Latest CVE Feed
-
10.0
HIGHCVE-2015-0850
The Git plugin for FusionForge before 6.0rc4 allows remote attackers to execute arbitrary code via an unspecified parameter when creating a secondary Git repository.... Read more
Affected Products : fusionforge- EPSS Score: %3.77
- Published: Jun. 02, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0014
Buffer overflow in the Telnet service in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code... Read more
Affected Products : windows_7 windows_8.1 windows_server_2008 windows_server_2012 windows_server_2003 windows_vista windows_8- EPSS Score: %80.78
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
CRITICALCVE-2024-8525
An unrestricted upload of file with dangerous type in Automated Logic WebCTRL 7.0 could allow an unauthenticated user to perform remote command execution via a crafted HTTP POST request which could lead to uploading a malicious file.... Read more
Affected Products : webctrl- Published: Nov. 21, 2024
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-9222
AllegroSoft RomPager 4.34 and earlier, as used in Huawei Home Gateway products and other vendors and products, allows remote attackers to gain privileges via a crafted cookie that triggers memory corruption, aka the "Misfortune Cookie" vulnerability.... Read more
Affected Products : rompager- EPSS Score: %86.69
- Published: Dec. 24, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-8822
IOHIDFamily in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a kernel context or cause a denial of service (write to kernel memory) via a crafted app that calls an unspecified user-client method.... Read more
- EPSS Score: %0.98
- Published: Jan. 30, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-8516
Unrestricted file upload vulnerability in Visual Mining NetCharts Server allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors.... Read more
Affected Products : netcharts_server- EPSS Score: %82.70
- Published: Jan. 03, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-8361
The miniigd SOAP service in Realtek SDK allows remote attackers to execute arbitrary code via a crafted NewInternalClient request, as exploited in the wild through 2023.... Read more
Affected Products : dir-615_firmware dir-605l_firmware dir-619l_firmware dir-615 dir-905l_firmware dir-600l_firmware realtek_sdk dir-809_firmware wf800hp_firmware dir-605l +41 more products- Actively Exploited
- EPSS Score: %94.03
- Published: May. 01, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7897
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSScanner.ocx for Imaging Barcode scanners, Linear Barcode scanners, Presentation Barcode scanner... Read more
- EPSS Score: %28.81
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7895
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCashDrawer.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid PO... Read more
- EPSS Score: %28.81
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7894
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSPOSPrinter.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid PO... Read more
- EPSS Score: %30.08
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7893
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSCheckScanner.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid ... Read more
- EPSS Score: %30.08
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7892
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSMSR.ocx for Mini MSR magnetic stripe readers, Retail Integrated Dual-Head MSR magnetic stripe r... Read more
- EPSS Score: %28.81
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7891
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSPOSKeyboard.ocx for POS keyboards and POS keyboards with MSR, aka ZDI-CAN-2509.... Read more
- EPSS Score: %30.08
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7890
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSToneIndicator.ocx for POS keyboards and POS keyboards with MSR, aka ZDI-CAN-2510.... Read more
- EPSS Score: %30.08
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7888
The OLE Point of Sale (OPOS) drivers before 1.13.003 on HP Point of Sale Windows PCs allow remote attackers to execute arbitrary code via vectors involving OPOSMICR.ocx for PUSB Thermal Receipt printers, SerialUSB Thermal Receipt printers, Hybrid POS prin... Read more
- EPSS Score: %30.08
- Published: Mar. 09, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-7235
htdocs_ari/includes/login.php in the ARI Framework module/Asterisk Recording Interface (ARI) in FreePBX before 2.9.0.9, 2.10.x, and 2.11 before 2.11.1.5 allows remote attackers to execute arbitrary code via the ari_auth cookie, related to the PHP unserial... Read more
- EPSS Score: %57.42
- Published: Oct. 07, 2014
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2014-5334
FreeNAS before 9.3-M3 has a blank admin password, which allows remote attackers to gain root privileges by leveraging a WebGui login.... Read more
Affected Products : freenas- EPSS Score: %11.46
- Published: Jan. 08, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2019-8195
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier, and 2015.006.30503 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation... Read more
- EPSS Score: %29.78
- Published: Oct. 17, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-5007
Directory traversal vulnerability in the agentLogUploader servlet in ZOHO ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition before 9 build 90055 allows remote attackers to write to and execute arbitrary files as... Read more
Affected Products : manageengine_desktop_central manageengine_desktop_central_managed_service_providers- EPSS Score: %51.61
- Published: Jan. 17, 2020
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2014-4947
Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earlier has unspecified impact and attack vectors.... Read more
Affected Products : xenserver- EPSS Score: %0.80
- Published: Jul. 22, 2014
- Modified: Apr. 12, 2025