Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote attackers vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2022-40870
The Web Client of Parallels Remote Application Server v18.0 is vulnerable to Host Header Injection attacks. This vulnerability allows malicious users to execute arbitrary commands via a crafted payload injected into the Host header.
Parallels Remote Application Server 18.0
5.9
CVSSv3
CVE-2015-4954
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 improperly allows self-signed certificates, which might allow remote malicious users to conduct spoofing attacks via unspecified vectors. IBM X-Force ID: 105200.
Ibm Bigfix Remote Control 9.1.2
NA
CVE-2015-8220
Stack-based buffer overflow in the URI handler in DWRCC.exe in SolarWinds DameWare Mini Remote Control prior to 12.0 HotFix 1 allows remote malicious users to execute arbitrary code via a crafted commandline argument in a link.
Solarwinds Dameware Mini Remote Control
NA
CVE-2014-5603
The DeskRoll Remote Desktop (aka com.deskroll.client1) application 0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Deskroll Deskroll Remote Desktop 0.6
4.8
CVSSv3
CVE-2015-4953
IBM BigFix Remote Control before Interim Fix pack 9.1.2-TIV-IBRC912-IF0001 makes it easier for man-in-the-middle malicious users to decrypt traffic by leveraging a weakness in its encryption protocol. IBM X-Force ID: 105197.
Ibm Bigfix Remote Control 9.1.2
NA
CVE-2003-1128
XMMS.pm in X2 XMMS Remote, as obtained from the vendor server between 4 AM 11 AM PST on May 7, 2003, allows remote malicious users to execute arbitrary commands via shell metacharacters in a request to TCP port 8086.
X2 Studios Xmms Remote 0.1
NA
CVE-2005-2305
DG Remote Control Server 1.6.2 allows remote malicious users to cause a denial of service (crash or CPU consumption) and possibly execute arbitrary code via a long message to TCP port 1071 or 1073, possibly due to a buffer overflow.
Dg Remote Control Server 1.6.2
1 EDB exploit
NA
CVE-2007-4360
Unspecified vulnerability in Dell Remote Access Card 4 (DRAC4) with firmware 1.50 Build 02.16 allows remote malicious users to cause a denial of service (SSH daemon crash) via certain network traffic, as demonstrated by an "nmap -O" scan with nmap 4.03, possibly related...
Dell Remote Access Card 4
4.3
CVSSv3
CVE-2023-4374
The WP Remote Users Sync plugin for WordPress is vulnerable to unauthorized access of data and addition of data due to a missing capability check on the 'refresh_logs_async' functions in versions up to, and including, 1.2.11. This makes it possible for authenticated att...
Froger Wp Remote Users Sync
6.1
CVSSv3
CVE-2022-29034
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.1). An error message pop up window in the web interface of the affected application does not prevent injection of JavaScript code. This could allow malicious users to perform reflected cross...
Siemens Sinema Remote Connect Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »