Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-31773 |
|
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: SMP: derive legacy responder STK authentication from MITM state
The legacy responder path in smp_random() currently lab...
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: SMP: derive legacy responder STK authentication from MITM state
The legacy responder path in smp_random() currently labels the stored
STK as authenticated whenever pending_sec_level is BT_SECURITY_HIGH.
That reflects wh...
|
| CVE-2015-1130 KEV |
|
[KEV] Vulnerability in Apple os-x (CVE-2015-1130)
vulnerability in Apple os-x (CVE-2015-1130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-1000406 |
|
Vulnerability in opendaylight (CVE-2017-1000406)
vulnerability in opendaylight (CVE-2017-1000406). Data can be tampered with by attackers.
|
| CVE-2017-12353 |
|
Vulnerability in cisco (CVE-2017-12353)
vulnerability in cisco (CVE-2017-12353). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7268 |
|
Vulnerability in samsung (CVE-2015-7268)
vulnerability in samsung (CVE-2015-7268). Confidential information can be exposed externally.
|
| CVE-2015-7267 |
|
Vulnerability in samsung (CVE-2015-7267)
vulnerability in samsung (CVE-2015-7267). Confidential information can be exposed externally.
|
| CVE-2015-7269 |
|
Vulnerability in seagate (CVE-2015-7269)
vulnerability in seagate (CVE-2015-7269). Confidential information can be exposed externally.
|
| CVE-2014-3150 |
|
Vulnerability in orange (CVE-2014-3150)
vulnerability in orange (CVE-2014-3150). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10517 |
|
Vulnerability in c (CVE-2016-10517)
vulnerability in c (CVE-2016-10517). Confidential information can be exposed externally.
|
| CVE-2011-2683 |
|
Vulnerability in reseed-project (CVE-2011-2683)
vulnerability in reseed-project (CVE-2011-2683). Confidential information can be exposed externally.
|
| CVE-2017-11818 |
|
Vulnerability in microsoft (CVE-2017-11818)
vulnerability in microsoft (CVE-2017-11818). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5246 |
|
Vulnerability in theforeman (CVE-2015-5246)
vulnerability in theforeman (CVE-2015-5246). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7843 |
|
Vulnerability in huawei (CVE-2015-7843)
vulnerability in huawei (CVE-2015-7843). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6592 |
|
Vulnerability in huawei (CVE-2015-6592)
vulnerability in huawei (CVE-2015-6592). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7837 |
|
Vulnerability in redhat (CVE-2015-7837)
vulnerability in redhat (CVE-2015-7837). Data can be tampered with by attackers.
|
| CVE-2014-9635 |
|
Vulnerability in tomcat (CVE-2014-9635)
vulnerability in tomcat (CVE-2014-9635). Risk of unauthorized operations or information disclosure. Exploitable via `Cookie header`.
|
| CVE-2014-9634 |
|
Vulnerability in tomcat (CVE-2014-9634)
vulnerability in tomcat (CVE-2014-9634). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7225 |
|
Vulnerability in tinfoilsecurity (CVE-2015-7225)
vulnerability in tinfoilsecurity (CVE-2015-7225). Confidential information can be exposed externally.
|
| CVE-2015-0233 |
|
Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38.
Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38.
|
| CVE-2015-6473 |
|
WAGO IO 750-849 01.01.27 and WAGO IO 750-881 01.02.05 do not contain privilege separation.
WAGO IO 750-849 01.01.27 and WAGO IO 750-881 01.02.05 do not contain privilege separation.
|
| CVE-2015-9065 |
|
Vulnerability in google (CVE-2015-9065)
vulnerability in google (CVE-2015-9065). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6498 |
|
Vulnerability in alcatel-lucent (CVE-2015-6498)
vulnerability in alcatel-lucent (CVE-2015-6498). Data can be tampered with by attackers.
