Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web studio vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-1721
.NET Core and Visual Studio Denial of Service Vulnerability
Microsoft Visual Studio 2017
Microsoft Visual Studio 2019
Microsoft .net
Microsoft .net Core
Microsoft Powershell Core 7.0
Microsoft Powershell Core 7.1
1 Article
5
CVSSv2
CVE-2020-1597
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without auth...
Microsoft Asp.net Core 2.1
Microsoft Asp.net Core 3.1
Microsoft Visual Studio 2019
Microsoft Visual Studio 2017
Fedoraproject Fedora 32
Fedoraproject Fedora 33
5
CVSSv2
CVE-2020-1161
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
Microsoft Asp.net Core 3.1
Microsoft Visual Studio 2017
Microsoft Visual Studio 2019
5
CVSSv2
CVE-2020-1108
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Microsoft .net Core
Microsoft .net 5.0
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 4.6
Microsoft .net Framework 3.5
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Core 2.1
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft .net Core 3.1
Microsoft Visual Studio 2019 16.4
Microsoft Visual Studio 2019 16.5
Microsoft Powershell Core 6.2
Microsoft Powershell 7.0
4.3
CVSSv2
CVE-2019-13163
The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, Interstage Business Application Manager V2 and other versions, Interstage Informa...
Fujitsu Gp7000f Firmware -
Fujitsu Primepower Firmware -
Fujitsu Gps Firmware -
Fujitsu Sparc Enterprise M3000 Firmware -
Fujitsu Sparc Enterprise M4000 Firmware -
Fujitsu Sparc Enterprise M5000 Firmware -
Fujitsu Sparc Enterprise M8000 Firmware -
Fujitsu Sparc Enterprise M9000 Firmware -
Fujitsu Sparc M12-1 Firmware -
Fujitsu Sparc M12-2 Firmware -
Fujitsu Sparc M12-2s Firmware -
Fujitsu Primergy Rx2530 M5 Firmware -
Fujitsu Primergy Rx2540 M5 Firmware -
Fujitsu Primergy Rx4770 M5 Firmware -
Fujitsu Primergy Tx2550 M5 Firmware -
Fujitsu Granpower 5000 Firmware -
Fujitsu Celsius Firmware -
Fujitsu Primequest Firmware -
Fujitsu Interstage Application Development Cycle Manager 10.0
Fujitsu Interstage Application Development Cycle Manager 10.0a
Fujitsu Interstage Application Development Cycle Manager 10.1
Fujitsu Interstage Application Development Cycle Manager 10.1.1
4
CVSSv2
CVE-2019-18212
XMLLanguageService.java in XML Language Server (aka lsp4xml) prior to 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) prior to 0.9.1 for Visual Studio and other products, allows a remote malicious user to write to arbitrary files via Directory Traversal.
Xml Language Server Project Xml Server Project
Eclipse Wild Web Developer -
Theia Xml Extension Project Theia Xml Extension -
6.5
CVSSv2
CVE-2019-18213
XML Language Server (aka lsp4xml) prior to 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) prior to 0.9.1 for Visual Studio and other products, allows XXE via a crafted XML document, with resultant SSRF (as well as SMB connection initiation that can lead to NetNTL...
Xml Language Server Project Xml Server Project
Eclipse Wild Web Developer -
Theia Xml Extension Project Theia Xml Extension -
4.3
CVSSv2
CVE-2019-16168
In SQLite up to and including 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."
Sqlite Sqlite
Netapp Steelstore Cloud Integrated Storage -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager
Netapp Santricity Unified Manager -
Netapp E-series Santricity Os Controller
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 12.04
Fedoraproject Fedora 30
Debian Debian Linux 9.0
Tenable Nessus Agent
Oracle Solaris 11
Oracle Outside In Technology 8.5.4
Oracle Mysql
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Zfs Storage Appliance 8.8
4.3
CVSSv2
CVE-2019-14427
XSS exists in WEB STUDIO Ultimate Loan Manager 2.0 by adding a branch under the Branches button that sets the notes parameter with crafted JavaScript code.
Webstudio Ultimate Loan Manager 2.0
10
CVSSv2
CVE-2019-6543
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. Code is executed under the program runtime privileges, which could lead to the compromise of the machine.
Aveva Indusoft Web Studio 8.1
Aveva Indusoft Web Studio 8.0
Aveva Indusoft Web Studio 7.1
Aveva Indusoft Web Studio 6.1
Aveva Intouch Machine Edition 2014 R2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »