Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sds vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-25366
In Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS, insecure SCPI interface discloses web password.
Siglent Sds 1104x-e Firmware Sds1xx4x-e V6.1.37r9.ads
1 Github repository
5.3
CVSSv3
CVE-2022-21426
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily e...
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Jdk 18
Oracle Jdk 17.0.2
Oracle Jdk 11.0.14
Oracle Jre 17.0.2
Oracle Jre 11.0.14
Oracle Jre 18
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire \\& Hci Management Node -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
5.3
CVSSv3
CVE-2022-21434
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Eas...
Oracle Graalvm 20.3.5
Oracle Graalvm 21.3.1
Oracle Graalvm 22.0.0.2
Oracle Jdk 18
Oracle Jdk 17.0.2
Oracle Jdk 11.0.14
Oracle Jre 17.0.2
Oracle Jre 11.0.14
Oracle Jre 18
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire \\& Hci Management Node -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
7.5
CVSSv3
CVE-2023-25368
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Incorrect Access Control. An unauthenticated attacker can overwrite firmnware.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
7.5
CVSSv3
CVE-2023-25369
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS is vulnerable to Denial of Service on the user interface triggered by malformed SCPI command.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
9.8
CVSSv3
CVE-2023-25367
Siglent SDS 1104X-E SDS1xx4X-E_V6.1.37R9.ADS allows unfiltered user input resulting in Remote Code Execution (RCE) with SCPI interface or web server.
Siglent Sds1204x-e Firmware 6.1.37r9.ads
Siglent Sds1104x-e Firmware 6.1.37r9.ads
Siglent Sds1074x-e Firmware 6.1.37r9.ads
1 Github repository
7.5
CVSSv3
CVE-2022-23308
valid.c in libxml2 prior to 2.9.13 has a use-after-free of ID and IDREF attributes.
Xmlsoft Libxml2
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Apple Mac Os X 10.15.7
Apple Mac Os X
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Ipados
Apple Macos
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Ontap Select Deploy Administration Utility -
Netapp Clustered Data Ontap -
Netapp Smi-s Provider -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Netapp Bootstrap Os -
Netapp H300s Firmware -
6.5
CVSSv3
CVE-2021-3733
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (such as web browser) connects to, could trigger a Regular Expression Denial of Service (ReDOS) during an authentication request with a specia...
Python Python
Python Python 3.10.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux Server Update Services For Sap Solutions 8.4
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Ibm Z Systems Eus 8.4
Redhat Enterprise Linux For Ibm Z Systems 8.0
Redhat Enterprise Linux For Power Little Endian Eus 8.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.4
Redhat Codeready Linux Builder For Ibm Z Systems 8.0
Redhat Codeready Linux Builder For Power Little Endian 8.0
Redhat Codeready Linux Builder 8.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Extra Packages For Enterprise Linux 7.0
Netapp Ontap Select Deploy Administration Utility -
Netapp Hci Compute Node Firmware -
7.5
CVSSv3
CVE-2017-8019
An issue exists in EMC ScaleIO 2.0.1.x. A vulnerability in message parsers (MDM, SDS, and LIA) could potentially allow an unauthenticated remote malicious user to send specifically crafted packets to stop ScaleIO services and cause a denial of service situation.
Emc Scaleio 2.0.1.0
Emc Scaleio 2.0.1.1
Emc Scaleio 2.0.1.2
Emc Scaleio 2.0.1.3
5.3
CVSSv3
CVE-2020-8664
CNCF Envoy up to and including 1.13.0 has incorrect Access Control when using SDS with Combined Validation Context. Using the same secret (e.g. trusted CA) across many resources together with the combined validation context could lead to the “static” part of the valid...
Cncf Envoy
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »