Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•36 views

Adobe Shockwave Player Multiple security vulnerabilities

Buffer overflow, memory corruption, information leakage...

10CVSS3.5AI score0.12308EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•44 views

[USN-1802-1] Samba vulnerability

========================================================================== Ubuntu Security Notice USN-1802-1 April 16, 2013 samba vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

4CVSS0.3AI score0.01878EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•39 views

Cisco ASA / FWSM multiple security vulnerabilities

Multiple DoS conditions...

7.8CVSS1.9AI score0.0071EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•84 views

VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion (CVE-2013-2555)

VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion Code Execution CVE-2013-2555 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Adobe Flash Player is a cross-platform browser-based application runtime that...

10CVSS0.07061EPSS
Exploits1
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•56 views

Sitecom routers backdoor account

2 undocumented backdoor accounts...

4AI score
Exploits0References1
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•59 views

APPLE-SA-2013-04-16-1 Safari 6.0.4

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-04-16-1 Safari 6.0.4 Safari 6.0.4 is now available and addresses the following: WebKit Available for: OS X Lion v10.7.5, OS X Lion Server v10.7.5, OS X Mountain Lion v10.8.3 Impact: Visiting a maliciously crafted website may lead to an...

7.5CVSS0.3AI score0.02458EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•38 views

Cisco TelePresence DoS

DoS via malformed RTP packets...

7.1CVSS2.2AI score0.00399EPSS
Exploits0Affected Software3
securityvulns
securityvulns•added 2013/04/22 12:0 a.m.•39 views

Adobe Flash Player multiple security vulnerabilities

Multiple memory corruptions...

10CVSS1.9AI score0.10638EPSS
Exploits3References1Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•74 views

[USN-1799-1] NVIDIA graphics drivers vulnerability

========================================================================== Ubuntu Security Notice USN-1799-1 April 10, 2013 nvidia-graphics-drivers, nvidia-graphics-drivers-updates, nvidia-settings, nvidia-settings-updates vulnerability...

7.1CVSS1.4AI score0.05221EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•44 views

Firefox for Android weak permissions

Weak apptmp permissions allows to overwrite addons...

4.3CVSS2.8AI score0.003EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•85 views

[SECURITY] [DSA 2659-1] libapache-mod-security security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2659-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso April 09, 2013 http://www.debian.org/security/faq -...

7.5CVSS1.8AI score0.04848EPSS
Exploits1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•30 views

DartWebserver DoS

NULL pointer dereference...

1.9AI score0.0474EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•54 views

[CVE-REQUEST] Multiple CSRF vulnerabilities on Foscam IP cameras web UI

Embedded Web interface version 2.4.10.3 and older of Foscam FI8910W, FI8908W and many others is vulnerable to CSRF attacks. This allows attacker to perform calls to any CGI API using cached basic server authentication data stored in victims browser. Details: For example, the following URL request...

1.7AI score
Exploits0
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•25 views

Microsoft Internet Explorer DoS

Crash on recursive CSS inclusion...

2.4AI score
Exploits0References1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•51 views

Linux kernel multiple security vulnerabilities

DoS, protection bypass, nVidia drivers buffer overflow, information leakage...

7.1CVSS5.2AI score0.05221EPSS
Exploits3References3Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•29 views

Cisco Unified MeetingPlace Application Server security vulnerabilities

Authentication bypass, unauthorized access...

9.3CVSS4AI score0.01075EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•66 views

[USN-1793-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-1793-1 April 08, 2013 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.2CVSS6.1AI score0.00099EPSS
Exploits3
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•71 views

MacOSX 10.8.3 ftpd Remote Resource Exhaustion

MacOSX 10.8.3 ftpd Remote Resource Exhaustion Maksymilian Arciemowicz http://cxsecurity.com/ http://cvemap.org/ Public Date: 01.02.2013 http://cxsecurity.com/cveshow/CVE-2010-2632 http://cxsecurity.com/cveshow/CVE-2011-0418 --- 1. Description --- Old vulnerability in libc allow to denial of servi...

7.8CVSS0.7AI score0.12281EPSS
Exploits11
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•57 views

Cisco IOS multiple security vulnerabilities

RSVP DoS, IKE DoS, NAT implementation DoS, Smart Install client DoS, SPT DoS, IP SLA DoS, SIP DoS...

7.8CVSS2.2AI score0.00963EPSS
Exploits0Affected Software2
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•32 views

DoS vulnerability in Internet Explorer (access violation)

Hello 3APA3A! I want to warn you about Denial of Service vulnerabilities in Internet Explorer. This is access violation. I've made the exploit and tested this vulnerability at 13.02.2013. This exploit is based on video by TheSecuritylab for IE7. As I've tested, it also works in IE6 and IE8...

1.5AI score
Exploits0
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•197 views

CVE-2013-0798 : World read and write access to app_tmp directory on Android

Fourteenforty Research Institute, Inc. Security Advisory World read and write access to apptmp directory on Firefox for Android 2013/04/02 === Summary === World read and write access to apptmp directory on Firefox for Android allows replacing Firefox add-ons. === Severity === Middle === Affected...

4.3CVSS8.3AI score0.003EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•49 views

[CVE-2012-5389] Null Pointer Derefence in Dart Webserver <= 1.9.2

Overview =============== DartWebserver.Dll is an HTTP server provided by Dart Comunications dart.com. It is distributed in their PowerTCP/Webserver For ActiveX product and likely other similar products. "Build web applications in any familiar software development environment. Use WebServer for...

0.0474EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•25 views

Cisco Prime Network Control Systems default account

Default database account...

7.5CVSS3.2AI score0.0046EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•55 views

libc glob() resources exhaustion

It's possible to build recursive template, leading to memory exhaustion...

7.8CVSS2.8AI score0.12281EPSS
Exploits11References5Affected Software3
securityvulns
securityvulns•added 2013/04/15 12:0 a.m.•55 views

Apache mod_security security vulnerabilities

Local files access, resources exhausiton...

7.5CVSS2.3AI score0.04848EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2013/04/12 12:0 a.m.•28 views

Microsoft SharePoint weak permissions

Weak documents access rights...

3.5CVSS1.7AI score0.13302EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/12 12:0 a.m.•39 views

Microsoft Windows multiple security vulnerabilities

Multiple privilege escalations in kernel, CSRSS and drivers...

7.2CVSS4.3AI score0.17215EPSS
Exploits6Affected Software1
securityvulns
securityvulns•added 2013/04/12 12:0 a.m.•32 views

Microsoft multiple applications crossite scripting

Invalid characters sanitization...

4.3CVSS2.3AI score0.44955EPSS
Exploits0Affected Software5
securityvulns
securityvulns•added 2013/04/12 12:0 a.m.•38 views

Microsoft Remote Desktop Connection Client ActiveX code execution

Use-after-free in ActiveX...

9.3CVSS3.5AI score0.53982EPSS
Exploits1Affected Software1
securityvulns
securityvulns•added 2013/04/12 12:0 a.m.•34 views

Microsoft Active Directory DoS

Memory exhaustion...

5CVSS2.6AI score0.45222EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•43 views

HP LoadRunner security vulnerabilities

Few different buffer overflows...

10CVSS2.2AI score0.77481EPSS
Exploits8References1Affected Software1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•18 views

Multiple vulnerabilities in D-Link devices

Code execution, information leakage...

3.2AI score
Exploits0References1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•37 views

Subversion multiple security vulnerabilities

Multiple DoS conditions...

5CVSS2.6AI score0.31605EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•28 views

libgssapi / libgssglue privilege escalation

Insecure getenv usage...

6.2CVSS3AI score0.00118EPSS
Exploits0References1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•34 views

[ MDVSA-2013:043 ] libgssglue

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:043 http://www.mandriva.com/en/support/security/ Package : libgssglue Date : April 5, 2013 Affected: Business Server 1.0 Problem Description: This update fixes insecure getenv usage in libgssglue, which coul...

6.2CVSS6.1AI score0.00118EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•187 views

[security bulletin] HPSBMU02785 SSRT100526 rev.2 - HP LoadRunner Running on Windows, Remote Execution of Arbitrary Code, Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03216705 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03216705 Version: 2 HPSBMU02785...

10CVSS0.9AI score0.77481EPSS
Exploits8
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•52 views

[slackware-security] subversion (SSA:2013-095-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security subversion SSA:2013-095-01 New subversion packages are available for Slackware 13.0, 13.1, 13.37, 14.0, and -current to fix security issues. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...

5CVSS8.4AI score0.31605EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•48 views

Aastra IP phones backdoor

Hardcoded telnet account admin/Mqozn...

2.1AI score
Exploits0References1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•55 views

Multiple Vulnerabilities in D-Link devices

Device Name: DIR-600 / DIR-300 revB / DIR-815 / DIR-645 / DIR-412 / DIR-456 / DIR-110 Vendor: D-Link ============ Vulnerable Firmware Releases: ============ DIR-815 v1.03b02 unauthenticated command injection DIR-645 v1.02 unauthenticated command injection DIR-645 v1.03 authenticated command...

0.6AI score
Exploits0
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•40 views

MIT Kerberos 5 DoS

pkinitcryptoopenssl.c NULL pointer dereference...

7.1CVSS2.5AI score0.01588EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2013/04/09 12:0 a.m.•67 views

Aastra IP Telephone hardcoded telnet admin password

Aastra IP Telephone hardcoded telnet admin password --------------------------------------------------- Affected products ================= Aastra 6753i IP Telephone Firmware Version 3.2.2.56 Firmware Release Code SIP Boot Version 2.5.2.1010 Background ========== "The 6753i from Aastra offers...

Exploits0
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•36 views

Groovy Media Player buffer overflow Vulnerability

Title: ==== Groovy Media Player 3.2.0 Buffer Overflow Vulnerability Credit: ====== Name: Akshaysinh Vaghela Company/affiliation: Cyberoam Technologies Private Limited Website: www.cyberoam.com CVE: ===== CVE-2013-2760 Reserved Date: ==== 21-03-2013 CL-ID: ==== CRD-2013-02 Vendor: ======...

6.8CVSS0.6AI score0.24215EPSS
Exploits5
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•34 views

GNOME Online Accounts SSL certificate spoofing

Insufficient certificate check...

4.3CVSS2.4AI score0.00556EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•166 views

Authentication bypass on Netgear WNR1000

Authentication bypass on Netgear WNR1000 ======================================== ADVISORY INFORMATION Title: Authentication bypass on Netgear WNR1000 Discovery date: 10/11/2012 Release date: 29/03/2013 Credits: Roberto Paleari [email protected], twitter: @rpaleari VULNERABILITY INFORMATION...

0.6AI score
Exploits0
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•77 views

[USN-1790-1] Libav vulnerabilities

========================================================================== Ubuntu Security Notice USN-1790-1 April 04, 2013 libav vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.9AI score0.00623EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•105 views

[security bulletin] HPSBPV02855 SSRT100512 rev.1 - HP ProCurve 1700-8(J9079A) and 1700-24(J9080A) Switches, Cross Site Request Forgery (CSRF)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20566.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03699981 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03699981 Version: 1 HPSBPV02855...

6.8CVSS0.1AI score0.00132EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•25 views

Netgear WNR1000 authentication bypass

It's possible to bypass authentication by adding ?.jpg to filenames...

2.6AI score
Exploits0References1
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•71 views

PostgreSQL multiple security vulnerabilities

DoS, weak PRNG, privilege escalation...

8.5CVSS2.3AI score0.81124EPSS
Exploits4References1Affected Software1
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•107 views

[USN-1779-1] GNOME Online Accounts vulnerability

========================================================================== Ubuntu Security Notice USN-1779-1 March 25, 2013 gnome-online-accounts vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

4.3CVSS0.4AI score0.00556EPSS
Exploits0
securityvulns
securityvulns•added 2013/04/08 12:0 a.m.•52 views

Google Active Directory Sync Tool weak encryption

It's possible to decypher stored credentials...

2.1AI score
Exploits0References1Affected Software1
Total number of security vulnerabilities47153