CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

642 matches found

Prion•added 2017/09/06 9:29 p.m.•8 views

Command injection

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

9.3CVSS7.7AI score0.03311EPSS

Exploits1References5Affected Software1

OSV•added 2017/09/06 9:29 p.m.•0 views

UBUNTU-CVE-2015-0853

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

8.8CVSS6.1AI score0.03311EPSS

Exploits1References2

Cvelist•added 2017/09/06 9:0 p.m.•16 views

CVE-2015-0853

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

8.8AI score0.03311EPSS

Exploits1References5

CVE•added 2017/09/06 9:0 p.m.•44 views

CVE-2015-0853

CVE-2015-0853 affects svn-workbench 1.6.2 and earlier. The vulnerability allows local users to execute arbitrary commands via the Command Shell menu item when in trunk/$(xeyes). Root cause described as command execution vulnerability in svn-workbench; no exploitation details or affected versions ...

9.3CVSS8.6AI score0.03311EPSS

Exploits1References5Affected Software1

CNVD•added 2017/08/25 12:0 a.m.•1 views

SAP Netweaver ABA Workbench Tools Certification Bypass Vulnerability

SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. An authentication bypass vulnerability exists in SAP Netweaver ABA Workbench Tools. An attacker could exploit th...

7AI score

Exploits0References1

rapid7community•added 2017/07/20 6:6 p.m.•103 views

Building a Car Hacking Development Workbench: Part 3

Welcome back to the car hacking development workbench series. In part two we discussed how to read wiring diagrams. In part three, we are going to expand on the workbench by re-engineering circuits and replicate signals used in your vehicle. If this is your first time stumbling across this write...

6.7AI score

Exploits0

rapid7community•added 2017/07/17 6:38 p.m.•81 views

Building a Car Hacking Development Workbench: Part 1

Introduction There is a vast body of knowledge hiding inside your car. Whether you are an auto enthusiast, developer, hobbyist, security researcher, or just curious about vehicles, building a development bench can be an exciting project to facilitate understanding and experimentation without...

6.8AI score

Exploits0

Tenable Nessus•added 2017/06/12 12:0 a.m.•31 views

openSUSE Security Update : mysql-connector-cpp / mysql-workbench (openSUSE-2017-671)

This update for mysql-connector-cpp and mysql-workbench fixes the following issues : Mysql-connector-cpp was updated to version 1.1.8 : - See the news files on https://dev.mysql.com/doc/relnotes/connector-cpp/en/ Mysql-workbench was updated to version 6.3.9 : -...

4.3CVSS5.6AI score0.00982EPSS

Exploits0References5

OSV•added 2017/05/19 3:29 a.m.•2 views

CVE-2017-5176

A DLL Hijack issue was discovered in Rockwell Automation Connected Components Workbench CCW. The following versions are affected: Connected Components Workbench - Developer Edition, v9.01.00 and earlier: 9328-CCWDEVENE, 9328-CCWDEVZHE, 9328-CCWDEVFRE, 9328-CCWDEVITE, 9328-CCWDEVDEE, 9328-CCWDEVES...

7CVSS5.7AI score0.0052EPSS

Exploits0References2

Cvelist•added 2017/05/19 2:43 a.m.•19 views

CVE-2017-5176

7AI score0.0052EPSS

Exploits0References2

CVE•added 2017/05/19 2:43 a.m.•58 views

CVE-2017-5176

Rockwell Automation Connected Components Workbench (CCW) suffers a DLL Hijack vulnerability (CVE-2017-5176) affecting CCW Developer Edition v9.01.00 and earlier (including 9328-CCWDEVENE, ZHE, FRE, ITE, DEE, DEVESE, DEVPTE) and CCW Free Standard Edition (all languages) prior to version 10.00. The...

7CVSS7AI score0.0052EPSS

Exploits0References2Affected Software1

CNVD•added 2017/04/28 12:0 a.m.•2 views

Oracle One-to-One Fulfillment Security Bypass Vulnerability

Oracle E-Business Suite E-Business Suite is the United States Oracle Oracle company's set of fully integrated global business management software. The software provides customer relationship management, service management, financial management, etc. Oracle One-to-One Fulfillment is one of the...

7.1CVSS6.5AI score0.01272EPSS

Exploits0References1

CNVD•added 2017/04/27 12:0 a.m.•2 views

Oracle One-to-One Fulfillment Unauthorized Operation Vulnerability

7.8CVSS6.5AI score0.01625EPSS

Exploits0References1

Cvelist•added 2017/04/25 7:0 p.m.•22 views

CVE-2017-3434

Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite subcomponent: Audience workbench. Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromi...

5.9AI score0.01272EPSS

Exploits0References2

OSV•added 2017/04/24 7:59 p.m.•2 views

CVE-2017-3432

7.1CVSS5.8AI score

Exploits0References3

NVD•added 2017/04/24 7:59 p.m.•14 views

CVE-2017-3469

Vulnerability in the MySQL Workbench component of Oracle MySQL subcomponent: Workbench: Security : Encryption. Supported versions that are affected are 6.3.8 and earlier. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

4.3CVSS2.5AI score0.00982EPSS

Exploits0References3

NVD•added 2017/04/24 7:59 p.m.•15 views

CVE-2017-3432

7.8CVSS6.9AI score0.01625EPSS

Exploits0References3

OSV•added 2017/04/24 7:59 p.m.•3 views

CVE-2017-3469

3.7CVSS5.8AI score0.00982EPSS

Exploits0References3

Prion•added 2017/04/24 7:59 p.m.•12 views

Design/Logic Flaw