Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-18868
Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated malicious user to access MySQL credentials in cleartext in /engine/db.inc, /lang/nl.bak, or /lang/en.bak.
Blaauwproducts Remote Kiln Control 3.0.0
Blaauwproducts Remote Kiln Control
6.5
CVSSv3
CVE-2019-18870
A path traversal via the iniFile parameter in excel.php in Blaauw Remote Kiln Control through v3.00r4 allows an authenticated malicious user to download arbitrary files from the host machine.
Blaauwproducts Remote Kiln Control
Blaauwproducts Remote Kiln Control 3.0.0
7.8
CVSSv3
CVE-2021-31338
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.0 SP1). Affected devices allow to modify configuration settings over an unauthenticated channel. This could allow a local malicious user to escalate privileges and execute own code on the de...
Siemens Sinema Remote Connect
Siemens Sinema Remote Connect 3.0
NA
CVE-2005-2842
Buffer overflow in dwrcs.exe in DameWare Mini Remote Control prior to 4.9.0 allows remote malicious users to execute arbitrary code via the username.
Dameware Development Mini Remote Control Server 4.0
Dameware Development Mini Remote Control Server 4.1.0.0
Dameware Development Mini Remote Control Server 4.2.0.0
Dameware Development Mini Remote Control Server 4.8
2 EDB exploits
NA
CVE-2006-4887
Apple Remote Desktop (ARD) for Mac OS X 10.2.8 and later does not drop privileges on the remote machine while installing certain applications, which allows local users to bypass authentication and gain privileges by selecting the icon during installation. NOTE: it could be argued...
Apple Apple Remote Desktop 3.0.0
Apple Apple Remote Desktop 2.0.0
Apple Apple Remote Desktop 2.1.0
Apple Mac Os X
8.8
CVSSv3
CVE-2013-5461
IBM Endpoint Manager for Remote Control 9.0.0 and 9.0.1 and Tivoli Remote Control 5.1.2 store multiple hashes of partial passwords, which makes it easier for remote malicious users to decrypt passwords by leveraging access to the hashes. IBM X-Force ID: 88309.
Ibm Endpoint Manager For Remote Control 9.0.1
Ibm Endpoint Manager For Remote Control 9.0.0
Ibm Tivoli Remote Control 5.1.2
8.8
CVSSv3
CVE-2021-20795
Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote malicious user to hijack the authentication of administrators and unintended operations may be performed via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.4
CVSSv3
CVE-2021-20798
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.4
CVSSv3
CVE-2021-20799
Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated malicious user to inject an arbitrary script via unspecified vectors.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
5.3
CVSSv3
CVE-2021-20802
HTTP header injection vulnerability in Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote malicious user to alter the information stored in the product.
Cybozu Remote Service Manager 3.1.8
Cybozu Remote Service Manager 3.1.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »