Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure os vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2019-19770
In the Linux kernel 4.19.83, there is a use-after-free (read) in the debugfs_remove function in fs/debugfs/inode.c (which is used to remove a file or directory in debugfs that was previously created with a call to another debugfs function such as debugfs_create_file). NOTE: Linux...
Linux Linux Kernel
1 Github repository
8.1
CVSSv3
CVE-2020-11581
An issue exists in Pulse Secure Pulse Connect Secure (PCS) through 2020-04-06. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, allows a man-in-the-middle malicious user to perform OS command injection attacks (against ...
Pulsesecure Pulse Connect Secure
Pulsesecure Pulse Policy Secure -
8.1
CVSSv3
CVE-2019-9506
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffi...
Google Android -
Apple Mac Os X 10.12.6
Apple Mac Os X 10.14.5
Apple Watchos 5.3
Apple Iphone Os 12.4
Apple Mac Os X 10.13.6
Apple Tvos 12.4
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Mrg Realtime 2.0
Redhat Virtualization Host Eus 4.2
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Aus 7.5
Redhat Enterprise Linux Eus 7.6
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Eus 8.4
5 Github repositories
2 Articles
8.1
CVSSv3
CVE-2017-2342
MACsec feature on Juniper Networks Junos OS 15.1X49 before 15.1X49-D100 on SRX300 series does not report errors when a secure link can not be established. It falls back to an unencrypted link. This can happen when MACsec is configured on ports that are not capable of MACsec or wh...
Juniper Junos 15.1x49
8.1
CVSSv3
CVE-2006-5051
Signal handler race condition in OpenSSH prior to 4.4 allows remote malicious users to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
Openbsd Openssh
Debian Debian Linux 3.1
Apple Mac Os X
Apple Mac Os X Server
7.9
CVSSv3
CVE-2021-25470
An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.
Google Android 9.0
Google Android 10.0
Google Android 11.0
7.8
CVSSv3
CVE-2023-33032
Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.
Qualcomm 9205 Lte Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm C-v2x 9150 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fsm10056 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6005 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq9008 Firmware -
Qualcomm Ipq9574 Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qca4024 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6391 Firmware -
7.8
CVSSv3
CVE-2023-28545
Memory corruption in TZ Secure OS while loading an app ELF.
Qualcomm 315 5g Iot Modem Firmware -
Qualcomm 9205 Lte Modem Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Fastconnect 6200 Firmware -
Qualcomm Fastconnect 6700 Firmware -
Qualcomm Fastconnect 6800 Firmware -
Qualcomm Fastconnect 6900 Firmware -
Qualcomm Fastconnect 7800 Firmware -
Qualcomm Flight Rb5 5g Platform Firmware -
Qualcomm Qam8255p Firmware -
Qualcomm Qam8295p Firmware -
Qualcomm Qam8650p Firmware -
Qualcomm Qam8775p Firmware -
Qualcomm Qamsrv1h Firmware -
Qualcomm Qca4004 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6310 Firmware -
Qualcomm Qca6335 Firmware -
7.8
CVSSv3
CVE-2021-26398
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an malicious user to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential arbitrary code execution.
Amd Epyc 7h12 Firmware
Amd Epyc 7f72 Firmware
Amd Epyc 7f52 Firmware
Amd Epyc 7f32 Firmware
Amd Epyc 7742 Firmware
Amd Epyc 7702p Firmware
Amd Epyc 7702 Firmware
Amd Epyc 7662 Firmware
Amd Epyc 7642 Firmware
Amd Epyc 7552 Firmware
Amd Epyc 7542 Firmware
Amd Epyc 7532 Firmware
Amd Epyc 7502p Firmware
Amd Epyc 7502 Firmware
Amd Epyc 7452 Firmware
Amd Epyc 7402 Firmware
Amd Epyc 7402p Firmware
Amd Epyc 7352 Firmware
Amd Epyc 7302p Firmware
Amd Epyc 7302 Firmware
Amd Epyc 7282 Firmware
Amd Epyc 7272 Firmware
7.8
CVSSv3
CVE-2022-1679
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the sys...
Linux Linux Kernel
Debian Debian Linux 10.0
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »