Latest CVE Feed
-
10.0
HIGHCVE-2015-9152
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile IPQ4019, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 800, SD 810, SD 820... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware ipq4019_firmware sd_410_firmware sd_412_firmware sd_210_firmware sd_212_firmware +32 more products- EPSS Score: %0.18
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9164
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, ... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware msm8909w_firmware sd_410_firmware sd_412_firmware sd_210_firmware sd_212_firmware sd_205_firmware +34 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9174
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, lack of validation of the return value prior to using for buffer allocation in QSEE application, TQS, may ... Read more
Affected Products : android sd_410_firmware sd_412_firmware sd_650_firmware sd_652_firmware sd_617_firmware sd_800_firmware sd_810_firmware sd_808_firmware sd_410 +7 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9182
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, S... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware mdm9206_firmware sd_410_firmware sd_412_firmware +44 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9190
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 600, SD 615/16/SD 415, SD 808, and ... Read more
Affected Products : android msm8909w_firmware ipq4019_firmware mdm9206_firmware mdm9607_firmware mdm9635m_firmware mdm9615_firmware mdm9625_firmware sd_410_firmware sd_412_firmware +29 more products- EPSS Score: %0.27
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2019-5644
Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticated user may alter several facets of a user account, incl... Read more
Affected Products : computing_for_good\'s_basic_laboratory_information_system- EPSS Score: %1.91
- Published: Nov. 06, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-5510
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file.... Read more
Affected Products : hostel_management_system- EPSS Score: %0.32
- Published: Jan. 08, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-5561
Keijiban Tsumiki v1.15 allows remote attackers to execute arbitrary OS commands via unspecified vectors.... Read more
Affected Products : keijiban_tsumiki- EPSS Score: %2.14
- Published: Mar. 25, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-11600
An issue was discovered on Samsung mobile devices with Q(10.0) software. There is arbitrary code execution in the Fingerprint Trustlet via a memory overwrite. The Samsung IDs are SVE-2019-16587, SVE-2019-16588, SVE-2019-16589 (April 2020).... Read more
Affected Products : android- EPSS Score: %0.15
- Published: Apr. 08, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-6760
Schmid ZI 620 V400 VPN 090 routers allow an attacker to execute OS commands as root via shell metacharacters to an entry on the SSH subcommand menu, as demonstrated by ping.... Read more
- EPSS Score: %0.45
- Published: Feb. 06, 2020
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2020-6961
In ApexPro Telemetry Server, Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Telemetry Server Version 4.3, CARESCAPE Central Station (CSCS) Versions 1.X, a vulnerability ex... Read more
Affected Products : apexpro_telemetry_server_firmware carescape_central_station_mai700_firmware carescape_central_station_mas700_firmware clinical_information_center_mp100d_firmware clinical_information_center_mp100r_firmware carescape_telemetry_server_mp100r_firmware apexpro_telemetry_server carescape_central_station_mai700 carescape_central_station_mas700 clinical_information_center_mp100d +2 more products- EPSS Score: %0.19
- Published: Jan. 24, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2017-18133
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835, an out of bound access for ebi channel array can potentially occur.... Read more
Affected Products : android sd_835_firmware mdm9650_firmware mdm9206_firmware mdm9607_firmware sd_210_firmware sd_212_firmware sd_205_firmware mdm9206 mdm9607 +5 more products- EPSS Score: %0.22
- Published: Apr. 11, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-7167
A quicktemplateselect expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).... Read more
Affected Products : intelligent_management_center- EPSS Score: %2.26
- Published: Oct. 19, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-7168
A selectusergroup expression language injection remote code execution vulnerability was discovered in HPE Intelligent Management Center (iMC) version(s): Prior to iMC PLAT 7.3 (E0705P07).... Read more
Affected Products : intelligent_management_center- EPSS Score: %2.83
- Published: Oct. 19, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-7029
Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before 7.7.7 misparses DNS data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.... Read more
Affected Products : airport_base_station_firmware- EPSS Score: %4.33
- Published: Jul. 03, 2016
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-1498
Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to (1) enumerate user accounts via a getUsers request, (2) assign a role to a user account via an addAssigneesToRole request, (3... Read more
Affected Products : radia_client_automation- EPSS Score: %1.30
- Published: Feb. 16, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2020-7825
A vulnerability exists that could allow the execution of operating system commands on systems running MiPlatform 2019.05.16 and earlier. An attacker could execute arbitrary remote command by sending parameters to WinExec function in ExtCommandApi.dll modu... Read more
Affected Products : miplatform- EPSS Score: %0.51
- Published: Jul. 17, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-7980
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed.... Read more
Affected Products : aptus_web- EPSS Score: %93.07
- Published: Jan. 25, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2020-8010
CA Unified Infrastructure Management (Nimsoft/UIM) 20.1, 20.3.x, and 9.20 and below contains an improper ACL handling vulnerability in the robot (controller) component. A remote attacker can execute commands, read from, or write to the target system.... Read more
- EPSS Score: %80.94
- Published: Feb. 18, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2010-0990
Stack-based buffer overflow in Creative Software AutoUpdate Engine ActiveX Control 2.0.12.0, as used in Creative Software AutoUpdate 1.40.01, allows remote attackers to execute arbitrary code via vectors related to the BrowseFolder method.... Read more
- EPSS Score: %7.27
- Published: Jun. 15, 2010
- Modified: Apr. 11, 2025