Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulns•added 2015/08/23 12:0 a.m.•57 views

Apple QuickTime multiple security vulnerabilities

Multiple memory corruptions...

7.5CVSS2.1AI score0.0324EPSS
Exploits0References1
securityvulns
securityvulns•added 2015/08/23 12:0 a.m.•33 views

Elastic Logstash insufficient certificate check

man-in-the-middle attack is possible...

4.3CVSS2.4AI score0.00306EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/23 12:0 a.m.•75 views

APPLE-SA-2015-08-20-1 QuickTime 7.7.8

APPLE-SA-2015-08-20-1 QuickTime 7.7.8 QuickTime 7.7.8 is now available and addresses the following: QuickTime Available for: Windows 7 and Windows Vista Impact: Processing a maliciously crafted file may lead to an unexpected application termination or arbitrary code execution Description: Multipl...

7.5CVSS0.1AI score0.0324EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•56 views

Apple Safari / Webkit multiple security vulnerabilities

Interface spoofing, memory corruption, restrictions bypass...

6.8CVSS2.1AI score0.01643EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•1056 views

APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006

APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006 OS X Yosemite v10.10.5 and Security Update 2015-006 is now available and addresses the following: apache Available for: OS X Mavericks v10.9.5, OS X Yosemite v10.10 to v10.10.4 Impact: Multiple vulnerabilities existed in...

9.3CVSS0.7AI score0.78359EPSS
Exploits63
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•141 views

Cisco Unified Communications Manager Multiple Vulnerabilities (VP2015-001)

Vantage Point Security Advisory 2015-001 ======================================== Title: Cisco Unified Communications Manager Multiple Vulnerabilities Vendor: Cisco Vendor URL: http://www.cisco.com/ Versions affected: 9.2, 10.5.2, 11.0.1. Severity: Low to medium Vendor notified: Yes Reported: Oct...

10CVSS1.2AI score0.9422EPSS
Exploits130
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•87 views

APPLE-SA-2015-08-13-4 OS X Server v4.1.5

APPLE-SA-2015-08-13-4 OS X Server v4.1.5 OS X Server v4.1.5 is now available and addresses the following: BIND Available for: OS X Yosemite v10.10.5 or later Impact: A remote attacker may be able to cause a denial of service Description: An assertion issue existed in the handling of TKEY packets...

7.8CVSS7.1AI score0.92752EPSS
Exploits12
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•57 views

Apple iOS multiple security vulnerabilities

Over 70 of different vulnerabilities...

9.3CVSS2.1AI score0.26217EPSS
Exploits5References1Affected Software1
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•99 views

APPLE-SA-2015-08-13-1 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 APPLE-SA-2015-08-13-1 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8 Safari 8.0.8, Safari 7.1.8, and Safari 6.2.8 is now available and addresses the following: Safari Application Available for: OS X Mountain Lion v10.8.5, OS X Mavericks v10.9.5, and O...

6.8CVSS0.01643EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•80 views

APPLE-SA-2015-08-13-3 iOS 8.4.1

APPLE-SA-2015-08-13-3 iOS 8.4.1 iOS 8.4.1 is now available and addresses the following: AppleFileConduit Available for: iPhone 4s and later, iPod touch 5th generation and later, iPad 2 and later Impact: A maliciously crafted afc command may allow access to protected parts of the filesystem...

9.3CVSS0.4AI score0.26217EPSS
Exploits5
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•1065 views

Apple Mac OS X / OS X Server multiple security vulnerabilities

Over 150 different vulnerabilities in system components and libraries...

9.3CVSS2.4AI score0.92752EPSS
Exploits75References2Affected Software2
securityvulns
securityvulns•added 2015/08/17 12:0 a.m.•23 views

Cisco Unified Communications Manager multiple security vulnerabilities

Code execution, authentication bypass, local files inclusion...

2.7AI score
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/11 12:0 a.m.•98 views

Microsoft Office multiple security vulnerabilities

Memory corruptions, code execution...

9.3CVSS2.9AI score0.72879EPSS
Exploits0Affected Software4
securityvulns
securityvulns•added 2015/08/11 12:0 a.m.•44 views

System Center Operations Manager crossite scripting

Crossite scripting in web interface...

4.3CVSS1.8AI score0.12584EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•55 views

[SECURITY] [DSA 3327-1] squid3 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3327-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 03, 2015 https://www.debian.org/security/faq -...

6.8CVSS1.4AI score0.24696EPSS
Exploits1
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•46 views

FreeBSD Security Advisory FreeBSD-SA-15:19.routed

============================================================================= FreeBSD-SA-15:19.routed Security Advisory The FreeBSD Project Topic: routed8 remote denial of service vulnerability Category: core Module: routed Announced: 2015-08-05 Credits: Hiroki Sato Affects: All supported version...

4CVSS6.9AI score0.00754EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•43 views

FreeBSD patch code execution

Commands injection is possible...

9.3CVSS2.6AI score0.04111EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•47 views

FreeBSD Security Advisory FreeBSD-SA-15:18.bsdpatch

============================================================================= FreeBSD-SA-15:18.bsdpatch Security Advisory The FreeBSD Project Topic: shell injection vulnerability in patch1 Category: contrib Module: patch Announced: 2015-08-05 Credits: Martin Natano Affects: FreeBSD 10.x. Correcte...

9.3CVSS8AI score0.04111EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•50 views

squid restrictions bypass

Restrictions bypass is possible under some configurations...

6.8CVSS2.4AI score0.24696EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2015/08/10 12:0 a.m.•31 views

FreeBSD routed DoS

Crash on RIP request from non-directly connected network...

4CVSS1.1AI score0.00754EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•49 views

expat library integer overflow

Multiple integer overflows...

6.8CVSS3.5AI score0.00521EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•46 views

ISC bind named DoS

Assert on TKEY request processing...

7.8CVSS1.9AI score0.92752EPSS
Exploits12References1Affected Software1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•37 views

[USN-2699-1] HPLIP vulnerability

========================================================================== Ubuntu Security Notice USN-2699-1 July 30, 2015 hplip vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu...

6.8CVSS0.3AI score0.00269EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•45 views

FreeBSD Security Advisory FreeBSD-SA-15:14.bsdpatch

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:14.bsdpatch Security Advisory The FreeBSD Project Topic: shell injection vulnerability in patch1 Category: contrib Module: patch Announced: 2015-07-28 Credit...

9.3CVSS8.1AI score0.00878EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•51 views

[USN-2697-1] Ghostscript vulnerability

========================================================================== Ubuntu Security Notice USN-2697-1 July 30, 2015 ghostscript vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.8CVSS0.6AI score0.00967EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•80 views

[SECURITY] [DSA 3318-1] expat security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3318-1 [email protected] https://www.debian.org/security/ Laszlo Boszormenyi GCS July 26, 2015 https://www.debian.org/security/faq -...

6.8CVSS1.4AI score0.00521EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•27 views

Cisco ASR routers DoS

Crash on fragmented packets processing...

7.8CVSS3.7AI score0.00427EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•59 views

FreeBSD Security Advisory FreeBSD-SA-15:17.bind

============================================================================= FreeBSD-SA-15:17.bind Security Advisory The FreeBSD Project Topic: BIND remote denial of service vulnerability Category: contrib Module: bind Announced: 2015-07-28 Credits: ISC Affects: FreeBSD 8.x and FreeBSD 9.x...

7.8CVSS7.8AI score0.92752EPSS
Exploits12
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•39 views

ghostscript memory corruption

Memory corruption on Postscript file parsing...

6.8CVSS2.7AI score0.00967EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•74 views

[USN-2692-1] QEMU vulnerabilities

========================================================================== Ubuntu Security Notice USN-2692-1 July 28, 2015 qemu vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

7.2CVSS1.1AI score0.01593EPSS
Exploits1
securityvulns
securityvulns•added 2015/08/03 12:0 a.m.•32 views

HPLIP restrictions bypas

Invalid GPG key retrieval from server...

6.8CVSS1.6AI score0.00269EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•90 views

[USN-2694-1] PCRE vulnerabilities

========================================================================== Ubuntu Security Notice USN-2694-1 July 29, 2015 pcre3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...

7.5CVSS1.1AI score0.0573EPSS
Exploits4
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•112 views

FreeBSD Security Advisory FreeBSD-SA-15:16.openssh [REVISED]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:16.openssh Security Advisory The FreeBSD Project Topic: OpenSSH multiple vulnerabilities Category: contrib Module: openssh Announced: 2015-07-28, revised on...

8.5CVSS6.1AI score0.78359EPSS
Exploits2
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•25 views

OpenAFS multiple security vulnerabilities

Information disclosure, DoS...

6.8CVSS1.1AI score0.00768EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•34 views

[SECURITY] [DSA 3320-1] openafs security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3320-1 [email protected] https://www.debian.org/security/ Sebastien Delafond July 30, 2015 https://www.debian.org/security/faq -...

6.8CVSS1.3AI score0.00768EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•34 views

[SECURITY] [DSA 3321-1] xmltooling security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3321-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 30, 2015 https://www.debian.org/security/faq -...

5CVSS1.6AI score0.00624EPSS
Exploits0
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•31 views

DoS против библиотеки XMLTooling

Unhandled exception on processing XML with invalid schema...

5CVSS1.8AI score0.00624EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns•added 2015/08/02 12:0 a.m.•42 views

PCRE multiple security vulnerabilities

Multiple memory corruptions on PCRE parsing...

