Lucene search
K

695 matches found

BDU FSTEC
BDU FSTEC
added 2015/05/22 12:0 a.m.5 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/05/22 12:0 a.m.6 views

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to access to resources through incompatible types. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS5.9AI score0.07788EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2015/04/11 1:59 a.m.21 views

CVE-2015-0694

Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows remote attackers to bypass intended network-resource access restrictions by using an address that was not supposed to have been allowed, aka Bug ID CSCur28806...

5CVSS6.9AI score0.01643EPSS
Exploits0References2
Prion
Prion
added 2015/04/11 1:59 a.m.18 views

Design/Logic Flaw

Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows remote attackers to bypass intended network-resource access restrictions by using an address that was not supposed to have been allowed, aka Bug ID CSCur28806...

5CVSS7.5AI score0.01643EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/11 1:0 a.m.19 views

CVE-2015-0694

Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows remote attackers to bypass intended network-resource access restrictions by using an address that was not supposed to have been allowed, aka Bug ID CSCur28806...

6.9AI score0.01643EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2015/04/10 2:59 p.m.27 views

CVE-2015-1126

WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors...

4.3CVSS7.3AI score0.09964EPSS
Exploits2References5
OSV
OSV
added 2015/04/10 2:59 p.m.5 views

UBUNTU-CVE-2015-1126

WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors...

4.3CVSS7.3AI score0.09964EPSS
Exploits2References6
CVE
CVE
added 2015/04/10 2:0 p.m.54 views

CVE-2015-1126

CVE-2015-1126 affects WebKit components used in Apple iOS prior to 8.3 and Apple Safari prior to 6.2.5, 7.x prior to 7.1.5, and 8.x prior to 8.0.5. The vulnerability arises from improper handling of the userinfo field in FTP URLs, enabling remote attackers to trigger incorrect resource access via...

4.3CVSS7.5AI score0.09964EPSS
Exploits2References5Affected Software1
RedHat Linux
RedHat Linux
added 2015/03/05 7:28 p.m.29 views

Important: Red Hat Security Advisory: redhat-access-plugin-openstack security update

An updated redhat-access-plugin-openstack package that fixes one security issue is now available for Red Hat Enterprise Linux OpenStack Platform 6.0. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which...

4CVSS5.7AI score0.01676EPSS
Exploits0References2
Prion
Prion
added 2015/02/17 1:59 a.m.22 views

Authentication flaw

Cisco Adaptive Security Appliance ASA Software 9.2.3 and earlier, when challenge-response authentication is used, does not properly select tunnel groups, which allows remote authenticated users to bypass intended resource-access restrictions via a crafted tunnel-group parameter, aka Bug ID...

4CVSS6.9AI score0.01782EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2015/02/17 1:0 a.m.24 views

CVE-2014-8023

Cisco Adaptive Security Appliance ASA Software 9.2.3 and earlier, when challenge-response authentication is used, does not properly select tunnel groups, which allows remote authenticated users to bypass intended resource-access restrictions via a crafted tunnel-group parameter, aka Bug ID...

6.4AI score0.01782EPSS
Exploits0References5
Prion
Prion
added 2014/08/22 1:55 a.m.19 views

Information disclosure

IBM WebSphere Application Server WAS 7.0.x before 7.0.0.35, 8.0.x before 8.0.0.10, and 8.5.x before 8.5.5.3 does not properly restrict resource access, which allows remote attackers to obtain sensitive information via unspecified vectors...

5CVSS6.3AI score0.02118EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2014/08/22 1:0 a.m.27 views

CVE-2014-3083

IBM WebSphere Application Server WAS 7.0.x before 7.0.0.35, 8.0.x before 8.0.0.10, and 8.5.x before 8.5.5.3 does not properly restrict resource access, which allows remote attackers to obtain sensitive information via unspecified vectors...

3.4AI score0.02118EPSS
Exploits0References4
Prion
Prion
added 2014/08/20 11:17 a.m.18 views

Design/Logic Flaw

EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to bypass intended restrictions on resource access via unspecified vectors...

4CVSS6.7AI score0.01174EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2012/06/17 3:41 a.m.10 views

CVE-2012-2672

Oracle Mojarra 2.1.7 does not properly "clean up" the FacesContext reference during startup, which allows local users to obtain context information an access resources from another WAR file by calling the FacesContext.getCurrentInstance function...

5.5AI score
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2011/04/13 2:55 p.m.2 views

CVE-2011-1683

IBM WebSphere Application Server WAS 6.0.x through 6.0.2.43, 6.1.x before 6.1.0.37, and 7.0.x before 7.0.0.17 on z/OS, when a Local OS user registry or Federated Repository with RACF adapter is used, allows remote attackers to obtain unspecified application access via unknown vectors...

6.8CVSS5.6AI score0.01723EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2011/03/25 12:0 a.m.23 views

Mozilla SeaMonkey < 2.0.14 Multiple Vulnerabilities

Binary data 801324.prm...

10CVSS7.3AI score0.73655EPSS
Exploits20References23
Cvelist
Cvelist
added 2011/03/16 10:0 p.m.33 views

CVE-2011-0322

Unspecified vulnerability in EMC RSA Access Manager Server 5.5.x, 6.0.x, and 6.1.x allows remote attackers to access resources via unknown vectors...

6.6AI score0.01661EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2010/04/19 12:0 a.m.23 views

Mandriva Update for apache-mod_auth_shadow MDVSA-2010:081 (apache-mod_auth_shadow)

Check for the Version of apache-modauthshadow OpenVAS Vulnerability Test Mandriva Update for apache-modauthshadow MDVSA-2010:081 apache-modauthshadow Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you ca...

6.8CVSS6.4AI score0.03766EPSS
Exploits0References2
NVD
NVD
added 2007/12/15 2:46 a.m.13 views

CVE-2007-6384

Unspecified vulnerability in the Image Converter functionality in BEA WebLogic Mobility Server 3.3, 3.5, and 3.6 through 3.6 SP1 allows remote attackers to obtain application file and resource access via unspecified vectors...

7.5CVSS6.6AI score0.01682EPSS
Exploits0References6
Rows per page
Query Builder