Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
signal vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-14523
An issue exists in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.
Aubio Aubio 0.4.6
Opensuse Leap 15.0
Suse Linux Enterprise 15.0
Opensuse Leap 42.3
7.5
CVSSv3
CVE-2020-25649
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
Fasterxml Jackson-databind
Netapp Oncommand Workflow Automation -
Netapp Service Level Manager -
Netapp Oncommand Api Services -
Fedoraproject Fedora 32
Quarkus Quarkus
Apache Iotdb
Oracle Webcenter Portal 12.2.1.3.0
Oracle Banking Platform 2.6.2
Oracle Utilities Framework 4.3.0.5.0
Oracle Utilities Framework 4.3.0.6.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Agile Plm 9.3.6
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Sd-wan Edge 9.0
Oracle Coherence 14.1.1.0.0
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Communications Billing And Revenue Management 7.5.0.23.0
Oracle Communications Services Gatekeeper 7.0
Oracle Banking Platform 2.7.0
1 Github repository
1 Article
NA
CVE-2015-0847
nbd-server.c in Network Block Device (nbd-server) prior to 3.11 does not properly handle signals, which allows remote malicious users to cause a denial of service (deadlock) via unspecified vectors.
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.10
Wouter Verhelst Nbd
NA
CVE-2013-7441
The modern style negotiation in Network Block Device (nbd-server) 2.9.22 up to and including 3.3 allows remote malicious users to cause a denial of service (root process termination) by (1) closing the connection during negotiation or (2) specifying a name for a non-existent expo...
Wouter Verhelst Nbd 2.9.3
Wouter Verhelst Nbd 2.9.4
Wouter Verhelst Nbd 3.1
Wouter Verhelst Nbd 3.1.1
Wouter Verhelst Nbd 3.2
Wouter Verhelst Nbd 2.9.22
Wouter Verhelst Nbd 2.9.23
Wouter Verhelst Nbd 2.9.7
Wouter Verhelst Nbd 2.9.8
Wouter Verhelst Nbd 2.9.24
Wouter Verhelst Nbd 2.9.25
Wouter Verhelst Nbd 2.9.9
Wouter Verhelst Nbd 3.0
Wouter Verhelst Nbd 2.9.5
Wouter Verhelst Nbd 2.9.6
Wouter Verhelst Nbd 3.3
8.8
CVSSv3
CVE-2018-4990
Adobe Acrobat and Reader versions 2018.011.20038 and previous versions, 2017.011.30079 and previous versions, and 2015.006.30417 and previous versions have a Double Free vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current us...
Adobe Acrobat Reader Dc
Adobe Acrobat Dc
1 Github repository
3 Articles
NA
CVE-2024-2435
For an attacker with pre-existing access to send a signal to a workflow, the attacker can make the signal name a script that executes when a victim views that signal. The XSS is in the timeline page displaying the workflow execution details of the workflow that was sent the craft...
4.4
CVSSv3
CVE-2023-5870
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background...
Postgresql Postgresql 16.0
Postgresql Postgresql
Redhat Software Collections 1.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Aus 8.6
Redhat Enterprise Linux Server Tus 8.6
Redhat Enterprise Linux Eus 8.6
Redhat Enterprise Linux 9.0
Redhat Enterprise Linux Eus 9.0
Redhat Enterprise Linux Eus 8.8
Redhat Enterprise Linux Server Aus 9.2
Redhat Enterprise Linux Eus 9.2
Redhat Enterprise Linux For Arm 64 8.0
Redhat Enterprise Linux For Power Little Endian Eus 9.2 Ppc64le
Redhat Codeready Linux Builder For Arm64 Eus 9.2 Aarch64
Redhat Codeready Linux Builder For Ibm Z Systems Eus 9.2 S390x
Redhat Codeready Linux Builder Eus For Power Little Endian Eus 9.2 Ppc64le
Redhat Codeready Linux Builder Eus 9.2
NA
CVE-2005-0893
modes.c in smail 3.2.0.120 implements signal handlers with certain unsafe library calls, which may allow malicious users to execute arbitrary code via signal handler race conditions, possibly using xmalloc.
Smail Smail 3.2.0.120
4.5
CVSSv3
CVE-2020-35508
A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a pri...
Linux Linux Kernel 5.12
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Netapp A700s Firmware -
Netapp Brocade Fabric Operating System Firmware -
Netapp Fas8300 Firmware -
Netapp Fas8700 Firmware -
Netapp Aff A400 Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp H610c Firmware -
Netapp H610s Firmware -
Netapp H615c Firmware -
7.5
CVSSv3
CVE-2015-1379
The signal handler implementations in socat prior to 1.7.3.0 and 2.0.0-b8 allow remote malicious users to cause a denial of service (process freeze or crash).
Dest-unreach Socat 2.0.0-b8
Dest-unreach Socat
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »