Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2024-30299
Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and previous versions are affected by an Improper Authentication vulnerability that could result in privilege escalation. An attacker could exploit this vulnerability to gain unauthorized access or elevated privileges wit...
10
CVSSv3
CVE-2024-22216
In default installations of Microchip maxView Storage Manager (for Adaptec Smart Storage Controllers) where Redfish server is configured for remote system management, unauthorized access can occur, with data modification and information disclosure. This affects 3.00.23484 up to a...
Microchip Maxview Storage Manager
10
CVSSv3
CVE-2021-41873
Penguin Aurora TV Box 41502 is a high-end network HD set-top box produced by Tencent Video and Skyworth Digital. An unauthorized access vulnerability exists in the Penguin Aurora Box. An attacker can use the vulnerability to gain unauthorized access to a specific link to remotely...
Skyworth Penguin Aurora Box Firmware -
10
CVSSv3
CVE-2021-37705
OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuzz 2.12.0 or greater, an incomplete authorization check allows an authenticated user from any Azure Active Directory tenant to make authorized API calls to a vulnerable OneFuzz instance. To be...
Microsoft Onefuzz
10
CVSSv3
CVE-2018-6968
The VMware AirWatch Agent for Android before 8.2 and AirWatch Agent for Windows Mobile before 6.5.2 contain a remote code execution vulnerability in real time File Manager capabilities. This vulnerability may allow for unauthorized creation and execution of files in the Agent san...
Vmware Airwatch Agent
1 Article
10
CVSSv3
CVE-2018-0268
A vulnerability in the container management subsystem of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote malicious user to bypass authentication and gain elevated privileges. This vulnerability is due to an insecure default configuration of ...
Cisco Digital Network Architecture Center
1 Article
10
CVSSv3
CVE-2017-10269
Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). Supported versions that are affected are 11.1.1, 12.1.1, 12.1.3 and 12.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via Jolt to compromise O...
Oracle Tuxedo 12.2.2
Oracle Tuxedo 12.1.3
Oracle Tuxedo 11.1.1
Oracle Tuxedo 12.1.1
1 Article
10
CVSSv3
CVE-2017-10405
Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report). Supported versions that are affected are 8.5.1 and 9.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via ...
Oracle Hospitality Reporting And Analytics 8.5.1
Oracle Hospitality Reporting And Analytics 9.0.0
10
CVSSv3
CVE-2017-7928
An Improper Access Control issue exists in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The device does not properly enforce access control while configured for NAT port forwarding, ...
Selinc Sel-3620 Firmware R202
Selinc Sel-3620 Firmware R203
Selinc Sel-3620 Firmware R203-v
Selinc Sel-3620 Firmware R203-v1
Selinc Sel-3620 Firmware R204
Selinc Sel-3620 Firmware R204-v1
Selinc Sel-3622 Firmware R202
Selinc Sel-3622 Firmware R203
Selinc Sel-3622 Firmware R203-v
Selinc Sel-3622 Firmware R203-v1
Selinc Sel-3622 Firmware R204
Selinc Sel-3622 Firmware R204-v1
10
CVSSv3
CVE-2017-5145
An issue exists in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Successful exploitation of this CROSS-SITE REQUEST FORGERY (CSRF) vulnerability can allow execution of unauthorized actions on the device such as configuration...
Carlosgavazzi Vmu-c Em Firmware -
Carlosgavazzi Vmu-c Pv Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
remote code execution
CVE-2024-37080
CVE-2024-5182
CVE-2024-4390
CVE-2024-6100
brute force
CVE-2021-47581
file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »