Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
t4rkd3vilz vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-13989
Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device.
Arcelikas Grundig Smart Inter\\@ctive Firmware 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-10594
Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators (DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM_5x0, AHSIM_5x1) utilize a fixed-length stack buffer where an unverified length value can be read from the network pack...
Deltaww Commgr
2 EDB exploits
7.5
CVSSv3
CVE-2018-0491
A use-after-free issue exists in Tor 0.3.2.x prior to 0.3.2.10. It allows remote malicious users to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
Torproject Tor
1 EDB exploit
8.8
CVSSv3
CVE-2016-5809
An issue exists on Schneider Electric IONXXXX series power meters ION73XX series, ION75XX series, ION76XX series, ION8650 series, ION8800 series, and PM5XXX series. There is no CSRF Token generated to authenticate the user during a session. Successful exploitation of this vulnera...
Schneider-electric Ion5000 -
Schneider-electric Ion8650 -
Schneider-electric Ion8800 -
Schneider-electric Ion7300 -
Schneider-electric Ion7500 -
Schneider-electric Ion7600 -
1 EDB exploit
5.3
CVSSv3
CVE-2016-3963
Siemens SCALANCE S613 allows remote malicious users to cause a denial of service (web-server outage) via traffic to TCP port 443.
Siemens Scalance S613
1 EDB exploit
6.1
CVSSv3
CVE-2016-2279
Cross-site scripting (XSS) vulnerability in the web server in Rockwell Automation Allen-Bradley CompactLogix 1769-L* prior to 28.011+ allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Rockwellautomation Compactlogix 1769-l16er-bb1b Firmware
Rockwellautomation Compactlogix 1769-l18er-bb1b Firmware
Rockwellautomation Compactlogix 1769-l18erm-bb1b Firmware
Rockwellautomation Compactlogix 1769-l24er-qb1b Firmware
Rockwellautomation Compactlogix 1769-l24er-qbfc1b Firmware
Rockwellautomation Compactlogix 1769-l27erm-qbfc1b Firmware
Rockwellautomation Compactlogix 1769-l30er Firmware
Rockwellautomation Compactlogix 1769-l30erm Firmware
Rockwellautomation Compactlogix 1769-l30er-nse Firmware
Rockwellautomation Compactlogix 1769-l33er Firmware
Rockwellautomation Compactlogix 1769-l33erm Firmware
Rockwellautomation Compactlogix 1769-l36erm Firmware
Rockwellautomation Compactlogix 1769-l23e-qb1b Firmware
Rockwellautomation Compactlogix 1769-l23e-qbfc1b Firmware
Rockwellautomation Compactlogix 1756-en2f Series A Firmware
Rockwellautomation Compactlogix 1756-en2f Series B Firmware
Rockwellautomation Compactlogix 1756-en2t Series A Firmware
Rockwellautomation Compactlogix 1756-en2t Series B Firmware
Rockwellautomation Compactlogix 1756-en2t Series C Firmware
Rockwellautomation Compactlogix 1756-en2t Series D Firmware
Rockwellautomation Compactlogix 1756-en2tr Series A Firmware
Rockwellautomation Compactlogix 1756-en2tr Series B Firmware
1 EDB exploit
NA
CVE-2015-2177
Siemens SIMATIC S7-300 CPU devices allow remote malicious users to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus.
Siemens Simatic S7-300 Cpu Firmware
Siemens Simatic S7-300 Cpu -
1 EDB exploit
NA
CVE-2014-5074
Siemens SIMATIC S7-1500 CPU devices with firmware prior to 1.6 allow remote malicious users to cause a denial of service (device restart and STOP transition) via crafted TCP packets.
Siemens Simatic S7-1500 Cpu Firmware 1.5
Siemens Simatic S7-1500 Cpu Firmware
Siemens Simatic S7-1500 Cpu Firmware 1.0.1
Siemens Simatic S7-1500 Cpu Firmware 1.1.0
Siemens Simatic S7-1500 Cpu Firmware 1.1.1
Siemens Simatic S7-1500 Cpu Firmware 1.1.2
Siemens Simatic S7-1518f-4 Pn\\/dp Cpu -
Siemens Simatic S7-1513-1 Pn Cpu -
Siemens Simatic S7-1515-2 Pn Cpu -
Siemens Simatic S7-1511-1 Pn Cpu -
Siemens Simatic S7-1516-3 Pn\\/dp Cpu -
Siemens Simatic S7-1518-4 Pn\\/dp Cpu -
Siemens Simatic S7-1516f-3 Pn\\/dp Cpu -
1 EDB exploit
NA
CVE-2014-3110
Multiple cross-site scripting (XSS) vulnerabilities on Honeywell FALCON XLWeb Linux controller devices 2.04.01 and previous versions and FALCON XLWeb XLWebExe controller devices 2.02.11 and previous versions allow remote malicious users to inject arbitrary web script or HTML via ...
Honeywell Falcon Xlweb Linux Controller
Honeywell Falcon Xlweb Xlwebexe
1 EDB exploit
NA
CVE-2014-2908
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Siemens Simatic S7 Cpu 1200 Firmware 3.0
Siemens Simatic S7 Cpu 1200 Firmware 3.0.2
Siemens Simatic S7 Cpu 1200 Firmware 2.0
Siemens Simatic S7 Cpu 1212c -
Siemens Simatic S7 Cpu 1214c -
Siemens Simatic S7 Cpu 1215c -
Siemens Simatic S7 Cpu 1217c -
Siemens Simatic S7 Cpu-1211c -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »