Latest CVE Feed
-
2.1
LOWCVE-2008-7020
McAfee SafeBoot Device Encryption 4 build 4750 and earlier stores pre-boot authentication passwords in the BIOS Keyboard buffer and does not clear this buffer after use, which allows local users to obtain sensitive information by reading the physical memo... Read more
Affected Products : safeboot_device_encryption- EPSS Score: %0.04
- Published: Aug. 21, 2009
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2010-1123
Chip Salzenberg Deliver does not properly associate a lockfile with the user who created the file, which allows local users to cause a denial of service (blockage of incoming e-mail) by creating lockfiles for arbitrary mailboxes.... Read more
Affected Products : deliver- EPSS Score: %0.04
- Published: Mar. 26, 2010
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2005-0517
PeerFTP_5 stores sensitive information such as passwords in plaintext in the PeerFTP.ini files, which allows local users to gain privileges.... Read more
Affected Products : peerftp_5- EPSS Score: %0.18
- Published: Feb. 23, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2015-0996
Schneider Electric InduSoft Web Studio before 7.1.3.4 SP3 Patch 4 and InTouch Machine Edition 2014 before 7.1.3.4 SP3 Patch 4 rely on a hardcoded cleartext password to control read access to Project files and Project Configuration files, which makes it ea... Read more
- EPSS Score: %0.06
- Published: Mar. 29, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2014-4039
ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensitive information by reading files in this archive, as demonstrated by /var/log/... Read more
- EPSS Score: %0.06
- Published: Jun. 17, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2023-52275
Gallery3d on Tecno Camon X CA7 devices allows attackers to view hidden images by navigating to data/com.android.gallery3d/.privatealbum/.encryptfiles and guessing the correct image file extension.... Read more
- EPSS Score: %0.06
- Published: Dec. 31, 2023
- Modified: Nov. 21, 2024
-
2.1
LOWCVE-2011-2210
The osf_getsysinfo function in arch/alpha/kernel/osf_sys.c in the Linux kernel before 2.6.39.4 on the Alpha platform does not properly restrict the data size for GSI_GET_HWRPB operations, which allows local users to obtain sensitive information from kerne... Read more
Affected Products : linux_kernel- EPSS Score: %0.15
- Published: Jun. 13, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2012-1630
Cross-site scripting (XSS) vulnerability in the Taxonomy Navigator module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.... Read more
- EPSS Score: %0.15
- Published: Sep. 20, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2011-0515
KisKrnl.sys 2011.1.13.89 and earlier in Kingsoft AntiVirus 2011 SP5.2 allows local users to cause a denial of service (crash) via a crafted request that is not properly handled by the KiFastCallEntry hook.... Read more
- EPSS Score: %0.24
- Published: Jan. 20, 2011
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2014-6143
The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response.... Read more
Affected Products : websphere_datapower_xc10_appliance_firmware- EPSS Score: %0.05
- Published: Dec. 11, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2008-0889
Red Hat Directory Server 8.0, when running on Red Hat Enterprise Linux, uses insecure permissions for the redhat-idm-console script, which allows local users to execute arbitrary code by modifying the script.... Read more
- EPSS Score: %0.07
- Published: Mar. 20, 2008
- Modified: Apr. 09, 2025
-
2.1
LOWCVE-2001-1378
fetchmailconf in fetchmail before 5.7.4 allows local users to overwrite files of other users via a symlink attack on temporary files.... Read more
Affected Products : fetchmail- EPSS Score: %0.05
- Published: Sep. 06, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2013-7064
Cross-site scripting (XSS) vulnerability in the EU Cookie Compliance module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated administrators with the "Administer EU Cookie Compliance popup" permission to inject arbitrary web script or HTML vi... Read more
Affected Products : eu_cookie_compliance- EPSS Score: %0.20
- Published: Apr. 29, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2010-2157
Unspecified vulnerability in CA ARCserve Backup r11.5 SP4, r12.0 SP2, and r12.5 SP1 on Windows allows local users to obtain sensitive information via unknown vectors.... Read more
Affected Products : windows- EPSS Score: %0.07
- Published: Jun. 07, 2010
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2010-1958
Cross-site scripting (XSS) vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x before 6.x-3.4 for Drupal allows remote authenticated users, with create or edit permissions and 'Path to File' or 'URL to File' display enabled, to inject arbitra... Read more
- EPSS Score: %0.25
- Published: Jun. 21, 2010
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2000-0139
Internet Anywhere POP3 Mail Server allows local users to cause a denial of service via a malformed RETR command.... Read more
Affected Products : internet_anywhere_mail_server- EPSS Score: %0.20
- Published: Dec. 03, 1999
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2014-6133
IBM API Management 3.x before 3.0.1.0 allows local users to obtain sensitive ciphertext information via unspecified vectors.... Read more
Affected Products : api_management- EPSS Score: %0.05
- Published: Oct. 26, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2001-1225
Hughes Technology Mini SQL 2.0.10 through 2.0.12 allows local users to cause a denial of service by creating a very large array in a table, which causes miniSQL to crash when the table is queried.... Read more
Affected Products : msql- EPSS Score: %0.06
- Published: Dec. 26, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2013-5429
The Risk Based Access functionality in IBM Tivoli Federated Identity Manager (TFIM) 6.2.2 before FP9 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.2 before FP9 does not prevent reuse of One Time Password (OTP) tokens, which makes it ... Read more
Affected Products : tivoli_federated_identity_manager- EPSS Score: %0.18
- Published: Jan. 21, 2014
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2011-0652
lnsfw1.sys 6.0.2900.5512 in Look 'n' Stop Firewall 2.06p4 and 2.07 allows local users to cause a denial of service (crash) via a crafted 0x80000064 IOCTL request that triggers an assertion failure. NOTE: some of these details are obtained from third part... Read more
Affected Products : look_\'n\'_stop_firewall- EPSS Score: %0.23
- Published: Jan. 28, 2011
- Modified: Apr. 11, 2025