Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.183 views

Synology DSM multiple vulnerabilities

Title: Synology DSM multiple vulnerabilities Version affected: = 4.3-3776 Vendor: Synology Discovered by: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: unpatched Synology DiskStation Manager DSM it's a Linux based operating system, use...

Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.141 views

[SOJOBO-ADV-13-01] - Zenphoto 1.4.5.2 multiple vulnerabilities

SOJOBO-ADV-13-01 - Zenphoto 1.4.5.2 multiple vulnerabilities I. Information ================== Name : Zenphoto 1.4.5.2 multiple vulnerabilities Software : Zenphoto 1.4.5.2 and possibly below. Vendor Homepage : http://www.zenphoto.org/ Vulnerability Type : SQL Injection, Reflected Cross-Site...

8.5AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.46 views

[CORE-2013-0805] Aloaha PDF Suite Buffer Overflow Vulnerability

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Aloaha PDF Suite Buffer Overflow Vulnerability 1. Advisory Information Title: Aloaha PDF Suite Buffer Overflow Vulnerability Advisory ID: CORE-2013-0805 Advisory URL:...

9.3CVSS7.5AI score0.08171EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.45 views

Microsoft Office multiple security vulnerabilities

Memory corruptions on Word and Excel documents parsing...

9.3CVSS3.5AI score0.27399EPSS
Exploits0Affected Software2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.140 views

Samsung DVR authentication bypass

Title: Samsung DVR authentication bypass Version affected: firmware version = 1.10 Vendor: Samsung - www.samsung-security.com Discovered by: Andrea Fabrizi Email: [email protected] Web: http://www.andreafabrizi.it Twitter: @andreaf83 Status: unpatched Samsung provides a wide range of DVR...

0.4AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.92 views

[ MDVSA-2013:246 ] openjpa

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:246 http://www.mandriva.com/en/support/security/ Package : openjpa Date : October 7, 2013 Affected: Business Server 1.0 Problem Description: Updated openjpa packages fix security vulnerability: The...

7.5CVSS8.8AI score0.09511EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.49 views

Microsoft Internet Explorer multiple security vulnerabilities

Multiple memory corruption...

9.3CVSS2AI score0.8593EPSS
Exploits24Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.70 views

[KIS-2013-09] Vanilla Forums <= 2.0.18.5 (class.utilitycontroller.php) PHP Object Injection Vulnerability

------------------------------------------------------------------------------------------- Vanilla Forums = 2.0.18.5 class.utilitycontroller.php PHP Object Injection Vulnerability ------------------------------------------------------------------------------------------- - Software Link:...

7.5CVSS0.3AI score0.05667EPSS
Exploits7
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.30 views

IBM Lotus iNotes XSS

Few crossite scripting vulnerabilities...

4.3CVSS1.6AI score0.01148EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.29 views

Samsung DVR security vulnerability

Authentication bypass, information leakage...

2.8AI score
Exploits0References1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.30 views

HP StoreOnce DoS

No description provided...

7.8CVSS0.4AI score0.02533EPSS
Exploits0References1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.27 views

EPS Viewer buffer overflow

Buffer overflow on .EPS files parsing...

9.3CVSS4.8AI score0.05144EPSS
Exploits2References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.37 views

xpdf / poppler ESC sequences injection

Terminal control ESC sequences injection...

2.2AI score0.02942EPSS
Exploits1References2Affected Software2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.29 views

Aloaha PDF Suite buffer overflow

Buffer overflow on PDF files parsing...

9.3CVSS4.8AI score0.08171EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.67 views

Microsoft Windows multiple security vulnerabilities

.Net code execution, comctl32.dll integer overflow...

10CVSS2.9AI score0.83018EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.27 views

HP Service Manager unauthorized access

No description provided...

10CVSS2.6AI score0.04394EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.110 views

HP Intelligent Management Center multiple security vulnerabilities

Code execution, authentication bypass, SQL injection, unauthorized access...

10CVSS2.6AI score0.62617EPSS
Exploits12References2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.50 views

[slackware-security] poppler (SSA:2013-233-03)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security poppler SSA:2013-233-03 New poppler packages are available for Slackware 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...

7.4AI score0.02942EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.78 views

ESA-2013-047: RSA® Authentication Agent for PAM Unlimited Login Attempts Vulnerability

ESA-2013-047.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-047: RSA® Authentication Agent for PAM Unlimited Login Attempts Vulnerability EMC Identifier: ESA-2013-047 CVE Identifier: CVE-2013-3271 Severity Rating: CVSS v2 Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected Products: R...

5CVSS0.4AI score0.01265EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.30 views

Cisco Secure Access Control Server authentication bypass

Authentication bypass if EAP-FAST protocol is used...

9.3CVSS3.7AI score0.05122EPSS
Exploits0Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.40 views

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc...

7.5CVSS1.6AI score0.79988EPSS
Exploits16References3Affected Software2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.33 views

Netgear ProSafe switches security vulnerabilities

Information leakage, DoS...

7.8CVSS1.8AI score0.14964EPSS
Exploits10References1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.61 views

[security bulletin] HPSBMU02915 rev.1 - HP Service Manager, Remote Unauthenticated Access and Elevation of Privilege

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03888320 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03888320 Version: 1 HPSBMU02915 rev....

10CVSS6.4AI score0.04394EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.26 views

Synology DiskStation Manager multiple security vulnerabilities

Multiple web interface vulnerabilities...

2.1AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.34 views

AST-2013-005: Remote Crash when Invalid SDP is sent in SIP Request

Asterisk Project Security Advisory - AST-2013-005 Product Asterisk Summary Remote Crash when Invalid SDP is sent in SIP Request Nature of Advisory Remote Crash Susceptibility Remote Unauthenticated Sessions Severity Major Exploits Known None Reported On July 03, 2013 Reported By Walter Doekes, OS...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.30 views

Cyber-Ark Vault user enumeration

Servers unswers are different for wrong username and password...

3.3AI score0.01113EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.32 views

libmobiledevices symbolic links vulnerability

Symbolic links vulnerability on emporary files creation...

3.3CVSS2.3AI score0.00265EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.44 views

VMWare ESX / ESXi NFC DoS

Unhandled exception on Network File Copy protocol handling...

4.3CVSS1.4AI score0.01105EPSS
Exploits1References1Affected Software2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.75 views

NEW VMSA-2013-0011 VMware ESXi and ESX address an NFC Protocol Unhandled Exception

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2013-0011 Synopsis: VMware ESXi and ESX address an NFC Protocol Unhandled Exception Issue date: 2013-08-29 Updated on: 2013-08-29...

4.3CVSS6.1AI score0.01105EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.23 views

Asterisk security vulnerabilities

Few DoS conditions on SIP parsing...

2.8AI score
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.47 views

[slackware-security] xpdf (SSA:2013-233-02)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security xpdf SSA:2013-233-02 New xpdf packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37, 14.0, and -current to fix a security issue. Here are the details from the Slackware 14.0 ChangeLog: +--------------------------+...

7.4AI score0.02942EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.47 views

Apache OpenJPA code execution

User-controlled data it stored in local executable file...

7.5CVSS1.9AI score0.09511EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.73 views

CyberArk User Enumeration - Multiple vulnerabilities

Security Advisory - CyberArk User Enumeration - Multiple vulnerabilities ======================================================================== Summary : CyberArk Vault was found prone to multiple user enumeration/harvesting vulnerabilities. Date : 1 August 2013 Affected versions : All Vault...

6.9AI score0.01113EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.34 views

[USN-1927-1] libimobiledevice vulnerability

========================================================================== Ubuntu Security Notice USN-1927-1 August 14, 2013 libimobiledevice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

3.3CVSS1.3AI score0.00265EPSS
Exploits1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.51 views

Microsoft Sharepoint security vulnerabilities

Memory corruption on Excel files parsing, crossite scripting...

9.3CVSS2.2AI score0.2964EPSS
Exploits0Affected Software2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.77 views

[USN-1922-1] Evolution Data Server vulnerability

========================================================================== Ubuntu Security Notice USN-1922-1 July 31, 2013 evolution-data-server vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...

0.0189EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.54 views

CORE-2013-0808 - EPS Viewer Buffer Overflow Vulnerability

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ EPS Viewer Buffer Overflow Vulnerability 1. Advisory Information Title: EPS Viewer Buffer Overflow Vulnerability Advisory ID: CORE-2013-0808 Advisory URL:...

9.3CVSS0.1AI score0.05144EPSS
Exploits2
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.68 views

SEC Consult SA-20131004-0 :: SQL injection vulnerability in Zabbix

SEC Consult Vulnerability Lab Security Advisory 20131004-0 ======================================================================= title: SQL injection vulnerability product: Zabbix vulnerable version: =2.0.8 fixed version: 2.0.9rc1 CVE number: CVE-2013-5743 impact: critical homepage:...

0.79988EPSS
Exploits9
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.191 views

[security bulletin] HPSBGN02929 rev.1 - HP Intelligent Management Center (iMC), HP IMC Branch Intelligent Management System Software Module (BIMS), and Comware Based Switches and Routers, Remote Code Execution, Disclosure of Informati

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03943425 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03943425 Version: 1 HPSBGN02929 rev....

10CVSS0.62617EPSS
Exploits7
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.23 views

Apple Motion integer overflow

Integer overflow on .motn files parsing...

5AI score
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.84 views

Netgear ProSafe switches: Unauthenticated startup-config disclosure and Denial of Service

BACKGROUND According to the vendor, Netgear ProSafe is a cost-effective line of smart switches for Small and Medium Businesses SMBs. The products cover an essential set of network features and easy-to-use web-based management. Power over Ethernet PoE and Stacking versions are also available. 2...

7.8CVSS0.8AI score0.14964EPSS
Exploits10
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.84 views

[security bulletin] HPSBGN02930 rev.1 - HP Intelligent Management Center(iMC) and HP IMC Service Operation Management Software Module, Remote Authentication Bypass, Disclosure of Information, Unauthorized Access, SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03943547 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03943547 Version: 1 HPSBGN02930 rev....

7.5CVSS0.7AI score0.31556EPSS
Exploits5
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.27 views

Apple Motion Integer Overflow Vulnerability

Apple Motion Integer Overflow Vulnerability =========================================== Vendor: Apple http://www.apple.com Software: Motion 5.0.7 Testcase verified on: OS X 10.8 Credit: Jean Pascal Pereira [email protected] DESCRIPTION =========== An integer overflow vulnerability has been...

0.9AI score
Exploits0
securityvulns
securityvulnsadded 2013/10/09 12:0 a.m.52 views

RSA Authentication Agent for PAM protection bypass

Login attepts are not limited...

5CVSS4AI score0.01265EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.66 views

APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-10-03-1 OS X v10.8.5 Supplemental Update OS X v10.8.5 Supplemental Update is now available and addresses the following: Directory Services Available for: OS X Mountain Lion v10.8 to v10.8.5 Impact: A local user may modify Directory...

6.6CVSS6.3AI score0.00375EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.26 views

HP FutureSmart MFP security vulnerabilities

Weak PDF encryption, information leakage...

4.3CVSS1.5AI score0.02693EPSS
Exploits0References1
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.53 views

Apple Mac OS X multiple security vulnerabilities

Different vulnerabilities in multiple sustem components...

6.8CVSS2AI score0.03302EPSS
Exploits5References2Affected Software1
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.26 views

EMC Atmos weak default installation

Default database access with no password is allowed...

5CVSS3.7AI score0.01186EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.54 views

[security bulletin] HPSBPI02892 rev.1 - Certain HP FutureSmart MFP, Weak PDF Encryption, Local Disclosure of Information

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03888014 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03888014 Version: 1 HPSBPI02892 rev....

4.3CVSS0.2AI score0.02693EPSS
Exploits0
securityvulns
securityvulnsadded 2013/10/05 12:0 a.m.52 views

ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability

ESA-2013-062.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-062: EMC Atmos Unauthenticated Database Access Vulnerability EMC Identifier: ESA-2013-062 CVE Identifier: CVE-2013-3279 Severity Rating: CVSS v2 Base Score: CVSS 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P Affected products: • All version...

5CVSS1.4AI score0.01186EPSS
Exploits0
Total number of security vulnerabilities47153