|
| CVE-2015-3170 |
|
Vulnerability in dos (CVE-2015-3170)
vulnerability in dos (CVE-2015-3170). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8964 |
|
Information Disclosure in ibm (CVE-2016-8964)
vulnerability in ibm (CVE-2016-8964). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3997 |
|
Vulnerability in dos (CVE-2016-3997)
vulnerability in dos (CVE-2016-3997). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3400 |
|
Vulnerability in dos (CVE-2016-3400)
vulnerability in dos (CVE-2016-3400). Successful exploitation can lead to full system takeover.
|
| CVE-2012-5010 |
|
Vulnerability in cisco (CVE-2012-5010)
vulnerability in cisco (CVE-2012-5010). Data can be tampered with by attackers.
|
| CVE-2016-9738 |
|
Vulnerability in ibm (CVE-2016-9738)
vulnerability in ibm (CVE-2016-9738). Confidential information can be exposed externally.
|
| CVE-2016-10336 |
|
Vulnerability in google (CVE-2016-10336)
vulnerability in google (CVE-2016-10336). Data can be tampered with by attackers.
|
| CVE-2016-10332 |
|
Vulnerability in google (CVE-2016-10332)
vulnerability in google (CVE-2016-10332). Data can be tampered with by attackers.
|
| CVE-2016-6594 |
|
Vulnerability in bluecoat (CVE-2016-6594)
vulnerability in bluecoat (CVE-2016-6594). Data can be tampered with by attackers.
|
| CVE-2010-1776 |
|
Vulnerability in apple (CVE-2010-1776)
vulnerability in apple (CVE-2010-1776). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1520 |
|
Vulnerability in grandstream (CVE-2016-1520)
vulnerability in grandstream (CVE-2016-1520). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4890 |
|
Vulnerability in zohocorp (CVE-2016-4890)
vulnerability in zohocorp (CVE-2016-4890). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10321 |
|
Vulnerability in web2py (CVE-2016-10321)
vulnerability in web2py (CVE-2016-10321). Successful exploitation can lead to full system takeover.
|
| CVE-2016-5057 |
|
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning.
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning.
|
| CVE-2016-5052 |
|
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning.
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning.
|
| CVE-2016-8768 |
|
Vulnerability in huawei (CVE-2016-8768)
vulnerability in huawei (CVE-2016-8768). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7541 |
|
Vulnerability in fortinet (CVE-2016-7541)
vulnerability in fortinet (CVE-2016-7541). Data can be tampered with by attackers.
|
| CVE-2016-9470 |
|
Cross-Site Scripting (XSS) in revive-adserver (CVE-2016-9470)
cross-site scripting in revive-adserver (CVE-2016-9470). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7797 |
|
Vulnerability in dos (CVE-2016-7797)
vulnerability in dos (CVE-2016-7797). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8986 |
|
Vulnerability in mcafee (CVE-2015-8986)
vulnerability in mcafee (CVE-2015-8986). Data can be tampered with by attackers.
|
| CVE-2015-8990 |
|
Vulnerability in mcafee (CVE-2015-8990)
vulnerability in mcafee (CVE-2015-8990). Data can be tampered with by attackers.
|
| CVE-2016-5933 |
|
Vulnerability in ibm (CVE-2016-5933)
vulnerability in ibm (CVE-2016-5933). Risk of unauthorized operations or information disclosure. Exploitable via `Host header`.
|
| CVE-2016-8508 |
|
Vulnerability in yandex (CVE-2016-8508)
vulnerability in yandex (CVE-2016-8508). Data can be tampered with by attackers.
|
| CVE-2016-7630 |
|
Vulnerability in apple (CVE-2016-7630)
vulnerability in apple (CVE-2016-7630). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7638 |
|
Vulnerability in apple (CVE-2016-7638)
vulnerability in apple (CVE-2016-7638). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7597 |
|
Vulnerability in apple (CVE-2016-7597)
vulnerability in apple (CVE-2016-7597). Data can be tampered with by attackers.
|
| CVE-2016-7601 |
|
Vulnerability in apple (CVE-2016-7601)
vulnerability in apple (CVE-2016-7601). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4721 |
|
Vulnerability in apple (CVE-2016-4721)
vulnerability in apple (CVE-2016-4721). Data can be tampered with by attackers.
|