Lucene search
K

8185 matches found

Tenable Nessus
Tenable Nessus
added 2015/03/18 12:0 a.m.34 views

Mac OS X : Apple Safari < 6.2.4 / 7.1.4 / 8.0.4 Multiple Vulnerabilities

The version of Apple Safari installed on the remote Mac OS X host is prior to 6.2.4 / 7.1.4 / 8.0.4. It is, therefore, affected by multiple memory corruption vulnerabilities in WebKit due to improperly validated user-supplied input. A remote attacker, using a specially crafted website, can exploi...

6.8CVSS8.1AI score0.03016EPSS
Exploits0References19
Kaspersky
Kaspersky
added 2015/03/10 12:0 a.m.77 views

KLA10591 Code injection in Microsoft Exchange Server

Multiple XSS vulnerabilities were found in Microsoft Exchange Server. By exploiting these vulnerabilities malicious users can inject arbitrary web script or spoof user interface. These vulnerabilities can be exploited remotely via a specially designed URL, msgParam or other unknown vectors...

5CVSS6.1AI score0.11786EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2015/03/08 12:0 a.m.24 views

Untangle NGFW 9 / 10 / 11 XSS / Code Execution

Multiple issues have been discovered in the Untangle NGFW virtual appliance. The vendor was unresponsive and uncooperative to the researcher. - Persistent XSS leading to root Authentication requiredConfirmed in versions 9 and 11 up to rev r39357 Throughout the Untangle user interface there are...

0.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2015/03/05 9:50 a.m.2 views

jquery-ui: XSS vulnerability in jQuery.ui.dialog title option

Cross-site scripting XSS vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option...

6.1CVSS7.5AI score0.18351EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/03/05 12:0 a.m.29 views

RHEL 7 : GNOME Shell (RHSA-2015:0535)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:0535 advisory. GNOME Shell and the packages it depends upon provide the core user interface of the Red Hat Enterprise Linux desktop, including functions such as...

7.2CVSS5.7AI score0.00473EPSS
Exploits0References17
Kaspersky
Kaspersky
added 2015/02/23 12:0 a.m.26 views

KLA10484 Interface spoofing vulnerability in McAfee Agent

An unspecified vulnerability was found in McAfee Agent. By exploiting this vulnerability malicious users conduct clicjacking attack. This vulnerability can be exploited remotely via a specially designed web page. Original advisories McAfee bulletin Related products McAfee-Agent CVE list...

4.3CVSS6.4AI score0.0146EPSS
Exploits0References3
CNVD
CNVD
added 2015/01/26 12:0 a.m.3 views

Google Chrome UI Out-of-Bounds Read Vulnerability

Google Chrome is a simple and efficiently designed web browsing tool developed by Google. An out-of-bounds read vulnerability exists in Google Chrome UI, which can be exploited by attackers to construct a malicious web page and trick users into parsing it, which can crash the application...

5CVSS6.6AI score0.01605EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/22 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Siebel UI Framework Component (CNVD-2015-00687)

Oracle Siebel is a customer relationship management software. A security vulnerability exists in the Portal Framework subcomponent of the Oracle Siebel UI Framework component, which allows remote attackers to exploit the vulnerability to compromise system confidentiality...

4CVSS6.8AI score0.01137EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/22 12:0 a.m.5 views

Unspecified Vulnerability in Oracle Enterprise Manager Ops Center User Interface Framework Subpart

Oracle Enterprise Manager is an enhanced management suite for ORACLE Fusion endpoint software. A security vulnerability in the Oracle Enterprise Manager Ops Center User Interface Framework child allows remote attackers to exploit the vulnerability to compromise system integrity...

4.3CVSS6.9AI score0.00996EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/22 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Siebel UI Framework Component (CNVD-2015-00683)

Oracle Siebel is a customer relationship management software. A security vulnerability exists in the Portal Framework subcomponent of the Oracle Siebel UI Framework component, which allows remote attackers to exploit the vulnerability to compromise system confidentiality...

4.3CVSS6.8AI score0.01522EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/22 12:0 a.m.4 views

Unspecified Vulnerability in Oracle Siebel UI Framework Component (CNVD-2015-00685)

Oracle Siebel is a customer relationship management software. A security vulnerability in the Oracle Siebel UI Framework component, AX/HI Web UI child, allows remote attackers to exploit the vulnerability to compromise system integrity...

4.3CVSS6.8AI score0.01222EPSS
Exploits0References1
Kitploit
Kitploit
added 2015/01/21 8:0 p.m.20 views

Grinder - System to Automate the Fuzzing of Web Browsers

Grinder is a system to automate the fuzzing of web browsers and the management of a large number of crashes. Grinder Nodes provide an automated way to fuzz a browser, and generate useful crash information such as call stacks with symbol information as well as logging information which can be used...

7.4AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2015/01/21 6:59 p.m.3 views

CVE-2015-0388

Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal Framework, a different vulnerability than CVE-2015-0417...

4CVSS5.5AI score0.01137EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2015/01/21 6:59 p.m.2 views

CVE-2015-0369

Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect integrity via unknown vectors related to AX/HI Web UI...

4.3CVSS5.5AI score0.01222EPSS
Exploits0References5
NVD
NVD
added 2015/01/21 3:28 p.m.22 views

CVE-2014-6573

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 11.1.3 and 12.1.4 allows remote attackers to affect integrity via unknown vectors related to User Interface Framework...

4.3CVSS5.8AI score0.00996EPSS
Exploits0References1
Prion
Prion
added 2015/01/21 3:28 p.m.18 views

Code injection

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 11.1.3 and 12.1.4 allows remote attackers to affect integrity via unknown vectors related to User Interface Framework...

4.3CVSS6.3AI score0.00996EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/01/21 3:0 p.m.25 views

CVE-2014-6573

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 11.1.3 and 12.1.4 allows remote attackers to affect integrity via unknown vectors related to User Interface Framework...

5.8AI score0.00996EPSS
Exploits0References1
CVE
CVE
added 2015/01/21 3:0 p.m.49 views

CVE-2014-6573

CVE-2014-6573 affects Oracle Enterprise Manager Grid Control’s Ops Center UI Framework in version 11.1.3 and 12.1.4. The vulnerability is described as an unspecified issue in the User Interface Framework that could allow remote attackers to impact integrity via unknown vectors. The NVD entry list...

4.3CVSS6AI score0.00996EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2015/01/21 12:0 a.m.3 views

Oracle Transportation Management Remote Vulnerability (CNVD-2015-00482)

Oracle Transportation Manager is a transportation management system developed by Oracle Corporation. A remote vulnerability in Oracle Transportation Management allows attackers to exploit the 'HTTP' protocol to compromise the 'UI Infrastructure' subcomponent...

4.3CVSS6.8AI score0.01222EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/19 12:0 a.m.3 views

Multiple Command Execution Vulnerabilities in AlienVault OSSIM and USM

AlienVault OSSIM or Open Source Security Information Management is a popular open source security management system. AlienVault OSSIM and USM web UI allows users to automate the deployment of OSSEC agents to windows hosts, Failure to filter correctly when providing usernames and passwords can...

7.2AI score
Exploits0References1
Rows per page
Query Builder