Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2015/06/24 12:0 a.m.•38 views

Panasonic Security API SDK Ipropsapi ActiveX Control FilePassword Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability could allow remote attackers to execute arbitrary code on vulnerable installations of the Panasonic Security API SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in...

7.5CVSS6.7AI score0.05643EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/06/11 12:0 a.m.•38 views

(Pwn2Own) Microsoft Internet Explorer Protocol Handler Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

6.9CVSS6.3AI score0.15195EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/14 12:0 a.m.•38 views

Microsoft Internet Explorer CTitleElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.15631EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/29 12:0 a.m.•38 views

ManageEngine Applications Manager FailOverHelperServlet Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose files on vulnerable installations of ManageEngine Applications Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the FailOverHelperServlet servlet. The issue lies in the...

7.8CVSS7.1AI score0.83399EPSS
Exploits11References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/22 12:0 a.m.•38 views

Novell Zenworks GetStoredResult.class SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell Zenworks. Authentication is not required to exploit this vulnerability. The specific flaw exists within the GetReRequestData method of the GetStoredResult class. The issue lies in the failur...

6.8CVSS9.6AI score0.08217EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/15 12:0 a.m.•38 views

Microsoft Word Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processing of...

6.8CVSS6.8AI score0.26766EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•38 views

Microsoft Internet Explorer CGeneratedContent::UnWrapContent Out-Of-Bound Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within styl...

6.8CVSS6.3AI score0.15525EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•38 views

Microsoft Windows NtUserfnINOUTNCCALCSIZE Information Leak Vulnerability

This vulnerability allows local attackers to leak sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

2.1CVSS5.9AI score0.02594EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/02/10 12:0 a.m.•38 views

Adobe Flash Player BitmapFilter Invalid Object Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the BitmapFilter...

6.8CVSS6.3AI score0.06367EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/12/09 12:0 a.m.•38 views

Microsoft Internet Explorer CTreePos Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.20344EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/11/19 12:0 a.m.•38 views

Microsoft Internet Explorer CHeaderElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.4AI score0.15682EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/09/16 12:0 a.m.•38 views

Microsoft Internet Explorer CTable Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.15145EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/07/09 12:0 a.m.•38 views

Hewlett-Packard Universal CMDB Default Credentials Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Universal CMDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the default configuration of Hewlett-Packard Universal CMDB. The...

10CVSS7.2AI score0.12235EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/06/11 12:0 a.m.•38 views

Microsoft Internet Explorer CGeneratedTreeNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.20451EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/21 12:0 a.m.•38 views

Oracle Java JPEG Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JPEG...

10CVSS6.9AI score0.06638EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/03 12:0 a.m.•38 views

Apple QuickTime dref Atom Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.5CVSS6.5AI score0.03514EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/03 12:0 a.m.•38 views

Apple QuickTime ftab Atom Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of t...

7.5CVSS6.7AI score0.04072EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/02/05 12:0 a.m.•38 views

Adobe Flash Player Jump Opcode Information Leak Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

5CVSS6.4AI score0.05691EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/11/24 12:0 a.m.•38 views

ABB MicroSCADA Wserver wserver.exe EXECUTE Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ABB MicroSCADA Wserver. Authentication is not required to exploit this vulnerability. The specific flaw exists within the wserver.exe component which listens on TCP port 12221. This component...

7.5CVSS4AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/11/24 12:0 a.m.•38 views

Microsoft Internet Explorer CEditAdorner Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS3.3AI score0.19091EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/09/11 12:0 a.m.•38 views

IBM Lotus iNotes ActiveX Control Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Lotus iNotes. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS4.7AI score0.02884EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/07/26 12:0 a.m.•38 views

Microsoft Internet Explorer CTreeNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

7.5CVSS3.9AI score0.2278EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2013/06/27 12:0 a.m.•38 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.9AI score0.19345EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2013/06/27 12:0 a.m.•38 views

Oracle Java ManagedObjectManagerFactory Security Manager Bypass Remote Code Execution Vulnerabillity

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5CVSS3.9AI score0.04326EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/29 12:0 a.m.•38 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.9AI score0.24087EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•38 views

Cisco Clean Access Manager sortColumn SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Clean Access Manager. Authentication is not required to exploit this vulnerability. The specific flaw is in the handling of sortColumn URL parameters when constructing SQL database queries. B...

10CVSS4.8AI score0.01143EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/03/22 12:0 a.m.•38 views

Novell ZENworks Control Center File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENworks. Authentication is not required to exploit this vulnerability. The specific issues exists within ZENworks Control Center which listens on tcp/443 by default. Insufficient...

10CVSS6.5AI score0.77049EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/14 12:0 a.m.•38 views

Microsoft Windows OLE Automation Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Microsoft...

6.8CVSS3.3AI score0.22701EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/14 12:0 a.m.•38 views

Microsoft Internet Explorer SetCapture Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.7AI score0.19905EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/11 12:0 a.m.•38 views

Oracle Java AWT Image Transform Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Java AWT Image...

7.5CVSS2.6AI score0.07714EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/11 12:0 a.m.•38 views

Adobe Flash Player loadPCMFromByteArray Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS4.6AI score0.06868EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/01 12:0 a.m.•38 views

Microsoft .NET Framework System.DirectoryServices.Protocols Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft .NET Framework. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS2.1AI score0.23843EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/12/21 12:0 a.m.•38 views

RealNetworks RealPlayer ATRAC Sample Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks Real Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when the...

7.5CVSS5AI score0.037EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/12/21 12:0 a.m.•38 views

Microsoft Internet Explorer Title Element Change Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the...

7.5CVSS2.9AI score0.24052EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/11/19 12:0 a.m.•38 views

RealNetworks RealPlayer RV20 Frame Size Array Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

7.5CVSS4.8AI score0.04546EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/11/15 12:0 a.m.•38 views

RealNetworks RealPlayer RV40 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required in that a target must visit a malicious page or open a malicious file. The flaw exists within the rv40.dll component for RealNetworks RealPlaye...

9CVSS5.1AI score0.04546EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/21 12:0 a.m.•38 views

Apple Quicktime TeXML transform Attribute Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of X...

7.5CVSS4.7AI score0.28623EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/21 12:0 a.m.•38 views

HP OpenView Performance Manager PMParamHandler Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP OpenView Performance Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the PMParamHandler component of Performance Manager, which is served v...

10CVSS4.6AI score0.23279EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/06 12:0 a.m.•38 views

Apple QuickTime SVQ3 Codec mb_skip_run Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Apple...

7.5CVSS4.1AI score0.04997EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/18 12:0 a.m.•38 views

Samba ndr_ValidatePassword heap overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the way Samba handles ndrValidatePassword requests. When parsing the data send in the request...

10CVSS5.5AI score0.74034EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/09 12:0 a.m.•38 views

Oracle Java Runtime readMabCurveData nTblSize Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within cmm.dll. While parsi...

7.5CVSS4.5AI score0.05916EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/02/08 12:0 a.m.•38 views

IBM Rational Rhapsody BBFlashBack.Recorder.1 InsertMarker Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM Rational Rhapsody. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within BB FlashBa...

9CVSS6.3AI score0.03585EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/01/10 12:0 a.m.•38 views

Citrix Provisioning Services Stream Service 0x40020000 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Citrix Provisioning Services. Authentication is not required to exploit this vulnerability. The flaw exists within the streamprocess.exe component. This process listens on UDP port 6905. When...

10CVSS2.9AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/10/26 12:0 a.m.•38 views

Adobe Reader U3D PICT 10h Encoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Adobe handl...

7.5CVSS3.9AI score0.0594EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2011/08/23 12:0 a.m.•38 views

EMC Autostart ftAgent Opcode 0x11 Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is not required to exploit this vulnerability. The specific flaw exists in the Agent Service ftAgent.exe. The Agent Service listens on TCP port 8045 for communications...

10CVSS6AI score0.02335EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
•added 2011/08/16 12:0 a.m.•38 views

Apple QuickTime STSZ atom Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

9CVSS4.9AI score0.05084EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2011/08/12 12:0 a.m.•38 views

Adobe Flash Player BitmapData.scroll Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the code...

7.5CVSS2.5AI score0.09568EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/07/27 12:0 a.m.•38 views

Webkit setAttributes attributeChanged Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Webkit Library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS2.1AI score0.03923EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2011/06/29 12:0 a.m.•38 views

Apple Quicktime Apple Lossless Audio Codec Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

7.5CVSS3.5AI score0.02924EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2011/06/27 12:0 a.m.•38 views

Citrix EdgeSight Launcher Service Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Citrix EdgeSight. Authentication is not required to exploit this vulnerability. The flaw exists within the LauncherService.exe component which listens by default on TCP port 18747. When handling a...

10CVSS2.4AI score
Exploits0References1
Total number of security vulnerabilities5000