Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote pc access vulnerabilities and exploits
(subscribe to this query)
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
8.8
CVSSv3
CVE-2023-45185
IBM i Access Client Solutions 1.1.2 up to and including 1.1.4 and 1.1.4.3 up to and including 1.1.9.3 could allow an malicious user to execute remote code. Due to improper authority checks the attacker could perform operations on the PC under the user's authority. IBM X-Forc...
Ibm I Access Client Solutions
1 Github repository
9.8
CVSSv3
CVE-2023-46141
Incorrect Permission Assignment for Critical Resource vulnerability in multiple products of the PHOENIX CONTACT classic line allow an remote unauthenticated malicious user to gain full access of the affected device.
Phoenixcontact Automationworx Software Suite
Phoenixcontact Axc 1050 Firmware
Phoenixcontact Axc 1050 Xc Firmware
Phoenixcontact Axc 3050 Firmware
Phoenixcontact Config\\+
Phoenixcontact Fc 350 Pci Eth Firmware
Phoenixcontact Ilc1x0 Firmware
Phoenixcontact Ilc1x1 Firmware
Phoenixcontact Ilc 3xx Firmware
Phoenixcontact Pc Worx
Phoenixcontact Pc Worx Express
Phoenixcontact Pc Worx Rt Basic Firmware
Phoenixcontact Pc Worx Srt
Phoenixcontact Rfc 430 Eth-ib Firmware
Phoenixcontact Rfc 450 Eth-ib Firmware
Phoenixcontact Rfc 460r Pn 3tx Firmware
Phoenixcontact Rfc 470s Pn 3tx Firmware
Phoenixcontact Rfc 480s Pn 4tx Firmware
7.5
CVSSv3
CVE-2023-22335
Improper access control vulnerability in SS1 Ver.13.0.0.40 and previous versions and Rakuraku PC Cloud Agent Ver.2.1.8 and previous versions allows a remote malicious user to bypass access restriction and download an arbitrary file of the directory where the product runs. As a re...
Dos-osaka Rakuraku Pc Cloud Agent
Dos-osaka Ss1
7.8
CVSSv3
CVE-2022-24750
UltraVNC is a free and open source remote pc access software. A vulnerability has been found in versions before 1.3.8.0 in which the DSM plugin module, which allows a local authenticated user to achieve local privilege escalation (LPE) on a vulnerable system. The vulnerability ha...
Uvnc Ultravnc
7.5
CVSSv3
CVE-2021-40142
In OPC Foundation Local Discovery Server (LDS) prior to 1.04.402.463, remote attackers can cause a denial of service (DoS) by sending carefully crafted messages that lead to Access of a Memory Location After the End of a Buffer.
Opcfoundation Local Discover Server
Siemens Simatic Process Historian Opc Ua Server Firmware 2022
Siemens Simatic Process Historian Opc Ua Server Firmware
Siemens Simatic Wincc Runtime -
Siemens Simatic Wincc -
Siemens Simatic Net Pc 16
Siemens Simatic Net Pc 15
Siemens Simatic Net Pc 14
Siemens Telecontrol Server Basic 3.0
Siemens Simatic Net Pc 17
Siemens Simatic Wincc Unified Scada Runtime -
7
CVSSv3
CVE-2021-33542
Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a remote code execution vulnerability. Manipulated PC Worx or Config+ projects could lead to a remote code execution when unallocated memory is freed because of incompletely initialize...
Phoenixcontact Config\\+
Phoenixcontact Pc Worx
Phoenixcontact Pc Worx Express
9.8
CVSSv3
CVE-2020-15782
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21...
Siemens Simatic Driver Controller Firmware
Siemens S7-1200 Cpu Firmware
Siemens S7-1500 Cpu Firmware
Siemens Simatic S7-1500 Software Controller
Siemens Simatic S7-plcsim Advanced
Siemens Et 200sp Open Controller Firmware
7.8
CVSSv3
CVE-2020-26507
A CSV Injection (also known as Formula Injection) vulnerability in the Marmind web application with version 4.1.141.0 allows malicious users to gain remote control of other computers. By providing formula code in the “Notes” functionality in the main screen, an attack...
Marmind Marmind 4.1.141.0
5.4
CVSSv3
CVE-2020-15914
A cross-site scripting (XSS) vulnerability exists in the Origin Client for Mac and PC 10.5.86 or earlier that could allow a remote malicious user to execute arbitrary Javascript in a target user’s Origin client. An attacker could use this vulnerability to access sensitive d...
Ea Origin Client
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »