Latest CVE Feed
-
10.0
HIGHCVE-2014-4947
Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earlier has unspecified impact and attack vectors.... Read more
Affected Products : xenserver- Published: Jul. 22, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2019-8074
ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the current user.... Read more
Affected Products : coldfusion- Published: Sep. 27, 2019
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2024-29895
Cacti provides an operational monitoring and fault management framework. A command injection vulnerability on the 1.3.x DEV branch allows any unauthenticated user to execute arbitrary command on the server when `register_argc_argv` option of PHP is `On`. ... Read more
Affected Products : cacti- Published: May. 14, 2024
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-4823
The administration console in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, and Security Access Manager for Mobile 8.x before 8.0.0-ISS-ISAM-FP0005, allows remote attackers to inject system comman... Read more
- Published: Oct. 03, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2012-5253
Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adob... Read more
Affected Products : android linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk flash_player_for_android- Published: Oct. 09, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2012-5259
Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS X, before 10.3.183.29 and 11.x before 11.2.202.243 on Linux, before 11.1.111.19 on Android 2.x and 3.x, and before 11.1.115.20 on Android 4.x; Adob... Read more
Affected Products : android linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk flash_player_for_android- Published: Oct. 09, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2012-5277
Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on Windows and Mac OS X, before 10.3.183.43 and 11.x before 11.2.202.251 on Linux, before 11.1.111.24 on Android 2.x and 3.x, and before 11.1.115.27 on Android 4.x; Adob... Read more
- Published: Nov. 07, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2012-5274
Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on Windows and Mac OS X, before 10.3.183.43 and 11.x before 11.2.202.251 on Linux, before 11.1.111.24 on Android 2.x and 3.x, and before 11.1.115.27 on Android 4.x; Adob... Read more
- Published: Nov. 07, 2012
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2015-8415
Buffer overflow in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 ... Read more
Affected Products : android linux_kernel flash_player mac_os_x iphone_os windows air air_sdk air_sdk_\&_compiler- Published: Dec. 10, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-4752
IBM System Networking G8052, G8124, G8124-E, G8124-ER, G8264, G8316, and G8264-T switches before 7.9.10.0; EN4093, EN4093R, CN4093, SI4093, EN2092, and G8264CS switches before 7.8.6.0; Flex System Interconnect Fabric before 7.8.6.0; 1G L2-7 SLB switch for... Read more
Affected Products : system_networking_rackswitch__g8332_firmware system_networking_rackswitch__g8332 bladecenter_1g_firmware bladecenter_1g system_networking_rackswitch__g8052_firmware system_networking_rackswitch__g8124_firmware system_networking_rackswitch__g8124e_firmware system_networking_rackswitch__g8124er_firmware system_networking_rackswitch__g8264_firmware system_networking_rackswitch__g8264t_firmware +30 more products- Published: Sep. 23, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2008-2828
Stack-based buffer overflow in tmsnc allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an MSN packet with a UBX command containing a large UBX payload length field.... Read more
Affected Products : tmsnc- Published: Jun. 23, 2008
- Modified: Apr. 09, 2025
-
10.0
HIGHCVE-2014-4648
Unspecified vulnerability in Piwigo before 2.6.3 has unknown impact and attack vectors, related to a "security failure."... Read more
Affected Products : piwigo- Published: Jun. 28, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-4642
The escapeshellarg function in ext/standard/exec.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 on Windows allows remote attackers to execute arbitrary OS commands via a crafted string to an application that accepts command-line argu... Read more
- Published: May. 16, 2016
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2019-12988
Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 4 of 6).... Read more
- Published: Jul. 16, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-4501
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnect stratum message to the (1) extract_sockaddr or (2) par... Read more
- Published: Jul. 23, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2013-5603
Use-after-free vulnerability in the nsContentUtils::ContentIsHostIncludingDescendantOf function in Mozilla Firefox before 25.0, Firefox ESR 24.x before 24.1, Thunderbird before 24.1, and SeaMonkey before 2.22 allows remote attackers to execute arbitrary c... Read more
- Published: Oct. 30, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2013-5609
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allow remote attackers to cause a denial of service (memory corruption and applicat... Read more
Affected Products : firefox firefox_esr thunderbird ubuntu_linux fedora enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux_server_eus +7 more products- Published: Dec. 11, 2013
- Modified: Apr. 11, 2025
-
10.0
HIGHCVE-2014-0581
Adobe Flash Player before 13.0.0.252 and 14.x and 15.x before 15.0.0.223 on Windows and OS X and before 11.2.202.418 on Linux, Adobe AIR before 15.0.0.356, Adobe AIR SDK before 15.0.0.356, and Adobe AIR SDK & Compiler before 15.0.0.356 allow attackers to ... Read more
- Published: Nov. 11, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-5124
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Adobe AIR SDK & Compiler before 18.0.0.180 allow attackers... Read more
Affected Products : linux_kernel flash_player mac_os_x windows air evergreen air_sdk air_sdk_\&_compiler- Published: Jul. 20, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-0505
Adobe Shockwave Player before 12.1.0.150 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.... Read more
Affected Products : shockwave_player- Published: Mar. 14, 2014
- Modified: Apr. 12, 2025