Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote attackers vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2018-16172
Improper countermeasure against clickjacking attack in client certificates management screen exists in Cybozu Remote Service 3.0.0 to 3.1.8, that allows remote malicious users to trick a user to delete the registered client certificate.
Cybozu Remote Service Manager
9.3
CVSSv2
CVE-2013-3249
Stack-based buffer overflow in the "Add from text file" feature in the DameWare Exporter tool (DWExporter.exe) in DameWare Remote Support 10.0.0.372, 9.0.1.247, and previous versions allows user-assisted malicious users to execute arbitrary code via unspecified vectors.
Solarwinds Dameware Remote Support
4
CVSSv2
CVE-2020-2239
Jenkins Parameterized Remote Trigger Plugin 3.1.3 and previous versions stores a secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system.
Jenkins Parameterized Remote Trigger
5.4
CVSSv2
CVE-2014-5613
The Able Remote (aka com.entertailion.android.remote) application 2.3.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Entertailion Able Remote 2.3.6
5.4
CVSSv2
CVE-2014-5727
The uTorrent Remote (aka com.utorrent.web) application 1.0.20110929 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Utorrent Utorrent Remote 1.0.20110929
4.3
CVSSv2
CVE-2016-2951
IBM BigFix Remote Control prior to 9.1.3 does not properly set the default encryption strength, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.
Ibm Bigfix Remote Control
NA
CVE-2022-3182
Improper Access Control vulnerability in the Duo SMS two-factor of Devolutions Remote Desktop Manager 2022.2.14 and previous versions allows malicious users to bypass the application lock. This issue affects: Devolutions Remote Desktop Manager version 2022.2.14 and prior versions...
Devolutions Remote Desktop Manager
5
CVSSv2
CVE-2021-27571
An issue exists in Emote Remote Mouse up to and including 4.0.0.0. Attackers can retrieve recently used and running applications, their icons, and their file paths. This information is sent in cleartext and is not protected by any authentication logic.
Remotemouse Emote Remote Mouse
4.3
CVSSv2
CVE-2016-2927
IBM BigFix Remote Control prior to 9.1.3 does not properly restrict the set of available encryption algorithms, which makes it easier for remote malicious users to defeat cryptographic protection mechanisms by sniffing the network and performing calculations on encrypted data.
Ibm Bigfix Remote Control
5
CVSSv2
CVE-2021-27570
An issue exists in Emote Remote Mouse up to and including 3.015. Attackers can close any running process by sending the process name in a specially crafted packet. This information is sent in cleartext and is not protected by any authentication logic.
Remotemouse Emote Remote Mouse
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »