Latest CVE Feed
-
2.1
LOWCVE-2002-0087
bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.... Read more
- EPSS Score: %0.12
- Published: Mar. 15, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2002-1270
Mac OS X 10.2.2 allows local users to read files that only allow write access via the map_fd() Mach system call.... Read more
Affected Products : mac_os_x- EPSS Score: %0.07
- Published: Dec. 11, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2002-1968
Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration ... Read more
Affected Products : doxport_1100- EPSS Score: %0.07
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2002-1669
pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.... Read more
Affected Products : freebsd- EPSS Score: %0.05
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2001-0275
Moby Netsuite Web Server 1.02 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long HTTP request.... Read more
Affected Products : netsuite_web_server- EPSS Score: %0.42
- Published: May. 03, 2001
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2005-1671
The Logfile feature in Yahoo! Messenger 5.x through 6.0 can be activated by a YMSGR: URL and writes all output to a single ypager.log file, even when there are multiple users, and does not properly warn later users that the feature has been enabled, which... Read more
Affected Products : messenger- EPSS Score: %0.03
- Published: May. 19, 2005
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2015-0988
Omron CX-One CX-Programmer before 9.6 uses a reversible format for password storage in project source-code files, which makes it easier for local users to obtain sensitive information by reading a file.... Read more
Affected Products : cx-programmer- EPSS Score: %0.06
- Published: Oct. 06, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2012-3276
HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified vec... Read more
- EPSS Score: %0.08
- Published: Dec. 13, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2014-6123
IBM Rational AppScan Source 8.0 through 8.0.0.2 and 8.5 through 8.5.0.1 and Security AppScan Source 8.6 through 8.6.0.2, 8.7 through 8.7.0.1, 8.8, 9.0 through 9.0.0.1, and 9.0.1 allow local users to obtain sensitive credential information by reading insta... Read more
- EPSS Score: %0.05
- Published: Dec. 29, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2012-5705
Cross-site scripting (XSS) vulnerability in the settings page (admin/settings/hotblocks) in the Hotblocks module 6.x-1.x before 6.x-1.8 for Drupal allows remote authenticated users with the "administer hotblocks" permission to inject arbitrary web script ... Read more
- EPSS Score: %0.23
- Published: Nov. 01, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2012-3191
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.50, 8.51, and 8.52 allows remote authenticated users to affect availability via unknown vectors related to Data Mover.... Read more
Affected Products : peoplesoft_products- EPSS Score: %0.45
- Published: Oct. 17, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2012-1629
Cross-site scripting (XSS) vulnerability in the Taxotouch module for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.... Read more
- EPSS Score: %0.15
- Published: Sep. 20, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2014-3045
IBM Scale Out Network Attached Storage (SONAS) 1.3.x and 1.4.x before 1.4.3.3 places an administrative password in the shell history upon use of the -p option to chuser, which allows local users to obtain sensitive information by leveraging root access.... Read more
- EPSS Score: %0.05
- Published: Jul. 19, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2009-2899
The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its arguments.... Read more
Affected Products : hyperic_hq- EPSS Score: %0.04
- Published: Dec. 05, 2012
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2014-1604
The parser cache functionality in parsergenerator.py in RPLY (aka python-rply) before 0.7.1 allows local users to spoof cache data by pre-creating a temporary rply-*.json file with a predictable name.... Read more
- EPSS Score: %0.07
- Published: Jan. 28, 2014
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2014-4757
The Outlook Extension in IBM Content Collector 4.0.0.x before 4.0.0.0-ICC-OE-IF004 allows local users to bypass the intended Reviewer privilege requirement and read e-mail messages from an arbitrary mailbox by invoking the Search function.... Read more
Affected Products : content_collector- EPSS Score: %0.05
- Published: Aug. 12, 2014
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-2027
IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3 and 7.1.1 before 7.1.1.1 improperly performs logout actions, which allows remote attackers to bypass intended access restrictions by leveraging an unattended workstation.... Read more
Affected Products : websphere_extreme_scale- EPSS Score: %0.14
- Published: Oct. 04, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-4077
The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to read arbitrary kernel memory via a 0x22608C ioctl call.... Read more
Affected Products : forticlient- EPSS Score: %0.56
- Published: Sep. 03, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2013-6181
EMC Watch4Net before 6.3 stores cleartext polled-device passwords in the installation repository, which allows local users to obtain sensitive information by leveraging repository privileges.... Read more
Affected Products : watch4net- EPSS Score: %0.14
- Published: Dec. 28, 2013
- Modified: Apr. 11, 2025
-
2.1
LOWCVE-2013-4452
Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other unspecified sensitive information by reading these files.... Read more
Affected Products : jboss_operations_network- EPSS Score: %0.05
- Published: Dec. 24, 2013
- Modified: Apr. 11, 2025