Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2020/05/27 12:0 a.m.•43 views

Trend Micro InterScan Web Security Virtual Appliance Apache Solr Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Trend Micro InterScan Web Security Virtual Appliance. The specific flaw exists within the Apache Solr application. The issue results from the lack of proper implementation of authentication. An attack...

9.8CVSS3.9AI score0.7274EPSS
Exploits7References1
Zero Day Initiative
Zero Day Initiative
•added 2019/07/22 12:0 a.m.•43 views

(Pwn2Own) Oracle VirtualBox vusbUrbSubmitCtrl Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

8.8CVSS3.3AI score0.00466EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/07/22 12:0 a.m.•43 views

Oracle WebLogic DeploymentService Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Oracle WebLogic. Authentication is required to exploit this vulnerability. The specific flaw exists within the DeploymentService, which listens on TCP port 7001 by default. When parsing the...

8.8CVSS4.7AI score0.01259EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/07/02 12:0 a.m.•43 views

Advantech WebAccess Node webvrpcs viewsrv Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Advantech WebAccess Node. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x2723 IOCTL in the webvrpcs process. The issue resul...

9.8CVSS2AI score0.05654EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/07/02 12:0 a.m.•43 views

Advantech WebAccess Node viewsrv SQLSetParam Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Advantech WebAccess Node. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x27E9 IOCTL in the webvrpcs process. The issue resul...

9.8CVSS2.1AI score0.10665EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/04/15 12:0 a.m.•43 views

Adobe Acrobat Pro DC JOBOPTIONS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS1.8AI score0.12098EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/03/12 12:0 a.m.•43 views

Microsoft Windows Deployment Services TFTP Server Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within WDSTFTP during TFTP read requests. The issue results from the lack of validating the...

9.8CVSS2.5AI score0.34209EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2019/02/12 12:0 a.m.•44 views

Adobe Acrobat Pro DC Font Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

7.8CVSS4.6AI score0.04506EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/12/13 12:0 a.m.•43 views

Microsoft Windows JScript Array concat Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows JScript. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS4.2AI score0.09906EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/10/24 12:0 a.m.•43 views

Advantech WebAccess Node drawsrv Arbitrary File Deletion Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Advantech WebAccess Node. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x2715 IOCTL in the webvrpcs process. The issue...

7.1CVSS1.5AI score0.022EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/09/14 12:0 a.m.•43 views

Microsoft Windows Excel Database Driver Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the msexcl40.d...

6.8CVSS3.7AI score0.22757EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/09/06 12:0 a.m.•43 views

(0Day) Cisco WebEx Network Recording Player Improper Access Control Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Cisco WebEx Network Recording Player. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists in t...

6.9CVSS5.3AI score0.0107EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2018/08/14 12:0 a.m.•43 views

Crestron Multiple Products CTP Console FGETFILE Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FGETFILE command of the CTP console. The issue results from the...

9.3CVSS2.7AI score0.07577EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/06/06 12:0 a.m.•43 views

GE MDS PulseNET CommandLineService Deserialization Of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE MDS PulseNET. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the CommandLineService web service. The issue results from the lack ...

7.5CVSS4.2AI score0.05058EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/05/04 12:0 a.m.•43 views

Foxit Reader U3D Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

4.3CVSS2.3AI score0.02536EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/05/04 12:0 a.m.•43 views

Wecon LeviStudioU DataLogTool Edit Stack-based Buffer Overflow Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Wecon LeviStudioU. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within DataLogTool.exe. Duri...

4.6CVSS3.7AI score0.00732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/03/19 12:0 a.m.•43 views

Microsoft Windows Remote Assistance XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.3CVSS3AI score0.21899EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
•added 2018/02/07 12:0 a.m.•43 views

(Pwn2Own) Apple Safari DFG JIT Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

6.8CVSS1.9AI score0.02689EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2018/01/10 12:0 a.m.•43 views

Trend Micro Control Manager TopSensitiveFilesDetected SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

6CVSS9.1AI score0.20222EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2018/01/05 12:0 a.m.•43 views

Advantech WebAccess webvrpcs drawsrv SQLSetConnectOption Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x27de IOCTL in the webvrpcs process. The issue results...

6.8CVSS8AI score0.02079EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/12/18 12:0 a.m.•43 views

(0Day) Linksys WVBR0 User-Agent Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Linksys WVBR0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management portal. The issue lies in the lack of proper validation of user data...

10CVSS3.4AI score0.87929EPSS
Exploits9
Zero Day Initiative
Zero Day Initiative
•added 2017/12/15 12:0 a.m.•43 views

Quest NetVault Backup Server Process Manager Service NVBUPhaseStatus Count Method SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUPhaseStatus Count method requests. The issue results from th...

7.5CVSS1.1AI score0.03933EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2017/12/13 12:0 a.m.•43 views

NetGain Systems Enterprise Manager MainFilter doFilter Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on vulnerable installations of NetGain Systems Enterprise MainFilter. User interaction is required to exploit this vulnerability. The specific flaw exists within the MainFilter servlet. The issue results from the lack of proper...

7.8CVSS1.7AI score0.03333EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2017/11/14 12:0 a.m.•43 views

Foxit Reader XFA Layout w Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the w method of XFA...

6.8CVSS8.7AI score0.0259EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/09/26 12:0 a.m.•43 views

Dell EMC VNX Monitoring and Reporting RMI Registry Deserialization of Untrusted Data Denial of Service Vulnerability

This vulnerability allows remote attackers to create a denial of service on vulnerable installations of Dell EMC VNX Monitoring and Reporting. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within ...

6.8CVSS7.1AI score0.01922EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/09/15 12:0 a.m.•43 views

Trend Micro Mobile Security for Enterprise search_device_invitations user_name SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Mobile Security for Enterprise. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of the searchdeviceinvitations action. When...

9CVSS4.8AI score0.50166EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/09/12 12:0 a.m.•43 views

Microsoft Office Word WordPerfect Document Converter Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.9AI score0.17224EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/10 12:0 a.m.•43 views

Fuji Electric Monitouch V-SFT Insecure Configuration Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate their privileges on vulnerable installations of Fuji Electric Monitouch V-SFT. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists withi...

4.4CVSS6.3AI score0.00447EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/08 12:0 a.m.•43 views

Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS5.8AI score0.27071EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/07/11 12:0 a.m.•43 views

(Pwn2Own) Microsoft Windows fnHKINLPRECT Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull.s...

7.2CVSS8.1AI score0.00975EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/07/10 12:0 a.m.•43 views

(Pwn2Own) Google Chrome Array indexOf Out-Of-Bounds Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Chrome. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of th...

6.8CVSS2.5AI score0.02557EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/06/13 12:0 a.m.•43 views

Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

2.6CVSS3.6AI score0.02973EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2017/05/15 12:0 a.m.•43 views

Apple Safari RenderLayer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS1.9AI score0.0157EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/19 12:0 a.m.•43 views

Oracle Fusion Middleware MapViewer FileUploaderServlet fileName Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Fusion Middleware MapViewer. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FileUploaderServlet servlet. When parsing the fileName paramete...

7.5CVSS4.9AI score0.02005EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/19 12:0 a.m.•43 views

ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

6.2CVSS2.3AI score0.00369EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/11 12:0 a.m.•43 views

Microsoft Windows Font Object Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing o...

7.2CVSS4.5AI score0.02106EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/11 12:0 a.m.•43 views

Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.3CVSS2.7AI score0.04184EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/11 12:0 a.m.•43 views

Adobe Reader DC Collab shareFile Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS3.2AI score0.04107EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/30 12:0 a.m.•43 views

(Pwn2Own) VMware Workstation SVGA Uninitialized Memory Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

6.9CVSS4.6AI score0.0041EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/28 12:0 a.m.•43 views

Apple macOS ImageIO JPEG Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of JPEG...

6.8CVSS5.4AI score0.02159EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/02/07 12:0 a.m.•43 views

Ecava IntegraXor getdata param SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ecava IntegraXor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the param parameter in getdata requests. The issue lies in the failur...

7.5CVSS2.1AI score0.01645EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/12 12:0 a.m.•43 views

Advantech WebAccess updateTemplate SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Advantech WebAccess. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within updateTemplate.aspx. The vulnerability is caused b...

6.5CVSS1.5AI score0.04398EPSS
Exploits3References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•43 views

Adobe Reader DC XFA Layout Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA subform...

6.8CVSS2.8AI score0.04217EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•43 views

Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS4.6AI score0.03216EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/08 12:0 a.m.•43 views

Microsoft Windows win32k.sys Bitmap Null Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.2CVSS3.4AI score0.03019EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/04 12:0 a.m.•43 views

Adobe Reader DC XObject stream Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

6.8CVSS2.9AI score0.08706EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/08/09 12:0 a.m.•43 views

Microsoft Windows xxxInsertMenuItem Out-Of-Bounds Access Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.9CVSS3.2AI score0.06418EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/29 12:0 a.m.•43 views

Foxit Reader ConvertToPDF GIF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the ConvertToPDF...

6.8CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/16 12:0 a.m.•43 views

Microsoft Internet Explorer PerformDoDragDrop Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

6.9CVSS2.3AI score0.31828EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/03 12:0 a.m.•43 views

Hewlett Packard Enterprise LoadRunner Virtual Table Server import_csv Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Hewlett Packard Enterprise LoadRunner. Authentication is not required to exploit this vulnerability. The specific flaw exists within the importcsv functionality. The issue lies in the failure to...

8.5CVSS2.7AI score0.08566EPSS
Exploits0References1
Total number of security vulnerabilities5000