Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure mobile access vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2018-2500
Under certain conditions SAP Mobile Secure Android client (before version 6.60.19942.0 SP28 1711) allows an malicious user to access information which would otherwise be restricted.
Sap Mobile Secure
9
CVSSv3
CVE-2018-8930
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.
Amd Ryzen Mobile Firmware -
Amd Ryzen Pro Firmware -
Amd Epyc Server Firmware -
Amd Ryzen Firmware -
9
CVSSv3
CVE-2018-8931
The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1.
Amd Ryzen Mobile Firmware -
Amd Ryzen Pro Firmware -
Amd Ryzen Firmware -
7.8
CVSSv3
CVE-2023-24852
Memory Corruption in Core due to secure memory access by user while loading modem image.
Qualcomm 315 5g Iot Modem Firmware -
Qualcomm 9205 Lte Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm C-v2x 9150 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Flight Rb5 5g Platform Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Immersive Home 3210 Platform Firmware -
Qualcomm Immersive Home 326 Platform Firmware -
Qualcomm Ipq5332 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6005 Firmware -
NA
CVE-2015-2906
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, store SSH private keys that are the same across different customers' installations, which makes it easier for remote malicious users to obtain access by lev...
Mobile Devices C4 Obd-ii Dongle Firmware
NA
CVE-2015-2907
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, have hardcoded SSH credentials, which makes it easier for remote malicious users to obtain access by leveraging knowledge of the required username and password.
Mobile Devices C4 Obd-ii Dongle Firmware
NA
CVE-2015-2908
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, do not validate firmware updates, which allows remote malicious users to execute arbitrary code by specifying an update server.
Mobile Devices C4 Obd-ii Dongle Firmware
5.5
CVSSv3
CVE-2023-6105
An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt prod...
Zohocorp Manageengine Mobile Device Manager Plus 10.1.2207.4
Zohocorp Manageengine Appcreator
Zohocorp Manageengine Analytics Plus
Zohocorp Manageengine Endpoint Central Msp
Zohocorp Manageengine Endpoint Central
Zohocorp Manageengine Remote Monitoring And Management
Zohocorp Manageengine Os Deployer
Zohocorp Manageengine Remote Access Plus
Zohocorp Manageengine Mobile Device Manager Plus
Zohocorp Manageengine Application Control Plus
Zohocorp Manageengine Vulnerability Manager Plus
Zohocorp Manageengine Browser Security Plus
Zohocorp Manageengine Patch Manager Plus
Zohocorp Manageengine Device Control Plus
Zohocorp Manageengine Endpoint Dlp Plus
Zohocorp Manageengine Adselfservice Plus 6.3
Zohocorp Manageengine Adselfservice Plus
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 7.2
Zohocorp Manageengine Adaudit Plus 7.2
Zohocorp Manageengine Adaudit Plus
Zohocorp Manageengine Cloud Security Plus 4.1
5.9
CVSSv3
CVE-2019-1948
A vulnerability in Cisco Webex Meetings Mobile (iOS) could allow an unauthenticated, remote malicious user to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer (SSL) certificate. The vulnerability is due to insufficient SSL certificate valid...
Cisco Webex Meetings
7.5
CVSSv3
CVE-2023-20107
A vulnerability in the deterministic random bit generator (DRBG), also known as pseudorandom number generator (PRNG), in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software for Cisco ASA 5506-X, ASA 5508-X, and ASA 5516-X Firewalls c...
Cisco Adaptive Security Appliance
Cisco Firepower Threat Defense
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »