Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-12980
In Ming (aka libming) 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the SWFInput_readSBits function in blocks/input.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted swf file.
Libming Libming 0.4.8
NA
CVE-2011-1962
Microsoft Internet Explorer 6 through 9 does not properly handle unspecified character sequences, which allows remote malicious users to read content from a different (1) domain or (2) zone via a crafted web site that triggers "inactive filtering," aka "Shift JIS C...
Microsoft Internet Explorer 6
Microsoft Internet Explorer 7
Microsoft Internet Explorer 8
Microsoft Internet Explorer 9
5.5
CVSSv3
CVE-2023-3161
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of serv...
Linux Linux Kernel
Linux Linux Kernel 6.2
Fedoraproject Fedora 38
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
8.8
CVSSv3
CVE-2017-8326
libimageworsener.a in ImageWorsener prior to 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a cra...
Entropymine Imageworsener
7.8
CVSSv3
CVE-2017-7592
The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a left-shift undefined behavior issue, which might allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.
Libtiff Libtiff 4.0.7
7.8
CVSSv3
CVE-2018-17496
eVisitorPass could allow a local malicious user to gain elevated privileges on the system, caused by an error while in kiosk mode. By visiting the kiosk and typing ctrl+shift+esc, an attacker could exploit this vulnerability to open the task manager to kill the process or launch ...
Thresholdsecurity Evisitorpass 1.5.5.2
NA
CVE-2006-4092
Simpliciti Locked Browser does not properly limit a user's actions to ones within the intended Internet Explorer environment, which allows local users to perform unauthorized actions by visiting a web site that executes a JavaScript window.blur loop to remove focus from the ...
Simpliciti Locked Browser
NA
CVE-2023-52507
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a bit mask to determine if the protocol is supported. Assert the provided protocol is less than the maximum defined so it doesn't potentia...
NA
CVE-2010-1224
main/acl.c in Asterisk Open Source 1.6.0.x prior to 1.6.0.25, 1.6.1.x prior to 1.6.1.17, and 1.6.2.x prior to 1.6.2.5 does not properly enforce remote host access controls when CIDR notation "/0" is used in permit= and deny= configuration rules, which causes an improper...
Digium Asterisk 1.6.0.23
Digium Asterisk 1.6.0.22
Digium Asterisk 1.6.0.18
Digium Asterisk 1.6.0.12
Digium Asterisk 1.6.0.10
Digium Asterisk 1.6.0.9
Digium Asterisk 1.6.0.1
Digium Asterisk 1.6.0
Digium Asterisk 1.6.1.7
Digium Asterisk 1.6.1.11
Digium Asterisk 1.6.1.12
Digium Asterisk 1.6.2.0
Digium Asterisk 1.6.2.1
Digium Asterisk 1.6.2.2
Digium Asterisk 1.6.0.24
Digium Asterisk 1.6.0.14
Digium Asterisk 1.6.0.13
Digium Asterisk 1.6.0.3
Digium Asterisk 1.6.0.2
Digium Asterisk 1.6.1.5
Digium Asterisk 1.6.1.6
Digium Asterisk 1.6.1.10
9.8
CVSSv3
CVE-2017-11402
An issue has been discovered on the Belden Hirschmann Tofino Xenon Security Appliance prior to 03.2.00. Design flaws in OPC classic and in custom netfilter modules allow an malicious user to remotely activate rules on the firewall and to connect to any TCP port of a protected ass...
Belden Tofino Xenon Security Appliance Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »