Lucene search
+L

57 matches found

BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.8 views

The vulnerability of the MySQL database management system allows a malicious actor to trigger a service failure after passing authentication.

The Oracle MySQL database management system contains a vulnerability that can be exploited by remote users who have passed authentication. This vulnerability allows these users to affect the accessibility of data by using the Data Manipulation Language subcomponent...

4CVSS7AI score0.02279EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2016/05/02 12:36 p.m.4 views

mysql: unspecified vulnerability in subcomponent: Server: Optimizer (CPU January 2016)

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer...

4CVSS7.2AI score0.043EPSS
Exploits0References5
OSV
OSV
added 2016/02/12 1:59 a.m.5 views

CVE-2016-0882

EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows remote authenticated users to read arbitrary files via a POST request containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...

5.4CVSS5.8AI score0.01707EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2016/02/03 12:0 a.m.3 views

PT-2016-1271 · Kubernetes · Kubernetes

Name of the Vulnerable Software and Affected Versions: Kubernetes affected versions not specified Description: The issue is related to insufficient access control in the Kubernetes API server, allowing remote authenticated users to access additional resources by crafting a patched object. This ca...

7.7CVSS8.2AI score0.01583EPSS
Exploits0References11
CNVD
CNVD
added 2015/10/22 12:0 a.m.5 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2015-06829)

Oracle E-Business Suite is a fully integrated set of global business management software from Oracle. An unspecified vulnerability exists in Oracle E-Business Suite 12.2.3 and 12.2.4. Allows authenticated remote users to compromise confidentiality via unspecified vectors related to online patchin...

4CVSS6.7AI score0.01466EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/22 12:0 a.m.2 views

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2015-06821)

Oracle MySQL Server is an open source relational database management system from Oracle. This database system is characterized by high performance, low cost, good reliability and so on. An unspecified vulnerability exists in Oracle MySQL Server 5.6.25 and earlier versions. It allows authenticated...

4CVSS7.5AI score0.02579EPSS
Exploits0References1
CNVD
CNVD
added 2015/05/28 12:0 a.m.3 views

Coppermine Photo Gallery Cross-Site Scripting Vulnerability

Coppermine Photo Gallery is a WEB-based graphics gallery management program. A cross-site scripting vulnerability exists in Coppermine Photo Gallery versions prior to 1.5.36, which allows remote, authenticated users to inject arbitrary web script or HTML via reference parameters...

3.5CVSS5.7AI score0.01548EPSS
Exploits0References1
Prion
Prion
added 2015/04/08 6:59 p.m.15 views

Design/Logic Flaw

McAfee Advanced Threat Defense MATD before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters...

5.5CVSS6.8AI score0.01007EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2015/02/21 12:0 a.m.6 views

Landsknecht Adminsystems CMS File Upload Vulnerability

Landsknecht Adminsystems CMS is a content management system. A file upload vulnerability exists in Landsknecht Adminsystems CMS, which allows remote authenticated users to execute files via the extension of the uploaded file, to execute arbitrary code/ by directly requesting access to the file...

6.5CVSS7.4AI score0.04075EPSS
Exploits1References1
CNVD
CNVD
added 2014/12/26 12:0 a.m.6 views

IBM DB2 Denial of Service Vulnerability (CNVD-2014-09221)

IBM DB2 is a large-scale commercial relational database system for e-commerce, business information, content management, customer relationship management and other applications, can run on AIX, HP-UX, Linux, Solaris, Windows and other systems. A denial-of-service vulnerability exists in IBM DB2...

4CVSS6.5AI score0.02161EPSS
Exploits0References1
CNVD
CNVD
added 2014/12/26 12:0 a.m.4 views

IBM Rational Quality Manager Cross-Site Scripting Vulnerability (CNVD-2014-09213)

IBM Rational Quality Manager is a Web-based collaboration tool that provides a sophisticated approach to test planning and test evaluation management within the software development lifecycle. A cross-site scripting vulnerability exists in IBM Rational Quality Manager versions 2.x through 2.0.1.1...

3.5CVSS5.7AI score0.00759EPSS
Exploits0References1
OSV
OSV
added 2014/12/03 6:59 p.m.2 views

DEBIAN-CVE-2014-8104

OpenVPN 2.x before 2.0.11, 2.1.x, 2.2.x before 2.2.3, and 2.3.x before 2.3.6 allows remote authenticated users to cause a denial of service server crash via a small control channel packet...

6.8CVSS6.6AI score0.03478EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/05/20 11:11 a.m.12 views

mysql: unspecified vulnerability related to RBR (CPU April 2014)

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RBR...

6.5CVSS6.5AI score0.03667EPSS
Exploits0References5
Prion
Prion
added 2014/04/23 11:52 a.m.21 views

Design/Logic Flaw

Cisco IOS Unified Border Element CUBE in Cisco IOS before 15.32T allows remote authenticated users to cause a denial of service input queue wedge via a crafted series of RTCP packets, aka Bug ID CSCuc42518...

4CVSS6.6AI score0.00992EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2007/10/04 11:17 p.m.8 views

CVE-2007-5210

Arbor Networks Peakflow SP before 3.5.1 patch 14, and 3.6.x before 3.6.1 patch 5, allows remote authenticated users to bypass access restrictions and read or write unspecified data via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third...

6CVSS6.1AI score0.00947EPSS
Exploits0References3
CVE
CVE
added 2005/05/26 4:0 a.m.81 views

CVE-2005-1522

The CVE-2005-1522 issue affects the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90. Authenticated remote users can trigger a denial of service (CPU consumption) by sending a large range value in the FETCH command. The connected advisories confirm a denial-of-service ...

5CVSS5.9AI score0.0167EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2005/05/26 4:0 a.m.32 views

CVE-2005-1522

The imap4d server for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows authenticated remote users to cause a denial of service CPU consumption via a large range value in the FETCH command...

5.9AI score0.0167EPSS
Exploits0References5
Rows per page
Query Builder