Lucene search
K

306 matches found

CNVD
CNVD
added 2017/09/06 12:0 a.m.5 views

Apache Struts2 REST plugin remote code execution vulnerability

Struts2 is the Apache Software Foundation is responsible for maintaining a MVC-based design pattern of the Web application framework for open source projects . Apache Struts2 REST plugin has a remote code execution vulnerability , due to the use of XStream component on the XML format of the packe...

8.1CVSS8.5AI score0.99461EPSS
Exploits23References1
CNVD
CNVD
added 2017/08/30 12:0 a.m.4 views

Advantech WebAccess HEAP Buffer Overflow Vulnerability

Advantech WebAccess is a set of HMI/SCADA software from Advantech based on browser architecture. The software supports dynamic graphic display and real-time data control, and provides remote control and management of automation equipment. Advantech WebAccess suffers from a HEAP buffer overflow...

8.8CVSS9.1AI score0.02601EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/25 12:0 a.m.1 views

Delta Industrial Automation WPLSoft dvp file heap buffer overflow vulnerability (CNVD-2017-228238)

Delta Industrial Automation is a global industrial automation manufacturer of power management and thermal solutions. WPLSoft and PMSoft are Delta's PLC programming software. A heap buffer overflow vulnerability exists in the Delta Industrial Automation WPLSoft dvp file. Due to a failure to...

8.1AI score
Exploits0References1
CNVD
CNVD
added 2017/08/25 12:0 a.m.1 views

Delta Industrial Automation WPLSoft dvp file heap buffer overflow vulnerability (CNVD-2017-228165)

Delta Industrial Automation is a global industrial automation manufacturer of power management and thermal solutions. WPLSoft and PMSoft are Delta's PLC programming software. A heap buffer overflow vulnerability exists in the Delta Industrial Automation WPLSoft dvp file due to a failure to valida...

8.1AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.7 views

The vulnerability of the Internet Explorer browser, which allows a malicious individual to execute arbitrary code or trigger a service failure.

Internet Explorer contains a vulnerability in the CFormatCache::AddRefData function, which is related to the lack of validation of data entered by users. Exploiting this vulnerability allows a malicious actor to cause service failures or execute arbitrary code...

9.3CVSS5.8AI score0.12635EPSS
Exploits1References3Affected Software1
CNVD
CNVD
added 2016/01/05 12:0 a.m.3 views

Wireshark UMTS FP Parser Denial of Service Vulnerability

Wireshark is the most popular network protocol parser. Wireshark version 1.12.x prior to 1.12.9, the function dissecthsdschchannelinfo in epan/dissectors/packet-umtsfp.c in the UMTS FP parser does not validate the number of PDUs, and by constructing a packet, a remote attacker can exploit this...

5.5CVSS7.6AI score0.01539EPSS
Exploits0References1
Rows per page
Query Builder