7.5CVSS2.9AI score0.0573EPSS
Exploits4References1Affected Software1
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•45 views

XSS, Code Execution, DOS, Password Leak, Weak Authentication in GetSimpleCMS 3.3.5

Vulnerability: XSS, Code Execution, DOS, Password Leak, Weak Authentication Affected Software: GetSimpleCMS http://get-simple.info/ Affected Version: 3.3.5 probably also prior versions Patched Version: 3.3.6 partial fix Risk: Medium-High Vendor Contacted: 2015-06-14 Vendor Partial Fix: 2015-07-14...

0.4AI score
Exploits0
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•52 views

Multiple XSS Vulnerabilities in Paid Memberships Pro WordPress Plugin

Advisory ID: HTB23264 Product: Paid Memberships Pro WordPress plugin Vendor: Stranger Studios Vulnerable Versions: 1.8.4.2 and probably prior Tested Version: 1.8.4.2 Advisory Publication: July 1, 2015 without technical details Vendor Notification: July 1, 2015 Vendor Patch: July 8, 2015 Public...

4.3CVSS0.4AI score0.01286EPSS
Exploits3
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•99 views

NetCracker Resource Management 8.0 - SQL Injection Vulnerability

Vulnerability type: SQL Injection Vendor: http://www.netcracker.com/ Product: NetCracker Resource Management System Affected version: = 8.0 Patched version: 8.2 Credit: Foo Jong Meng, Chia Junyuan, Benjamin Tan CVE ID: CVE-2015-3423 PROOF OF CONCEPT SQLi SQL Injection SQLi vulnerability in multip...

1.2AI score0.00562EPSS
Exploits3
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•62 views

Hawkeye-G v3.0.1.4912 CSRF Vulnerability CVE-2015-2878

UPDATED CORRECTION + Credits: John Page hyp3rlinx + Domains: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-HAWKEYEG0724.txt Vulnerability Type: =================== CSRF CVE Reference: ============== CVE-2015-2878 Vendor: =================== www.hexiscyber.com...

6.8CVSS0.1AI score0.00333EPSS
Exploits4
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•89 views

SEC Consult SA-20150716-0 :: Permanent Cross-Site Scripting in Oracle Application Express

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SEC Consult Vulnerability Lab Security Advisory 20150716-0 ======================================================================= title: Permanent Cross-Site Scripting product: Oracle Application Express vulnerable version: All versions prior to...

5.5CVSS0.1AI score0.00185EPSS
Exploits2
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•39 views

LXC directory traversal

Directory traversal on lock files creation...

7.2CVSS3.2AI score0.00111EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•54 views

[CVE-2015-3253] Apache Groovy Zero-Day Vulnerability Disclosure

Severity: Important Vendor: The Apache Software Foundation Versions Affected: All unsupported versions ranging from 1.7.0 to 2.4.3. Impact Remote execution of untrusted code, DoS Description When an application has Groovy on classpath and that it uses standard Java serialization mechanims to...

0.9AI score0.64446EPSS
Exploits4
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•61 views

[SECURITY] [DSA 3312-1] cacti security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3312-1 [email protected] https://www.debian.org/security/ Alessandro Ghedini July 22, 2015 https://www.debian.org/security/faq -...

7.5CVSS1.5AI score0.00409EPSS
Exploits1
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•34 views

Cisco Videoscape Delivery System DoS

It's possible to reload device with HTTP request...

7.8CVSS1.1AI score0.00153EPSS
Exploits0Affected Software1
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•53 views

[CVE-2015-2862/2863 / CERT VU#919604] Kaseya VSA arbitrary file download / open redirect

tl;dr Two vulns in Kaseya Virtual System Administrator - an authenticated arbitrary file download and two lame open redirects. Full advisory text below and at 1. Thanks to CERT for helping me to disclose these vulnerabilities 2. Multiple vulnerabilities in Kaseya Virtual System Administrator...

0.2AI score0.02834EPSS
Exploits2
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•65 views

Novell GroupWise 2014 WebAccess vulnerable to XSS attacks

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-021 Product: GroupWise Vendor: Novell Affected Versions: 2014 Tested Versions: 2014 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: High Solution Status: Fixed Vendor Notification: 2015-05-04 Solution Date:...

7.1AI score
Exploits0
securityvulns
securityvulns•added 2015/07/27 12:0 a.m.•56 views

XSS vulnerability in OFBiz forms

https://issues.apache.org/jira/browse/OFBIZ-6506 In Ofbiz form need to escape characters from description column in a display-entity tag to avoid XSS attacks. display-entity entity-name="Table" description="$description" I tried to use bsh, as following: display-entity entity-name="Table"...

0.2AI score
Exploits0
Total number of security vulnerabilities47153