Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 20998

Alerts Feed Alerts

DateNameCategoriesDetail
7.52017-03-27CVE-2016-9125cve Revive Adserver before 3.2.3 suffers from session fixation, by allowing arbitrary session identifiers to be forced and, at the same time, by not invalidating the existing sessio...
7.82017-03-27CVE-2017-5237cve Due to a lack of authentication, an unauthenticated user who knows the Eview EV-07S GPS Tracker's phone number can revert the device to a factory default configuration with...
7.52017-03-26CVE-2017-6013cve Subrion CMS 4.0.5.10 has SQL injection in admin/database/ via the query parameter.
7.52017-03-26CVE-2017-2641cve In Moodle 2.x and 3.x, SQL injection can occur via user preferences.
7.12017-03-24CVE-2017-5644cve Apache POI in versions prior to release 3.15 allows remote attackers to cause a denial of service (CPU consumption) via a specially crafted OOXML file, aka an XML Entity Expansi...
7.52017-03-24CVE-2017-5511cve coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
7.82017-03-24CVE-2017-5507cve Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving ...
7.52017-03-24CVE-2017-5337cve Multiple heap-based buffer overflows in the read_attribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafte...
7.52017-03-24CVE-2017-5336cve Stack-based buffer overflow in the cdk_pk_get_keyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified i...
7.52017-03-24CVE-2017-5334cve Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via craf...
7.82017-03-24CVE-2016-10146cve Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
7.52017-03-24CVE-2016-10145cve Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
7.52017-03-24CVE-2016-10144cve coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
7.52017-03-24CVE-2016-10133cve Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc. MuJS allows attackers to have unspecified impact by leveraging an error when dro...
7.52017-03-24CVE-2016-10128cve Buffer overflow in the git_pkt_parse_line function in transports/smart_pkt.c in the Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote at...
7.12017-03-24CVE-2015-8678cve The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00...
7.22017-03-24CVE-2017-5198cve SolarWinds LEM (aka SIEM) before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh.
7.52017-03-23CVE-2017-6950cve SAP GUI 7.2 through 7.5 allows remote attackers to bypass intended security policy restrictions and execute arbitrary code via a crafted ABAP code, aka SAP Security Note 2407616.
7.52017-03-23CVE-2017-6895cve USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml.
7.52017-03-23CVE-2015-4166cve Cloudera Key Trustee Server before 5.4.3 does not store keys synchronously, which might allow attackers to have unspecified impact via vectors related to loss of an encryption key.
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 20998