Lucene search
K

605 matches found

CNVD
CNVD
added 2018/01/30 12:0 a.m.2 views

IBM Tealeaf Customer Experience Hardcoded Certificate Vulnerability

IBM Tealeaf Customer Experience is a SaaS Software-as-a-Service based analytics solution for web and mobile applications from IBM, USA. The solution helps clients improve the overall user experience by analyzing and understanding data, and supports the adoption of advanced user interfaces for ric...

9.8CVSS7AI score0.01655EPSS
Exploits0References1
OSV
OSV
added 2018/01/26 9:29 p.m.4 views

CVE-2016-2983

IBM Tealeaf Customer Experience 8.7, 8.8, and 9.0.2 could allow a remote attacker under unusual circumstances to read operational data or TLS session state for any active sessions, cause denial of service, or bypass security. IBM X-Force ID: 113999...

8.1CVSS5.8AI score0.01742EPSS
Exploits0References4
CNVD
CNVD
added 2017/12/13 12:0 a.m.4 views

Mobotap Dolphin Browser for Android URI Scheme Resolution Vulnerability

Mobotap Dolphin Browser for Android is a web browser for the Android platform from MoboTap. A security vulnerability exists in version 12.0.2 of Dolphin Browser for Android. The vulnerability can be exploited to call private activities in Dolphin Browser via malicious URIs...

5.3CVSS6.8AI score0.0085EPSS
Exploits0References1
OSV
OSV
added 2017/11/16 11:29 p.m.2 views

CVE-2017-0852

A denial of service vulnerability in the Android media framework libhevc. Product: Android. Versions: 5.0.2, 5.1.1, 6.0. Android ID: A-62815506...

7.5CVSS7.3AI score0.00422EPSS
Exploits0References1
OSV
OSV
added 2017/11/16 11:29 p.m.2 views

CVE-2017-0840

An information disclosure vulnerability in the Android media framework libstagefright. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670...

7.5CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2017/09/08 8:29 p.m.4 views

CVE-2017-0763

A remote code execution vulnerability in the Android media framework libhevc. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62534693...

7.8CVSS6.3AI score0.01053EPSS
Exploits0References2
OSV
OSV
added 2017/08/09 9:29 p.m.2 views

CVE-2017-0712

A elevation of privilege vulnerability in the Android framework wi-fi service. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37207928...

7.8CVSS5.8AI score0.00356EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2017/07/26 12:0 a.m.3 views

PT-2017-12152 · Sipcrack +1 · Sipcrack +1

Name of the Vulnerable Software and Affected Versions: SIPcrack version 0.2 Description: A memory leak was discovered in the way SIPcrack handles SIP traffic processing due to mismanagement of a lines array. This issue could allow a remote attacker to potentially crash long-running sipdump networ...

7.5CVSS7.3AI score0.02549EPSS
Exploits1References11
OSV
OSV
added 2017/07/22 12:29 a.m.2 views

CVE-2017-2273

Cross-site request forgery CSRF vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors...

8.8CVSS5.8AI score0.00774EPSS
Exploits0References2
CNVD
CNVD
added 2017/07/20 12:0 a.m.4 views

BUFFALO WAPM-1166D and WAPM-APG600H Cross-Site Request Forgery Vulnerabilities

The BUFFALO WAPM-1166D and WAPM-APG600H are both wireless LAN access point devices from BUFFALO Japan. A cross-site request forgery vulnerability exists in the WMR-433 using firmware version 1.02 and earlier and the WMR-433W using firmware version 1.40 and earlier. A remote attacker could exploit...

8.8CVSS8.8AI score0.00774EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/13 12:0 a.m.3 views

Denial of Service Vulnerability in Multiple IBM Products

IBM MQ formerly known as IBM WebSphere MQ is a messaging middleware product from IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A security vulnerability exists in IBM MQ versions 9.0.1 through 9.0.2. An attacker could exploit...

6.5CVSS6.6AI score0.01667EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/11 12:0 a.m.4 views

IBM WebSphere MQ Information Disclosure Vulnerability (CNVD-2017-22589)

IBM MQ formerly known as IBM WebSphere MQ is a messaging middleware product from IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A security vulnerability exists in IBM MQ versions 9.0.1 and 9.0.2. A local attacker could exploit...

4.7CVSS4.8AI score0.00293EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/11 12:0 a.m.3 views

IBM WebSphere MQ Plaintext Credential Information Disclosure Vulnerability

IBM MQ formerly known as IBM WebSphere MQ is a messaging middleware product from IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A security vulnerability exists in IBM MQ versions 9.0.1 and 9.0.2, which originates from the...

8.1CVSS8.1AI score0.01475EPSS
Exploits0References1
OSV
OSV
added 2017/07/06 8:29 p.m.3 views

CVE-2017-0676

A remote code execution vulnerability in the Android media framework. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34896431...

7.8CVSS6.3AI score0.01096EPSS
Exploits0References2
OSV
OSV
added 2017/07/06 8:29 p.m.3 views

CVE-2017-0670

A denial of service vulnerability in the Android framework. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36104177...

5.5CVSS5.8AI score0.00342EPSS
Exploits0References2
OSV
OSV
added 2017/06/09 4:29 p.m.2 views

CVE-2017-2179

Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows remote code execution via unspecified vectors, a different vulnerability than CVE-2017-2181 and CVE-2017-2182...

8.8CVSS6.3AI score0.02325EPSS
Exploits0References1
OSV
OSV
added 2017/05/12 3:29 p.m.2 views

UBUNTU-CVE-2017-0592

A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution...

7.8CVSS7.7AI score0.01338EPSS
Exploits0References3
OSV
OSV
added 2017/05/09 8:29 p.m.1 views

CVE-2017-5527

TIBCO Spotfire Server 7.0.X before 7.0.2, 7.5.x before 7.5.1, 7.6.x before 7.6.1, 7.7.x before 7.7.1, and 7.8.x before 7.8.1 and Spotfire Analytics Platform for AWS Marketplace 7.8.0 and earlier contain multiple vulnerabilities which may allow authorized users to perform SQL injection attacks...

6.5CVSS5.8AI score0.00921EPSS
Exploits0References2
OSV
OSV
added 2017/04/24 7:59 p.m.3 views

CVE-2017-3495

Vulnerability in the Oracle FLEXCUBE Direct Banking component of Oracle Financial Services Applications subcomponent: Pre-Login. Supported versions that are affected are 12.0.2 and 12.0.3. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromis...

4.7CVSS5.8AI score0.01633EPSS
Exploits0References3
OSV
OSV
added 2017/04/07 10:59 p.m.3 views

CVE-2017-0540

A remote code execution vulnerability in libhevc in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code execution within the context of the...

7.8CVSS7.8AI score0.02312EPSS
Exploits0References5
Rows per page
Query Builder