Lucene search
K

6 matches found

NVD
NVD
added 2025/11/01 7:15 p.m.5 views

CVE-2025-12603

/etc/timezone can be Arbitrarily Written.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5...

9.8CVSS0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/11/01 6:56 p.m.22 views

CVE-2025-12603

CVE-2025-12603 concerns Azure Access Technology BLU-IC2 and BLU-IC4 devices where the /etc/timezone file can be written arbitrarily. Multiple sources (NVD/CNVD/CVELIST) concur that this affects BLU-IC2 and BLU-IC4 up to version 1.19.5. PT Security specifies that the vulnerability allows arbitrary...

9.8CVSS6.6AI score0.00273EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.4 views

SUSE CVE-2009-5029

Integer overflow in the tzfileread function in glibc before 2.15 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted timezone TZ file, as demonstrated using vsftpd...

6.8CVSS7.9AI score0.08073EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2009/11/16 12:0 a.m.225 views

Ubuntu 8.10 / 9.04 / 9.10 : openjdk-6 vulnerabilities (USN-859-1)

Dan Kaminsky discovered that SSL certificates signed with MD2 could be spoofed given enough time. As a result, an attacker could potentially create a malicious trusted certificate to impersonate another site. This update handles this issue by completely disabling MD2 for certificate validation in...

10CVSS7.4AI score0.65461EPSS
Exploits13References18
Ubuntu
Ubuntu
added 2009/11/12 10:6 p.m.72 views

USN-859-1: OpenJDK vulnerabilities

Dan Kaminsky discovered that SSL certificates signed with MD2 could be spoofed given enough time. As a result, an attacker could potentially create a malicious trusted certificate to impersonate another site. This update handles this issue by completely disabling MD2 for certificate validation in...

9.3CVSS7.4AI score0.65461EPSS
Exploits13
RedHat Linux
RedHat Linux
added 2009/11/09 3:4 p.m.4 views

OpenJDK zoneinfo file existence information leak (6824265)

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo aka tz files, aka Bug Id 6824265...

5CVSS5.9AI score0.02951EPSS
Exploits5References4
Rows per page
Query Builder