Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rpc vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2009-1120
EMC RepliStor Server Service before ESA-09-003 has a DoASOCommand Remote Code Execution Vulnerability. The flaw exists within the DoRcvRpcCall RPC function -exposed via the rep_srv.exe process- where the vulnerability is caused by an error when the rep_srv.exe handles a specially...
Dell Emc Replistor
10
CVSSv2
CVE-2019-12157
In JetBrains UpSource versions prior to 2018.2 build 1293, there is credential disclosure via RPC commands.
Jetbrains Upsource 2018.2
Jetbrains Teamcity
Jetbrains Upsource
10
CVSSv2
CVE-2017-8023
EMC NetWorker may potentially be vulnerable to an unauthenticated remote code execution vulnerability in the Networker Client execution service (nsrexecd) when oldauth authentication method is used. An unauthenticated remote attacker could send arbitrary commands via RPC service ...
Dell Emc Networker
10
CVSSv2
CVE-2018-1163
This vulnerability allows remote malicious users to bypass authentication on vulnerable installations of Quest NetVault Backup 11.2.0.13. The specific flaw exists within JSON RPC Request handling. By setting the checksession parameter to a specific value, it is possible to bypass...
Quest Netvault Backup 11.2.0.13
10
CVSSv2
CVE-2017-3623
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel RPC). For supported versions that are affected see note. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via multiple protocols to co...
Oracle Solaris
1 Article
10
CVSSv2
CVE-2016-2362
Fonality (previously trixbox Pro) 12.6 up to and including 14.1i prior to 2016-06-01 has a hardcoded password for the FTP account, which allows remote malicious users to obtain access via a (1) FTP or (2) SSH connection.
Fonality Fonality 12.6
Fonality Fonality 12.8
Fonality Fonality 14.1i
10
CVSSv2
CVE-2016-4325
Lantronix xPrintServer devices with firmware prior to 5.0.1-65 have hardcoded credentials, which allows remote malicious users to obtain root access via unspecified vectors.
Lantronix Xprintserver Firmware
10
CVSSv2
CVE-2015-6552
The management-services protocol implementation in Veritas NetBackup 7.x up to and including 7.5.0.7, 7.6.0.x up to and including 7.6.0.4, 7.6.1.x up to and including 7.6.1.2, and 7.7.x prior to 7.7.2 and NetBackup Appliance up to and including 2.5.4, 2.6.0.x up to and including ...
Veritas Netbackup Appliance 2.7.1
Veritas Netbackup Appliance 2.6.1.2
Veritas Netbackup Appliance 2.5.2
Veritas Netbackup Appliance 2.5.1
Veritas Netbackup Appliance 1.1.0.2
Veritas Netbackup Appliance 1.1.0.1
Veritas Netbackup Appliance 2.6.1.1
Veritas Netbackup Appliance 2.6.1
Veritas Netbackup Appliance 2.6.0.4
Veritas Netbackup Appliance 2.5
Veritas Netbackup Appliance 2.0.3
Veritas Netbackup Appliance 2.6
Veritas Netbackup Appliance 2.5.3
Veritas Netbackup Appliance 2.0
Veritas Netbackup Appliance 1.2
Veritas Netbackup Appliance 2.6.0.3
Veritas Netbackup Appliance 2.6.0.2
Veritas Netbackup Appliance 2.0.2
Veritas Netbackup Appliance 2.0.1
Veritas Netbackup 7.6.0.2
Veritas Netbackup 7.5.0.7
Veritas Netbackup 7.5.0.6
10
CVSSv2
CVE-2016-0859
Integer overflow in the Kernel service in Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted RPC request.
Advantech Webaccess
10
CVSSv2
CVE-2016-0860
Buffer overflow in the BwpAlarm subsystem in Advantech WebAccess prior to 8.1 allows remote malicious users to cause a denial of service via a crafted RPC request.
Advantech Webaccess
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »