Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2014-9837 |
|
Out-of-Bounds Read in c (CVE-2014-9837)
vulnerability in c (CVE-2014-9837). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8504 |
|
Vulnerability in dos (CVE-2015-8504)
vulnerability in dos (CVE-2015-8504). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8568 |
|
Vulnerability in dos (CVE-2015-8568)
vulnerability in dos (CVE-2015-8568). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8613 |
|
Out-of-Bounds Write in dos (CVE-2015-8613)
out-of-bounds write in dos (CVE-2015-8613). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6088 |
|
SQL Injection in sqli (CVE-2017-6088)
SQL injection in sqli (CVE-2017-6088). Successful exploitation can lead to full system takeover.
|
| CVE-2016-5322 |
|
Out-of-Bounds Read in c (CVE-2016-5322)
vulnerability in c (CVE-2016-5322). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4483 |
|
Unsafe Deserialization in c (CVE-2016-4483)
vulnerability in c (CVE-2016-4483). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5969 |
|
Vulnerability in dos (CVE-2017-5969)
vulnerability in dos (CVE-2017-5969). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4468 |
|
SQL Injection in sqli (CVE-2016-4468)
SQL injection in sqli (CVE-2016-4468). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7461 |
|
Path Traversal in path-traversal (CVE-2017-7461)
path traversal in path-traversal (CVE-2017-7461). Confidential information can be exposed externally.
|
| CVE-2016-5011 |
|
Vulnerability in c (CVE-2016-5011)
vulnerability in c (CVE-2016-5011). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7621 |
|
Cross-Site Scripting (XSS) in auromeera (CVE-2017-7621)
cross-site scripting in auromeera (CVE-2017-7621). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8237 |
|
Vulnerability in lenovo (CVE-2016-8237)
vulnerability in lenovo (CVE-2016-8237). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8235 |
|
Vulnerability in privilege-escalation (CVE-2016-8235)
vulnerability in privilege-escalation (CVE-2016-8235). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7622 |
|
Vulnerability in privilege-escalation (CVE-2017-7622)
vulnerability in privilege-escalation (CVE-2017-7622). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7623 |
|
Out-of-Bounds Read in c (CVE-2017-7623)
vulnerability in c (CVE-2017-7623). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5041 |
|
Vulnerability in c (CVE-2016-5041)
vulnerability in c (CVE-2016-5041). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7825 |
|
Vulnerability in dos (CVE-2015-7825)
vulnerability in dos (CVE-2015-7825). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10310 |
|
Buffer Overflow in dos (CVE-2016-10310)
vulnerability in dos (CVE-2016-10310). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10311 |
|
Buffer Overflow in dos (CVE-2016-10311)
vulnerability in dos (CVE-2016-10311). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5983 |
|
Unsafe Deserialization in dos (CVE-2017-5983)
vulnerability in dos (CVE-2017-5983). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5988 |
|
Vulnerability in dos (CVE-2017-5988)
vulnerability in dos (CVE-2017-5988). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7185 |
|
Use-After-Free in c (CVE-2017-7185)
vulnerability in c (CVE-2017-7185). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7239 |
|
Vulnerability in dos (CVE-2017-7239)
vulnerability in dos (CVE-2017-7239). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7377 |
|
Vulnerability in c (CVE-2017-7377)
vulnerability in c (CVE-2017-7377). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7617 |
|
Buffer Overflow in digium (CVE-2017-7617)
vulnerability in digium (CVE-2017-7617). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6190 |
|
Path Traversal in path-traversal (CVE-2017-6190)
path traversal in path-traversal (CVE-2017-6190). Confidential information can be exposed externally. Exploitable via `GET /uir/`.
|
| CVE-2016-10304 |
|
Unsafe Deserialization in dos (CVE-2016-10304)
vulnerability in dos (CVE-2016-10304). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7618 |
|
Vulnerability in c (CVE-2017-7618)
vulnerability in c (CVE-2017-7618). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5642 |
|
Opmantek NMIS before 8.5.12G has XSS via SNMP.
Opmantek NMIS before 8.5.12G has XSS via SNMP.
|
| CVE-2016-5682 |
|
Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section.
Swagger-UI before 2.2.1 has XSS via the Default field in the Definitions section.
|
| CVE-2016-4317 |
|
Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page.
Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page.
|
| CVE-2016-4318 |
|
Cross-Site Scripting (XSS) in atlassian (CVE-2016-4318)
cross-site scripting in atlassian (CVE-2016-4318). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5055 |
|
Cross-Site Scripting (XSS) in osram (CVE-2016-5055)
cross-site scripting in osram (CVE-2016-5055). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5073 |
|
CloudView NMS before 2.10a has XSS via SNMP.
CloudView NMS before 2.10a has XSS via SNMP.
|
| CVE-2016-5075 |
|
CloudView NMS before 2.10a has XSS via a TELNET login.
CloudView NMS before 2.10a has XSS via a TELNET login.
|
| CVE-2016-5077 |
|
Netikus EventSentry before 3.2.1.44 has XSS via SNMP.
Netikus EventSentry before 3.2.1.44 has XSS via SNMP.
|
| CVE-2016-5078 |
|
Paessler PRTG before 16.2.24.4045 has XSS via SNMP.
Paessler PRTG before 16.2.24.4045 has XSS via SNMP.
|
| CVE-2016-4319 |
|
Atlassian JIRA Server before 7.1.9 has CSRF in auditing/settings.
Atlassian JIRA Server before 7.1.9 has CSRF in auditing/settings.
|
| CVE-2016-4320 |
|
Path Traversal in path-traversal (CVE-2016-4320)
path traversal in path-traversal (CVE-2016-4320). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1517 |
|
Vulnerability in dos (CVE-2016-1517)
vulnerability in dos (CVE-2016-1517). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6028 |
|
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
|
| CVE-2015-2883 |
|
Cross-Site Scripting (XSS) in philips (CVE-2015-2883)
cross-site scripting in philips (CVE-2015-2883). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6021 |
|
Spiceworks Desktop before 2015-12-01 has XSS via an SNMP response.
Spiceworks Desktop before 2015-12-01 has XSS via an SNMP response.
|
| CVE-2015-6027 |
|
Castle Rock Computing SNMPc before 2015-12-17 has XSS via SNMP.
Castle Rock Computing SNMPc before 2015-12-17 has XSS via SNMP.
|
| CVE-2015-6035 |
|
Opsview before 2015-11-06 has XSS via SNMP.
Opsview before 2015-11-06 has XSS via SNMP.
|
| CVE-2015-7275 |
|
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS.
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS.
|
| CVE-2015-8255 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-8255)
vulnerability in csrf (CVE-2015-8255). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7270 |
|
Path Traversal in path-traversal (CVE-2015-7270)
path traversal in path-traversal (CVE-2015-7270). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7272 |
|
Buffer Overflow in dos (CVE-2015-7272)
vulnerability in dos (CVE-2015-7272). Successful exploitation can lead to full system takeover.
|