Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sr. vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-0862
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote malicious users to bypass the ACL.
Cisco 12000 Router
NA
CVE-2001-0864
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
Cisco 12000 Router
NA
CVE-2001-0865
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.
Cisco 12000 Router
NA
CVE-2001-0866
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote malicious users to bypass the intended access controls.
Cisco 12000 Router
NA
CVE-2001-0867
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote malicious users to bypass the intended access controls.
Cisco 12000 Router
NA
CVE-2005-1187
Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow malicious users to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vu...
X-ways Software Technology Ag Winhex 12.05 Sr-14
5.5
CVSSv3
CVE-2023-2700
A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.
Redhat Libvirt 4.5.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 38
NA
CVE-2006-2520
Directory traversal vulnerability in BitZipper 4.1.2 SR-1 and previous versions allows remote malicious users to create files in arbitrary directories via a .. (dot dot) in the filename of a file that is stored in a (1) RAR (.rar), (2) TAR (.tar), (3) ZIP (.zip), (4) GZ (.gz), or...
Bitberry Software Bitzipper 4.1
Bitberry Software Bitzipper 4.1.1
Bitberry Software Bitzipper 3.2
Bitberry Software Bitzipper 3.2.1
Bitberry Software Bitzipper 4.1.2
Bitberry Software Bitzipper 3.4.1
Bitberry Software Bitzipper 4.0
Bitberry Software Bitzipper 3.3
Bitberry Software Bitzipper 3.4
NA
CVE-2024-26327
An issue exists in QEMU 7.1.0 up to and including 8.2.1. register_vfs in hw/pci/pcie_sriov.c mishandles the situation where a guest writes NumVFs greater than TotalVFs, leading to a buffer overflow in VF implementations.
3.3
CVSSv3
CVE-2022-37394
An issue exists in OpenStack Nova prior to 23.2.2, 24.x prior to 24.1.2, and 25.x prior to 25.0.2. By creating a neutron port with the direct vnic_type, creating an instance bound to that port, and then changing the vnic_type of the bound port to macvtap, an authenticated user ma...
Openstack Nova
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »