attachmate Reflection 14.1
Attachmate Reflection 7.2
Attachmate Reflection 2008
1 EDB exploit
10
CVSSv2
CVE-2010-3553
Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.2_27, and 1.3.1_28 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was...
Sun Jre 1.6.0
Sun Jre
Sun Jdk 1.6.0
Sun Jdk
Sun Jdk 1.5.0
Sun Sdk 1.4.2 02
Sun Sdk 1.4.2 1
Sun Sdk 1.4.2 16
Sun Sdk 1.4.2 17
Sun Sdk 1.4.2 8
Sun Sdk 1.4.2 9
Sun Sdk 1.4.2 26
Sun Sdk
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 11
Sun Sdk 1.4.2 12
Sun Sdk 1.4.2 13
Sun Sdk 1.4.2 18
Sun Sdk 1.4.2 19
Sun Sdk 1.4.2 3
Sun Sdk 1.4.2 20
Sun Sdk 1.4.2 21
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »