Lucene search
K

33 matches found

CNVD
CNVD
added 2019/12/18 12:0 a.m.4 views

Barco ClickShare Button R9861500D01 Credential Management Error Vulnerability

The Barco ClickShare Button R9861500D01 is a wireless control device for presentation systems from Barco Belgium. A credential management error vulnerability exists in Barco ClickShare Button R9861500D01 versions prior to 1.9.0, which can be exploited by an attacker to forge arbitrary software...

8.1CVSS6.9AI score0.00434EPSS
Exploits1References1
NVD
NVD
added 2019/04/09 6:29 p.m.25 views

CVE-2017-17023

The Sophos UTM VPN endpoint interacts with client software provided by NPC Engineering www.ncp-e.com. The affected client software, "Sophos IPSec Client" 11.04 is a rebranded version of NCP "Secure Entry Client" 10.11 r32792. A vulnerability in the software update feature of the VPN client allows...

9.3CVSS8.1AI score0.00611EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/09 5:13 p.m.18 views

CVE-2017-17023

The Sophos UTM VPN endpoint interacts with client software provided by NPC Engineering www.ncp-e.com. The affected client software, "Sophos IPSec Client" 11.04 is a rebranded version of NCP "Secure Entry Client" 10.11 r32792. A vulnerability in the software update feature of the VPN client allows...

8.1AI score0.00611EPSS
Exploits0References2
Veracode
Veracode
added 2018/07/27 5:45 a.m.21 views

Cache Side-Channel Attack

libgcrypt.so is vulnerable to cache side-channel attack. The attack is possible when an attacker can run arbitrary software on the hardware where the private RSA key is used...

6.8CVSS6.9AI score0.03885EPSS
Exploits0References15Affected Software1
UbuntuCve
UbuntuCve
added 2017/06/29 12:0 a.m.23 views

CVE-2017-7526

libgcrypt before version 1.7.8 is vulnerable to a cache side-channel attack resulting into a complete break of RSA-1024 while using the left-to-right method for computing the sliding-window expansion. The same attack is believed to work on RSA-2048 with moderately more computation. This...

6.8CVSS7AI score0.03885EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2015/01/13 12:0 a.m.14 views

Snom SIP Phone Denial Of Service

Snom SIP phones www.snom.com have a builtin HTTP/HTTPS configuration interface, which is enabled by default. By making a single HTTP POST request all available memory and CPU can be exhausted, resulting in a reboot of the phone. This even works if the HTTP/HTTPS interface is protected by username...

7.4AI score
Exploits0
NVD
NVD
added 2013/09/05 11:44 a.m.22 views

CVE-2013-1651

OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof update servers and install arbitrary software via a crafted certificate...

5.8CVSS6.3AI score0.01032EPSS
Exploits5References1
Prion
Prion
added 2013/09/05 11:44 a.m.16 views

Open redirect

OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof update servers and install arbitrary software via a crafted certificate...

5.8CVSS6.8AI score0.01032EPSS
Exploits5References1Affected Software1
CVE
CVE
added 2003/05/07 4:0 a.m.54 views

CVE-2003-0237

CVE-2003-0237 affects Mirabilis ICQ Pro 2003a via the ICQ Features on Demand spoofing vulnerability. The hard-coded DataURL for downloaded features in Packages.ini is not authenticated, allowing an attacker to impersonate the package repository and install malicious software, potentially enabling...

7.5CVSS5.6AI score0.01588EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2002/06/25 4:0 a.m.14 views

CVE-2002-0317

Gator ActiveX component IEGator.dll 3.0.6.1 allows remote web sites to install arbitrary software by specifying a Trojan Gator installation file setup.ex in the src parameter...

7.5CVSS6.7AI score0.0136EPSS
Exploits0References4
CVE
CVE
added 2002/05/03 4:0 a.m.48 views

CVE-2002-0317

CVE-2002-0317 involves the Gator ActiveX component (IEGator.dll) 3.0.6.1. The vulnerability allows remote websites to install arbitrary software by specifying a Trojan Gator installation file (setup.ex_) in the src parameter, enabling a remote-initiated installation via the ActiveX control. This ...

7.5CVSS7.1AI score0.0136EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2000/01/04 5:0 a.m.29 views

CVE-1999-0722

The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages...

6.8AI score0.02253EPSS
Exploits0References1
NVD
NVD
added 1999/08/08 4:0 a.m.25 views

CVE-1999-0722

The default configuration of Cobalt RaQ2 servers allows remote users to install arbitrary software packages...

10CVSS6.8AI score0.02253EPSS
Exploits0References1
Rows per page
Query Builder