Latest CVE Feed
-
4.0
MEDIUMCVE-2015-6308
Cisco NX-OS 6.0(2)U6(0.46) on N3K devices allows remote authenticated users to cause a denial of service (temporary SNMP outage) via an SNMP request for an OID that does not exist, aka Bug ID CSCuw36684.... Read more
- EPSS Score: %0.39
- Published: Oct. 02, 2015
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2015-2648
Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to DML.... Read more
- EPSS Score: %0.72
- Published: Jul. 16, 2015
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2011-1384
The (1) bin/invscoutClient_VPD_Survey and (2) sbin/invscout_lsvpd programs in invscout.rte before 2.2.0.19 on IBM AIX 7.1, 6.1, 5.3, and earlier allow local users to delete arbitrary files, or trigger inventory scout operations on arbitrary files, via a s... Read more
- EPSS Score: %0.04
- Published: Jan. 04, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2015-2573
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.... Read more
- EPSS Score: %0.56
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2012-4401
Moodle 2.2.x before 2.2.5 and 2.3.x before 2.3.2 allows remote authenticated users to bypass intended capability restrictions and perform certain topic changes by leveraging course-editing capabilities.... Read more
Affected Products : moodle- EPSS Score: %0.21
- Published: Sep. 19, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2014-0015
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via a request.... Read more
- EPSS Score: %2.58
- Published: Feb. 02, 2014
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2010-2528
The clientautoresp function in family_icbm.c in the oscar protocol plugin in libpurple in Pidgin before 2.7.2 allows remote authenticated users to cause a denial of service (NULL pointer dereference and application crash) via an X-Status message that lack... Read more
Affected Products : pidgin- EPSS Score: %2.08
- Published: Jul. 30, 2010
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2014-6547
Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4... Read more
Affected Products : database_server- EPSS Score: %0.17
- Published: Oct. 15, 2014
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2012-2168
IBM Rational ClearQuest 7.1.x before 7.1.2.7 and 8.x before 8.0.0.3 allows remote authenticated users to obtain sensitive stack-trace information from CM server error messages via an invalid parameter.... Read more
Affected Products : rational_clearquest- EPSS Score: %0.18
- Published: Aug. 17, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2006-6915
ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified vectors. NOTE: some details were obtained from third party sources.... Read more
Affected Products : aix- EPSS Score: %0.84
- Published: Dec. 31, 2006
- Modified: Apr. 09, 2025
-
4.0
MEDIUMCVE-2024-57822
In Raptor RDF Syntax Library through 2.0.16, there is a heap-based buffer over-read when parsing triples with the nquads parser in raptor_ntriples_parse_term_internal().... Read more
Affected Products : raptor_rdf_syntax_library- Published: Jan. 10, 2025
- Modified: Jan. 10, 2025
- Vuln Type: Memory Corruption
-
4.0
MEDIUMCVE-2011-4320
The mod_pubsub module (mod_pubsub.erl) in ejabberd 2.1.8 and 3.0.0-alpha-3 allows remote authenticated users to cause a denial of service (infinite loop) via a stanza with a publish tag that lacks a node attribute.... Read more
Affected Products : ejabberd- EPSS Score: %1.18
- Published: Feb. 18, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2012-0466
template/en/default/list/list.js.tmpl in Bugzilla 2.x and 3.x before 3.6.9, 3.7.x and 4.0.x before 4.0.6, and 4.1.x and 4.2.x before 4.2.1 does not properly handle multiple logins, which allows remote attackers to conduct cross-site scripting (XSS) attack... Read more
Affected Products : bugzilla- EPSS Score: %0.32
- Published: Apr. 27, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2006-2894
Mozilla Firefox 1.5.0.4, 2.0.x before 2.0.0.8, Mozilla Suite 1.7.13, Mozilla SeaMonkey 1.0.2 and other versions before 1.1.5, and Netscape 8.1 and earlier allow user-assisted remote attackers to read arbitrary files by tricking a user into typing the char... Read more
- EPSS Score: %6.90
- Published: Jun. 07, 2006
- Modified: Apr. 03, 2025
-
4.0
MEDIUMCVE-2014-4244
Unspecified vulnerability in Oracle Java SE 5.0u65, 6u75, 7u60, and 8u5, and JRockit R27.8.2 and JRockit R28.3.2, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security.... Read more
- EPSS Score: %5.68
- Published: Jul. 17, 2014
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2008-5113
WordPress 2.6.3 relies on the REQUEST superglobal array in certain dangerous situations, which makes it easier for remote attackers to conduct delayed and persistent cross-site request forgery (CSRF) attacks via crafted cookies, as demonstrated by attacks... Read more
Affected Products : wordpress- EPSS Score: %0.26
- Published: Nov. 17, 2008
- Modified: Apr. 09, 2025
-
4.0
MEDIUMCVE-2012-0534
Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect integrity via unknown vectors related to Create Session.... Read more
Affected Products : database_server- EPSS Score: %0.19
- Published: May. 03, 2012
- Modified: Apr. 11, 2025
-
4.0
MEDIUMCVE-2014-4338
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all... Read more
Affected Products : cups-filters- EPSS Score: %0.63
- Published: Jun. 22, 2014
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2006-2685
PHP remote file inclusion vulnerability in Basic Analysis and Security Engine (BASE) 1.2.4 and earlier, with register_globals enabled, allows remote attackers to execute arbitrary PHP code via a URL in the BASE_path parameter to (1) base_qry_common.php, (... Read more
Affected Products : basic_analysis_and_security_engine- EPSS Score: %85.60
- Published: May. 31, 2006
- Modified: Apr. 03, 2025
-
4.0
MEDIUMCVE-2008-3990
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUTIL, a different vulnerability than CVE-2008-3991.... Read more
- EPSS Score: %0.56
- Published: Oct. 14, 2008
- Modified: Apr. 09, 2025