Lucene search
K

174 matches found

Cvelist
Cvelist
added 2017/10/02 9:0 p.m.28 views

CVE-2017-11498

Buffer overflow in hasplms in Gemalto ACC Admin Control Center, all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote attackers to shut down the remote process a denial of service via a language pack ZIP file with invalid HTML files...

7.5AI score0.02974EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2017/07/21 12:0 a.m.28 views

Oracle Primavera Gateway Multiple Vulnerabilities (July 2017 CPU)

According to its self-reported version number, the Oracle Primavera Gateway installation running on the remote web server is prior to 14.2.3, 15.x prior to 15.2.12, or 16.x prior to 16.2.4. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability exist...

9.8CVSS8.6AI score0.17239EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.25 views

Palo Alto Networks PAN-OS 7.0.x < 7.0.8 Multiple Vulnerabilities (PAN-SA-2016-0008 / PAN-SA-2016-0009)

The version of Palo Alto Networks PAN-OS running on the remote host is 7.0.x prior to 7.0.8. It is, therefore, affected by the following vulnerabilities : - A denial of service vulnerability exists in the API hosted on the management interface, specifically in the panUserLogin function within...

5.4CVSS6.2AI score0.00782EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/07/25 12:0 a.m.143 views

HP UCMDB Server Java Deserialization RCE

The HP Universal Configuration Management Database UCMDB Server running on the remote host is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated, remote attacker can...

9.8CVSS9.7AI score0.04734EPSS
Exploits0References3
CVE
CVE
added 2016/06/17 3:0 p.m.116 views

CVE-2016-3642

Summary: CVE-2016-3642 affects SolarWinds Virtualization Manager; the RMI service (port 1099/TCP) can be exploited via a crafted serialized Java object to achieve remote code execution, due to insecure deserialization tied to Apache Commons Collections (ACC). The vulnerability is present in 6.3.1...

10CVSS9.3AI score0.13268EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2016/06/08 2:0 p.m.53 views

CVE-2016-4368

CVE-2016-4368 affects HPE Universal CMDB products (UCMDB Server/Configuration Manager/Universal Discovery) versions 10.0–10.21. The root cause is unsafe deserialization of unauthenticated Java objects to the Apache Commons Collections (ACC) library, enabling remote code execution. Impact is remot...

9.8CVSS9.7AI score0.04734EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2016/04/20 5:0 p.m.39 views

CVE-2016-2003

Summary: CVE-2016-2003 affects HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00. Root cause: remote code execution via crafted serialized Java objects, related to the Apache Commons Collections library, due to insecure de...

9.8CVSS9.7AI score0.04458EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2016/02/08 12:0 a.m.88 views

McAfee ePolicy Orchestrator Java Object Deserialization RCE

The McAfee ePolicy Orchestrator ePO installed on the remote Windows host is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated, remote attacker can exploit this to...

8.3CVSS8.9AI score0.02718EPSS
Exploits0References4
CVE
CVE
added 2016/01/08 8:0 p.m.63 views

CVE-2015-8765

CVE-2015-8765 affects Intel McAfee ePolicy Orchestrator (ePO) with remote code execution via crafted serialized Java objects in the Apache Commons Collections library. Affected versions include ePO 4.6.9 and earlier; 5.0.x; 5.1.x before 5.1.3 Hotfix 1106041; and 5.3.x before 5.3.1 Hotfix 1106041....

8.3CVSS8.4AI score0.02718EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2015/12/15 5:59 a.m.24 views

CVE-2015-6420

Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider;...

9.8CVSS9.7AI score0.18763EPSS
Exploits1References12
Cvelist
Cvelist
added 2015/12/15 2:0 a.m.34 views

CVE-2015-6420

Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider;...

9.6AI score0.18763EPSS
Exploits1References9
CERT
CERT
added 2015/06/10 12:0 a.m.224 views

Avigilon Control Center is vulnerable to path traversal

Overview The Avigilon Control Center ACC is a server software for security and surveillance systems. The ACC Server is vulnerable to a path traversal attack, allowing an attacker to access any file on the server. Description CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Pat...

7.8CVSS6.7AI score0.02704EPSS
Exploits0References1
NVD
NVD
added 2014/10/19 10:55 a.m.12 views

CVE-2014-7387

The ACC Advocacy Action aka com.acc.app.android.ui application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/19 10:0 a.m.49 views

CVE-2014-7387

The ACC Advocacy Action (com.acc.app.android.ui) 2.0 for Android is affected: it does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via crafted certificates. Root cause is missing/incorrect certificate valida...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Acc PHP eMail 1.1 - CSRF

No description provided by source. /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // 01000010 01101001 01001111 ---------------------------------------------------------------- + Acc PHP eMail v1.1 - CSRF // Author Info x Author: bi0 x Contact: [email protected] x Homepage :...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

ACC IMoveis 4.0 - SQL Injection Vulnerability

No description provided by source. Exploit Title : iMoveis SQL Injection Vulnerability Date : 26/10/2010 Author : EraGoN Software link : http://baixar7.com/download/acc-imoveis-script-php.rar/3d1e7bf4b9 Version : 1.1 Tested on : Linux / Windows XP Dork : inurl:imoveis.php?id= Error You have an...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2014/05/05 12:0 a.m.73 views

Mybb All Version Denial of Service Vulnerability

Mybb All Version Denial of Service Vulnerability !/usr/bin/perl @@@ @@@@@@@@@@@ @@@@@ @@@@@@@@@@ @@@ @@@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@ @@@@@@@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@ @@@ @@ @@@ @@ @@@ @@@ @@@ @@@ @@@@@@@@@@@ @@@ @ @@@@@@@@@@ @@@ @@@@@@ @@@ @@@@@@@@@@@ @@@ @@ @@@ @@ @@@...

1AI score
Exploits0
exploitpack
exploitpack
added 2012/11/01 12:0 a.m.44 views

SIEMENS Sipass Integrated 2.6 Ethernet Bus - Arbitrary Pointer Dereference

SIEMENS Sipass Integrated 2.6 Ethernet Bus - Arbitrary Pointer Dereference IOActive Security Advisory Title: SIEMENS Sipass Integrated 2.6 Ethernet Bus Arbitrary Pointer Dereference Severity: Critical Discovered by: Lucas Apa Date Reported: 09/11/12 CVE: TBD Siemens Advisory: SSA-938777...

0.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2012/06/20 4:2 p.m.39 views

Important: Red Hat Security Advisory: jbossas-web and jboss-naming security update

Updated jbossas-web and jboss-naming packages that fix two security issues are now available for JBoss Enterprise Web Platform 5.1.2 for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring...

7.5CVSS5.8AI score0.03521EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2012/06/19 7:23 p.m.33 views

Moderate: Red Hat Security Advisory: jbossas security update

An update for JBoss Enterprise Application Platform 5.1.2 that fixes one security issue is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which give...

4.6CVSS5.8AI score0.01604EPSS
Exploits1References3
Rows per page
Query Builder