Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote attackers vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-40870
The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows malicious users to execute arbitrary commands via a crafted payload injected into the Host header.
Parallels Remote Application Server 18.0
4.3
CVSSv2
CVE-2015-4954
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 improperly allows self-signed certificates, which might allow remote malicious users to conduct spoofing attacks via unspecified vectors. IBM X-Force ID: 105200.
Ibm Bigfix Remote Control 9.1.2
7.5
CVSSv2
CVE-2015-8220
Stack-based buffer overflow in the URI handler in DWRCC.exe in SolarWinds DameWare Mini Remote Control prior to 12.0 HotFix 1 allows remote malicious users to execute arbitrary code via a crafted commandline argument in a link.
Solarwinds Dameware Mini Remote Control
5.4
CVSSv2
CVE-2014-5603
The DeskRoll Remote Desktop (aka com.deskroll.client1) application 0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Deskroll Deskroll Remote Desktop 0.6
5.8
CVSSv2
CVE-2015-4953
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 makes it easier for man-in-the-middle malicious users to decrypt traffic by leveraging a weakness in its encryption protocol. IBM X-Force ID: 105197.
Ibm Bigfix Remote Control 9.1.2
7.5
CVSSv2
CVE-2003-1128
XMMS.pm in X2 XMMS Remote, as obtained from the vendor server between 4 AM 11 AM PST on May 7, 2003, allows remote malicious users to execute arbitrary commands via shell metacharacters in a request to TCP port 8086.
X2 Studios Xmms Remote 0.1
7.5
CVSSv2
CVE-2005-2305
DG Remote Control Server 1.6.2 allows remote malicious users to cause a denial of service (crash or CPU consumption) and possibly execute arbitrary code via a long message to TCP port 1071 or 1073, possibly due to a buffer overflow.
Dg Remote Control Server 1.6.2
1 EDB exploit
4.3
CVSSv2
CVE-2007-4360
Unspecified vulnerability in Dell Remote Access Card 4 (DRAC4) with firmware 1.50 Build 02.16 allows remote malicious users to cause a denial of service (SSH daemon crash) via certain network traffic, as demonstrated by an "nmap -O" scan with nmap 4.03, possibly related...
Dell Remote Access Card 4
NA
CVE-2023-4374
The WP Remote Users Sync plugin for WordPress is vulnerable to unauthorized access of data and addition of data due to a missing capability check on the 'refresh_logs_async' functions in versions up to, and including, 1.2.11. This makes it possible for authenticated att...
Froger Wp Remote Users Sync
4.3
CVSSv2
CVE-2022-29034
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). An error message pop up window in the web interface of the affected application does not prevent injection of JavaScript code. This could allow malicious users to perform reflected cross...
Siemens Sinema Remote Connect Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »