CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5250 matches found

0day.today•added 2015/03/11 12:0 a.m.•56 views

Microsoft Internet Explorer CImgElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

9.3CVSS2.2AI score0.15525EPSS

Exploits1

Zero Day Initiative•added 2015/03/10 12:0 a.m.•47 views

Microsoft Internet Explorer CImgElement Use-After-Free Remote Code Execution Vulnerability

6.8CVSS7.6AI score0.15525EPSS

Exploits1References1

Zero Day Initiative•added 2015/03/10 12:0 a.m.•37 views

Microsoft Internet Explorer CGeneratedContent::UnWrapContent Out-Of-Bound Write Remote Code Execution Vulnerability

6.8CVSS6.3AI score0.15525EPSS

Exploits0References1

Zero Day Initiative•added 2015/03/10 12:0 a.m.•34 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

6.8CVSS6.5AI score0.22485EPSS

Exploits1References1

Debian CVE•added 2015/02/12 4:0 p.m.•22 views

CVE-2015-0227

Apache WSS4J before 1.6.17 and 2.x before 2.0.2 allows remote attackers to bypass the requireSignedEncryptedDataElements configuration via a vectors related to "wrapping attacks."...

5CVSS6.4AI score0.07543EPSS

Exploits0

Zero Day Initiative•added 2015/02/10 12:0 a.m.•35 views

Microsoft Internet Explorer CIFrameElement Use-After-Free Remote Code Execution Vulnerability

5.1CVSS6.5AI score0.16009EPSS

Exploits0References1

Zero Day Initiative•added 2015/02/10 12:0 a.m.•28 views

Microsoft Internet Explorer CTableLayout Out-of-Bounds Memory Access Remote Code Execution Vulnerability

6.8CVSS6.3AI score0.15525EPSS

Exploits0References1

Zero Day Initiative•added 2015/02/10 12:0 a.m.•33 views

Microsoft Internet Explorer CIFrameElement Use-After-Free Remote Code Execution Vulnerability

5.1CVSS6.5AI score0.16009EPSS

Exploits0References1

Prion•added 2015/02/07 7:59 p.m.•18 views

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy and inject arbitrary web script or HTML via vectors involving an IFRAME element that triggers a redirect, a second IFRAME element that does not trigger a...

4.3CVSS5.4AI score0.71698EPSS

Exploits5References12Affected Software1

NVD•added 2015/02/03 10:59 p.m.•23 views

CVE-2015-0599

The web interface in Cisco Integrated Management Controller in Cisco Unified Computing System UCS on C-Series Rack Servers does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web...

4.3CVSS6.4AI score0.01476EPSS

Exploits0References5

NVD•added 2015/01/30 11:59 a.m.•28 views

CVE-2014-4467

WebKit, as used in Apple iOS before 8.1.3, does not properly determine scrollbar boundaries during the rendering of FRAME elements, which allows remote attackers to spoof the UI via a crafted web site...

4.3CVSS5.7AI score0.01148EPSS

Exploits0References2

UbuntuCve•added 2015/01/30 11:59 a.m.•32 views

CVE-2014-4467

4.3CVSS5.9AI score0.01148EPSS

Exploits0References1

Prion•added 2015/01/30 11:59 a.m.•22 views

Code injection

4.3CVSS6.2AI score0.01148EPSS

Exploits0References2Affected Software1

RedHat Linux•added 2015/01/27 6:46 p.m.•3 views

chromium-browser: use-after-free in DOM

Use-after-free vulnerability in the Element::detach function in core/dom/Element.cpp in the DOM implementation in Blink, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving pending updat...

7.5CVSS7.5AI score0.01605EPSS

Exploits0References5

Prion•added 2015/01/22 10:59 p.m.•38 views

Design/Logic Flaw

7.5CVSS7.6AI score0.01605EPSS

Exploits0References12Affected Software1

Debian CVE•added 2015/01/22 10:0 p.m.•26 views

CVE-2014-7932

Removed by vendor...

7.5CVSS9.4AI score0.01605EPSS

Exploits0

OSV•added 2015/01/22 12:0 a.m.•8 views

UBUNTU-CVE-2014-7932

7.5CVSS7.4AI score0.01605EPSS

Exploits0References6

Kitploit•added 2015/01/20 2:1 p.m.•71 views

ProGuard - Java class file Shrinker, Optimizer, Obfuscator and Preverifier

ProGuard is a free Java class file shrinker, optimizer, obfuscator, and preverifier. It detects and removes unused classes, fields, methods, and attributes. It optimizes bytecode and removes unused instructions. It renames the remaining classes, fields, and methods using short meaningless names...

7.2AI score

Exploits0

myhack58•added 2014/12/27 12:0 a.m.•13 views

IE vulnerability commissioning of CVE-2 0 1 3-3 8 9 3-vulnerability warning-the black bar safety net

Introduction Windows platform vulnerability discovery, and security research, IE is always not open around the topic. IE vulnerabilities just like the adobe series like Classic, is learning to exploit, the shellcode and the perfect way. On the IE vulnerability, the UAF IE Use-After-Free is the mo...

7.3AI score

Exploits0

0day.today•added 2014/12/10 12:0 a.m.•55 views

Microsoft Internet Explorer Insert Command Use-After-Free Remote Code Execution Vulnerability

9.3CVSS6.6AI score0.13118EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by