Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
validation vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-10184
The verify endpoint in YubiKey Validation Server prior to 2.40 does not check the length of SQL queries, which allows remote malicious users to cause a denial of service, aka SQL injection. NOTE: this issue is potentially relevant to persons outside Yubico who operate a self-host...
Yubico Yubikey One Time Password Validation Server
NA
CVE-2005-1556
Gamespy cd-key validation system allows remote malicious users to cause a denial of service (cd-key already in use) by capturing and replaying a cd-key authorization session.
Gamespy Gamespy Sdk Cd-key Validation Toolkit
8.6
CVSSv3
CVE-2020-10185
The sync endpoint in YubiKey Validation Server prior to 2.40 allows remote malicious users to replay an OTP. NOTE: this issue is potentially relevant to persons outside Yubico who operate a self-hosted OTP validation service with a non-default configuration such as an open sync p...
Yubico Yubikey One Time Password Validation Server
7.2
CVSSv3
CVE-2021-34715
A vulnerability in the image verification function of Cisco Expressway Series and Cisco TelePresence Video Communication Server (VCS) could allow an authenticated, remote malicious user to execute code with internal user privileges on the underlying operating system. The vulnerab...
Cisco Telepresence Video Communication Server
Cisco Expressway
10
CVSSv3
CVE-2020-11896
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code Execution, related to IPv4 tunneling.
Treck Tcp\\/ip
3 Github repositories
1 Article
10
CVSSv3
CVE-2020-11897
The Treck TCP/IP stack prior to 5.0.1.35 has an Out-of-Bounds Write via multiple malformed IPv6 packets.
Treck Tcp\\/ip
1 Github repository
1 Article
9.1
CVSSv3
CVE-2020-11898
The Treck TCP/IP stack prior to 6.0.1.66 improperly handles an IPv4/ICMPv4 Length Parameter Inconsistency, which might allow remote malicious users to trigger an information leak.
Treck Tcp\\/ip
1 Github repository
1 Article
5.4
CVSSv3
CVE-2020-11899
The Treck TCP/IP stack prior to 6.0.1.66 has an IPv6 Out-of-bounds Read.
Treck Tcp\\/ip
1 Github repository
8.2
CVSSv3
CVE-2020-11900
The Treck TCP/IP stack prior to 6.0.1.41 has an IPv4 tunneling Double Free.
Treck Tcp\\/ip
9
CVSSv3
CVE-2020-11901
The Treck TCP/IP stack prior to 6.0.1.66 allows Remote Code execution via a single invalid DNS response.
Treck Tcp\\/ip
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3012
CVE-2024-30200
XXE
CVE-2023-24955
CVE-2023-42931
CVE-2024-29231
remote code execution
cross-site scripting
CVE-2024-0677
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »