Lucene search
K

4758 matches found

CVE
CVE
added 2013/09/13 6:0 p.m.81 views

CVE-2013-2898

The CVE-2013-2898 entry concerns the Linux kernel HID subsystem, specifically drivers/hid/hid-sensor-hub.c. When CONFIG_HID_SENSOR_HUB is enabled, the vulnerability affects the kernel up through version 3.11 and allows physically proximate attackers to obtain sensitive information from kernel mem...

1.9CVSS6.7AI score0.00364EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2013/09/13 6:0 p.m.24 views

CVE-2013-2898

drivers/hid/hid-sensor-hub.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDSENSORHUB is enabled, allows physically proximate attackers to obtain sensitive information from kernel memory via a crafted device...

6.9AI score0.00364EPSS
Exploits0References4
0day.today
0day.today
added 2013/08/03 12:0 a.m.76 views

INSTEON Hub 2242-222 - Lack of Web and API Authentication

Exploit for hardware platform in category web applications The INSTEON Hub allows users to control their home automation devices from their home, and across the Internet. To allow control of the devices from the Internet requires that a user create a port forward from the Internet to the Hub on...

8AI score0.06973EPSS
Exploits6
Packet Storm
Packet Storm
added 2013/08/02 12:0 a.m.65 views

INSTEON Hub 2242-222 Lack Of Authentication

Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model discontinued Product description: Home automation controller f...

8.2AI score0.06973EPSS
Exploits6
exploitpack
exploitpack
added 2013/08/02 12:0 a.m.92 views

INSTEON Hub 2242-222 - Lack of Web and API Authentication

INSTEON Hub 2242-222 - Lack of Web and API Authentication Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model...

9.3CVSS0.06973EPSS
Exploits6
Exploit DB
Exploit DB
added 2013/08/02 12:0 a.m.83 views

INSTEON Hub 2242-222 - Lack of Web and API Authentication

Trustwave SpiderLabs Security Advisory TWSL2013-023: Lack of Web and API Authentication Vulnerability in INSTEON Hub Published: 8/01/13 Version: 1.0 Vendor: INSTEON http://www.INSTEON.com/ Product: Hub Version affected: 2242-222 model discontinued Product description: Home automation controller f...

9.3CVSS8.2AI score0.06973EPSS
Exploits6
ThreatPost
ThreatPost
added 2013/06/12 12:54 p.m.47 views

BlackBerry Warns of Z10, PlayBook Security Vulnerabilities

BlackBerry’s security incident response team has issued two advisories warning Z10 smartphone and PlayBook tablet users to upgrade to the latest version of the operating system and software on both platforms. The patches address a remote code-execution vulnerability in the Adobe Flash Player...

10CVSS9.3AI score0.08158EPSS
Exploits0References4
OSV
OSV
added 2013/06/06 12:24 p.m.8 views

MGASA-2013-0162 Updated moodle package fix security vulnerabilities

The assignment module in Moodle before 2.4.4 was not checking capabilities for users downloading all assignments as a zip CVE-2013-2079. The Gradebook's Overview report in Moodle before 2.4.4 was showing grade totals that may have incorrectly included hidden grades CVE-2013-2080. When registering...

5CVSS5.8AI score0.02372EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2013/05/25 3:18 a.m.15 views

CVE-2013-2081

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider "don't send" attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data...

4.3CVSS5.8AI score0.01556EPSS
Exploits0References3
Prion
Prion
added 2013/05/25 3:18 a.m.15 views

Code injection

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider "don't send" attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data...

4.3CVSS6.5AI score0.01556EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2013/05/25 3:18 a.m.9 views

UBUNTU-CVE-2013-2081

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider "don't send" attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data...

4.3CVSS5.7AI score0.01556EPSS
Exploits0References4
Cvelist
Cvelist
added 2013/05/25 1:0 a.m.33 views

CVE-2013-2081

Moodle through 2.1.10, 2.2.x before 2.2.10, 2.3.x before 2.3.7, and 2.4.x before 2.4.4 does not consider "don't send" attributes during hub registration, which allows remote hubs to obtain sensitive site information by reading form data...

5.8AI score0.01556EPSS
Exploits0References6
exploitpack
exploitpack
added 2013/01/08 12:0 a.m.19 views

BT Home Hub - uuid Buffer Overflow

BT Home Hub - uuid Buffer Overflow source: https://www.securityfocus.com/bid/57243/info BT Home Hub is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data before copying it to an insufficiently sized buffer. An attacker can exploit...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/08 12:0 a.m.38 views

BT Home Hub - 'uuid' Buffer Overflow

source: https://www.securityfocus.com/bid/57243/info BT Home Hub is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data before copying it to an insufficiently sized buffer. An attacker can exploit this issue to gain elevated privileg...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2012/11/02 12:0 a.m.13 views

Fedora Update for ssmtp FEDORA-2012-16163

Check for the Version of ssmtp OpenVAS Vulnerability Test Fedora Update for ssmtp FEDORA-2012-16163 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

7.4AI score
Exploits0References2
Prion
Prion
added 2012/09/20 9:55 p.m.24 views

Memory corruption

Apple Mac OS X before 10.7.5 does not properly handle the bNbrPorts field of a USB hub descriptor, which allows physically proximate attackers to execute arbitrary code or cause a denial of service memory corruption and system crash by attaching a USB device...

4.6CVSS8.1AI score0.00403EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2012/09/20 9:0 p.m.30 views

CVE-2012-3723

Apple Mac OS X before 10.7.5 does not properly handle the bNbrPorts field of a USB hub descriptor, which allows physically proximate attackers to execute arbitrary code or cause a denial of service memory corruption and system crash by attaching a USB device...

7.5AI score0.00403EPSS
Exploits0References3
CVE
CVE
added 2012/09/20 9:0 p.m.56 views

CVE-2012-3723

Apple Mac OS X prior to 10.7.5 is affected by CVE-2012-3723 due to improper handling of the bNbrPorts field in USB hub descriptors. This memory corruption vulnerability allows physically proximate attackers to run arbitrary code or cause a denial of service by attaching a USB device. Fix: update ...

4.6CVSS7.7AI score0.00403EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/09/16 10:0 a.m.19 views

CVE-2012-3915

The DMVPN tunnel implementation in Cisco IOS 15.2 allows remote attackers to cause a denial of service persistent IKE state via a large volume of hub-to-spoke traffic, aka Bug ID CSCtq39602...

6.6AI score0.01218EPSS
Exploits0References2
0day.today
0day.today
added 2012/06/26 12:0 a.m.44 views

Root Exploit Western Digital's WD TV Live SMP/Hub

Exploit for hardware platform in category remote exploits Introduction ============ The WD TV Live Streaming Media Player is a consumer device to play various audio and video formats. Additionally it allows access to multiple video streaming services like Netflix, Hulu or Youtube.1 The device...

7.1AI score
Exploits0
Rows per page
Query Builder