Latest CVE Feed
-
10.0
HIGHCVE-2015-9162
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile SD 410/12, SD 617, SD 650/52, SD 800, SD 808, and SD 810, in the function "Certificate_CreateWithBuffer" in the QSEE app TQS, in case of memory allocation failure, ... Read more
Affected Products : android sd_410_firmware sd_412_firmware sd_650_firmware sd_652_firmware sd_617_firmware sd_800_firmware sd_810_firmware sd_808_firmware sd_410 +7 more products- EPSS Score: %0.10
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-12518
Anviz CrossChex access control management software 4.3.8.0 and 4.3.12 is vulnerable to a buffer overflow vulnerability.... Read more
Affected Products : crosschex- EPSS Score: %74.84
- Published: Dec. 02, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9177
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, S... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware mdm9206_firmware sd_410_firmware sd_412_firmware +44 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9178
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, ... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware mdm9206_firmware sd_410_firmware sd_412_firmware sd_210_firmware +40 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2017-12785
The novish command-line interface, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, is prone to a buffer overflow in the "show log cli" command. This could be used by a read-only user (monitor role) to g... Read more
Affected Products : noviware- EPSS Score: %11.68
- Published: Aug. 22, 2017
- Modified: Apr. 20, 2025
-
10.0
HIGHCVE-2002-2017
sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd.... Read more
- EPSS Score: %0.82
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2014-1905
Unrestricted file upload vulnerability in ls/vw_snapshots.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a double extension, and then acc... Read more
- EPSS Score: %17.96
- Published: Dec. 29, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-9184
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, ... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware msm8909w_firmware sd_410_firmware sd_412_firmware sd_210_firmware sd_212_firmware +36 more products- EPSS Score: %0.23
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2015-9201
In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, SD 210/SD 212/SD 205, SD 400... Read more
Affected Products : sd_450_firmware sd_625_firmware sd_820_firmware sd_820a_firmware sd_835_firmware mdm9650_firmware msm8909w_firmware sdx20_firmware mdm9206_firmware mdm9607_firmware +56 more products- EPSS Score: %0.22
- Published: Apr. 18, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2000-1221
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attacker... Read more
- EPSS Score: %12.18
- Published: Jan. 08, 2000
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2000-0093
An installation of Red Hat uses DES password encryption with crypt() for the initial password, instead of md5.... Read more
Affected Products : linux- EPSS Score: %0.25
- Published: Jan. 21, 2000
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2014-1982
The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges and execute arbitrary commands via a direct request to c... Read more
Affected Products : img646bd_firmware img646bd at-rg634a_firmware at-rg634a img624a_firmware img624a img616lh_firmware img616lh- EPSS Score: %17.89
- Published: Mar. 31, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2013-3353
Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3356.... Read more
- EPSS Score: %43.98
- Published: Sep. 12, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2013-2466
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to D... Read more
- EPSS Score: %7.54
- Published: Jun. 18, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2011-0372
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x through 1.5.x allows remote attackers to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.... Read more
- EPSS Score: %4.01
- Published: Feb. 25, 2011
- Modified: Apr. 11, 2025
-
10.0
CRITICALCVE-2024-24576
Rust is a programming language. The Rust Security Response WG was notified that the Rust standard library prior to version 1.77.2 did not properly escape arguments when invoking batch files (with the `bat` and `cmd` extensions) on Windows using the `Comma... Read more
Affected Products : rust- Published: Apr. 09, 2024
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-14618
curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curl_ntlm_core_mk_nt_hash multiplies the length of the password by two (SUM) to figure out how large temporary storage area to allocate fro... Read more
- EPSS Score: %0.50
- Published: Sep. 05, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2016-1659
Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.... Read more
- EPSS Score: %2.36
- Published: Apr. 18, 2016
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2013-0402
Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated ... Read more
- EPSS Score: %7.53
- Published: Mar. 08, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2012-1974
Use-after-free vulnerability in the gfxTextRun::CanBreakLineBefore function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to e... Read more
Affected Products : firefox firefox_esr thunderbird ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_eus enterprise_linux_eus +6 more products- EPSS Score: %3.30
- Published: Aug. 29, 2012
- Modified: Apr. 11, 2025