Lucene search
K

133 matches found

CNVD
CNVD
added 2019/01/11 12:0 a.m.2 views

NEC Aterm W300P OS Command Injection Vulnerability (CNVD-2019-01102)

The NEC Aterm W300P is a wireless router from Nippon Electric NEC. An operating system command injection vulnerability exists in the NEC Aterm W300P using firmware version 1.0.13 and earlier. An attacker can exploit this vulnerability to execute arbitrary operating system commands via HTTP reques...

9CVSS8.3AI score0.01399EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/10/24 12:14 p.m.3 views

JDK: unspecified vulnerability fixed in 6u171, 7u161, 8u151, and 9.0.1 (Javadoc)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Javadoc. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Successful attacks...

6.1CVSS7.4AI score0.01489EPSS
Exploits0References5
OSV
OSV
added 2017/10/19 5:29 p.m.3 views

CVE-2017-10375

Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications subcomponent: Base. Supported versions that are affected are 4.2.0 and 4.2.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

4.6CVSS7.3AI score0.00683EPSS
Exploits0References2
OSV
OSV
added 2017/10/19 5:29 p.m.3 views

CVE-2017-10293

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Javadoc. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Successful attacks...

6.1CVSS7.4AI score0.01489EPSS
Exploits0References8
OSV
OSV
added 2017/10/19 5:29 p.m.2 views

CVE-2017-10060

Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Analytics Web General. Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated...

8.2CVSS7.3AI score0.01929EPSS
Exploits0References3
OSV
OSV
added 2017/08/08 3:29 p.m.4 views

CVE-2017-10121

Vulnerability in the Java Advanced Management Console component of Oracle Java SE subcomponent: Server. The supported version that is affected is Java Advanced Management Console: 2.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java...

6.1CVSS7.3AI score
Exploits0References5
OSV
OSV
added 2017/08/08 3:29 p.m.6 views

CVE-2017-10002

Vulnerability in the Oracle Hospitality Inventory Management component of Oracle Hospitality Applications subcomponent: Settings and Config. Supported versions that are affected are 8.5.1 and 9.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.4CVSS7.3AI score0.01154EPSS
Exploits4References3
OSV
OSV
added 2017/04/24 7:59 p.m.4 views

CVE-2017-3542

Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware subcomponent: Server. Supported versions that are affected are 11.1.1.8.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to...

8.6CVSS5.8AI score0.02295EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/02/09 12:0 a.m.7 views

The vulnerability of the Oracle VM VirtualBox virtual machine allows a hacker to gain access to data reading, modify data, or cause a partial service failure.

The vulnerability of the GUI component of the Oracle VM VirtualBox lies in security configuration errors. Exploiting this vulnerability allows a malicious actor to gain read access to data, modify, add, or delete data, or cause partial service failure through HTTP requests...

6.8CVSS6.9AI score0.01488EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/01/27 10:59 p.m.3 views

CVE-2017-3364

Vulnerability in the Oracle Knowledge Management component of Oracle E-Business Suite subcomponent: User Interface. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

8.2CVSS7.3AI score0.01237EPSS
Exploits0References2
CNVD
CNVD
added 2015/01/21 12:0 a.m.2 views

Oracle GlassFish Server Remote Vulnerability

Oracle GlassFish Enterprise Server is an open source and open community platform for building and deploying next-generation applications and services. A remote vulnerability exists in Oracle GlassFish Server that allows attackers to exploit the 'HTTP' protocol to compromise the 'Admin Console'...

6.8AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Adult Script <= 1.6.5 - Multiple Remote SQL Injection Vulnerabilities

No description provided by source. --------------------------------------------------------------- / | |\ \ / | / |/ | | |/ \ | | / \ \ | \ \ | | | \ | |/ \ | | // | || | ||| /| / /\ | |||| /| / / --------------------------------------------------------------- Http://www.inj3ct-it.org...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2001/06/27 12:0 a.m.14 views

Cisco IOS 11.x12.x - HTTP Configuration Arbitrary Administrative Access (2)

Cisco IOS 11.x12.x - HTTP Configuration Arbitrary Administrative Access 2 / source: https://www.securityfocus.com/bid/2936/info IOS is router firmware developed and distributed by Cisco Systems. IOS functions on numerous Cisco devices, including routers and switches. It is possible to gain full...

0.7AI score
Exploits0
Rows per page
Query Builder