Latest CVE Feed
-
10.0
HIGHCVE-2015-0786
Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary code via unspecified vectors.... Read more
Affected Products : zenworks_configuration_management- EPSS Score: %25.33
- Published: Aug. 09, 2017
- Modified: Apr. 20, 2025
-
10.0
HIGHCVE-2014-4487
Buffer overflow in IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows attackers to execute arbitrary code in a privileged context via a crafted app.... Read more
- EPSS Score: %2.42
- Published: Jan. 30, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0850
The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when creating a secondary Git repository.... Read more
Affected Products : fusionforge- EPSS Score: %3.77
- Published: Jun. 02, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-2830
Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attackers to have unspecified impact via unknown vectors.... Read more
Affected Products : cifs-utils- EPSS Score: %3.69
- Published: Mar. 31, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2012-0444
Mozilla Firefox before 3.6.26 and 4.x through 9.0, Thunderbird before 3.1.18 and 5.0 through 9.0, and SeaMonkey before 2.7 do not properly initialize nsChildView data structures, which allows remote attackers to cause a denial of service (memory corruptio... Read more
- EPSS Score: %2.23
- Published: Feb. 01, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2015-0701
Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCut46961.... Read more
Affected Products : unified_computing_system_central_software- EPSS Score: %1.07
- Published: May. 07, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0653
The management interface in Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway before X7.2.4, X8 before X8.1.2, and X8.2 before X8.2.2 and Cisco TelePresence Conductor before X2.3.1 and XC2.4 before XC2.4.1 allows remote attackers to... Read more
- EPSS Score: %7.80
- Published: Mar. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2011-0080
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.19 and 3.6.x before 3.6.17, Thunderbird before 3.1.10, and SeaMonkey before 2.0.14 allow remote attackers to cause a denial of service (memory corruption and ap... Read more
- EPSS Score: %1.85
- Published: May. 07, 2011
- Modified: Apr. 11, 2025
-
10.0
CRITICALCVE-2020-4429
IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 contains a default password for an IDRM administrative account. A remote attacker could exploit this vulnerability to login and execute arbitrary code on the system with root privileges. I... Read more
Affected Products : data_risk_manager- EPSS Score: %38.29
- Published: May. 07, 2020
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2015-0565
NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible.... Read more
Affected Products : native_client- EPSS Score: %27.78
- Published: Feb. 25, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2011-0267
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.... Read more
Affected Products : openview_network_node_manager- EPSS Score: %80.16
- Published: Jan. 13, 2011
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2015-0574
In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient.... Read more
Affected Products : android- EPSS Score: %0.25
- Published: Aug. 18, 2017
- Modified: Apr. 20, 2025
-
10.0
HIGHCVE-2015-0491
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40, and Java FX 2.2.76, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2015-0459.... Read more
- EPSS Score: %8.40
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0469
Unspecified vulnerability in Oracle Java SE 5.0u81, 6u91, 7u76, and 8u40 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.... Read more
- EPSS Score: %9.20
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2008-5134
Buffer overflow in the lbs_process_bss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an "invalid beacon/probe response."... Read more
Affected Products : linux_kernel- EPSS Score: %2.82
- Published: Nov. 18, 2008
- Modified: Apr. 09, 2025
-
10.0
HIGHCVE-2013-4652
Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary code via a (1) SSH or (2) TELNET connection.... Read more
Affected Products : scalance_w700_series_firmware scalance_w744-1 scalance_w744-1pro scalance_w746-1 scalance_w746-1pro scalance_w747-1 scalance_w747-1rr scalance_w784-1 scalance_w784-1rr scalance_w786-1pro +7 more products- EPSS Score: %11.12
- Published: Aug. 01, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2015-0360
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a differ... Read more
- EPSS Score: %4.16
- Published: Apr. 14, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0351
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability... Read more
- EPSS Score: %8.70
- Published: Apr. 14, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0347
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a differ... Read more
- EPSS Score: %4.16
- Published: Apr. 14, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0356
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."... Read more
- EPSS Score: %5.35
- Published: Apr. 14, 2015
- Modified: Apr. 12, 2025