Lucene search
K

2886 matches found

Prion
Prion
added 2014/07/24 2:55 p.m.17 views

Design/Logic Flaw

The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433...

6CVSS6.9AI score0.01344EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2014/07/24 2:0 p.m.32 views

CVE-2014-4684

The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433...

6.4AI score0.01344EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/24 12:0 a.m.15 views

方维团购4.3版本注射又一枚

简要描述: ..... 详细说明: ..... 漏洞证明: http://t1.fanwe.net:93/t1/index.php?m=Goods&a=showcate&id=46 Target: http://t1.fanwe.net:93/t1/index.php?m=Goods&a=showcate&id=46 Host IP: 112.124.32.200 Web Server: IIS Powered-by: WAF/2.0 Powered-by: WAF/2.0 DB Server: MySQL =5 Resp. Timeavg: 487 ms Compile OS: Win...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2014/07/22 12:0 a.m.29 views

Debian Security Advisory DSA 2985-1 (mysql-5.5 - security update)

Several issues have been discovered in the MySQL database server. The vulnerabilities are addressed by upgrading MySQL to the new upstream version 5.5.38. Please see the MySQL 5.5 Release Notes and Oracle's Critical Patch Update advisory for further details:...

6.5CVSS0.4AI score0.03911EPSS
Exploits0References1
OSV
OSV
added 2014/07/18 1:49 p.m.9 views

SUSE-SU-2015:0498-2 Security update for oracle-update

This critical patch update contains 5 security fixes for the Oracle Database Server. One of the vulnerabilities could have been exploited over the network without a valid username and password. Security Issues: CVE-2013-3751 CVE-2013-3774 CVE-2014-4236 CVE-2014-4237 CVE-2014-4245...

9CVSS6.6AI score0.03672EPSS
Exploits1References14
OSV
OSV
added 2014/07/18 9:38 a.m.8 views

SUSE-SU-2015:0498-1 Security update for oracle-update

This critical patch update contains 5 security fixes for the Oracle Database Server. One of the vulnerabilities could have been exploited over the network without a valid username and password. Security Issues: CVE-2013-3751 CVE-2013-3774 CVE-2014-4236 CVE-2014-4237 CVE-2014-4245...

10CVSS6.8AI score0.31437EPSS
Exploits6References48
NVD
NVD
added 2014/07/17 11:17 a.m.25 views

CVE-2014-4236

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

6.5CVSS5.5AI score0.0245EPSS
Exploits0References9
NVD
NVD
added 2014/07/17 11:17 a.m.28 views

CVE-2014-4237

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors...

4CVSS5.4AI score0.02527EPSS
Exploits1References9
Prion
Prion
added 2014/07/17 11:17 a.m.26 views

Design/Logic Flaw

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors...

4CVSS5.7AI score0.02527EPSS
Exploits1References9Affected Software1
Prion
Prion
added 2014/07/17 11:17 a.m.14 views

Design/Logic Flaw

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors...

3.5CVSS5.7AI score0.01945EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2014/07/17 10:0 a.m.31 views

CVE-2014-4237

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors...

5.4AI score0.02527EPSS
Exploits1References9
Cvelist
Cvelist
added 2014/07/17 10:0 a.m.30 views

CVE-2014-4236

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

5.5AI score0.0245EPSS
Exploits0References9
Cvelist
Cvelist
added 2014/07/17 10:0 a.m.33 views

CVE-2014-4245

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors...

5.4AI score0.01945EPSS
Exploits0References10
CVE
CVE
added 2014/07/17 10:0 a.m.74 views

CVE-2014-4236

CVE-2014-4236 affects Oracle Database Server 11.2.0.4 and 12.1.0.1, with an unspecified vulnerability in the RDBMS Core component. The impact is partial confidentiality, partial integrity, and partial availability. Exploitation requires remote authenticated access, and the vectors are not detaile...

6.5CVSS5.6AI score0.0245EPSS
Exploits0References9Affected Software1
ThreatPost
ThreatPost
added 2014/07/14 12:45 p.m.17 views

Oracle July 2014 Critical Patch Update

Never one to skimp on patches, Oracle is expected to release 113 of them tomorrow as part of its quarterly Critical Patch Update. The company also clarified that Java 7 versions will continue to work on the end-of-life Microsoft Windows XP platform and Oracle security updates for Java on XP...

2.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2014/07/04 12:0 a.m.28 views

RedHat Update for mariadb RHSA-2014:0702-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.5AI score0.04923EPSS
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

EnterpriseDB Advanced Server 8.2 Uninitialized Pointer Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25481/info EnterpriseDB Advanced Server is prone to an uninitialized-pointer vulnerability. Authenticated attackers can exploit this issue to cause denial-of-service conditions. Given the nature of this vulnerability,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Firebird 1.0 - Remote Pre-Authentication Database Name Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10446/info Firebird is reported prone to a remote buffer-overrun vulnerability. The issue occurs because the application fails to perform sufficient boundary checks when the database server is handling database names. A...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.39 views

Oracle Database Server 9.0.x Oracle Binary Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8844/info Oracle Database Server 'oracle' binary has been reported prone to a local buffer overflow vulnerability. The issue likely presents itself due to a lack of sufficient boundary checks performed on command line...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Oracle Database Server 8.1.7/9.0.x ctxsys.driload Access Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11099/info Oracle Database Server is prone to an access validation vulnerability that may permit unprivileged users to execute commands as the DBA. This could compromise the database. SQL exec ctxsys.driload.validatestmt...

7.1AI score
Exploits0
Rows per page
Query Builder