Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-1852 | 4.3 |
The s3_token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification verification when the "insecure" option is set in a paste configuration (paste.ini) file regardless of the value, which
|
13-02-2023 - 00:47 | 17-04-2015 - 17:59 | |
CVE-2015-8962 | 9.3 |
Double free vulnerability in the sg_common_write function in drivers/scsi/sg.c in the Linux kernel before 4.4 allows local users to gain privileges or cause a denial of service (memory corruption and system crash) by detaching a device during an SG_I
|
19-01-2023 - 16:07 | 16-11-2016 - 05:59 | |
CVE-2007-2973 | 7.8 |
Avira Antivir Antivirus before 7.03.00.09 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed TAR archive. This vulnerability is reportedly resolved in the following product version: 7.03.00.09
|
16-10-2018 - 16:46 | 01-06-2007 - 01:30 | |
CVE-2007-2972 | 7.8 |
The file parsing engine in Avira Antivir Antivirus before 7.04.00.24 allows remote attackers to cause a denial of service (application crash) via a crafted UPX compressed file, which triggers a divide-by-zero error.
|
16-10-2018 - 16:46 | 01-06-2007 - 01:30 | |
CVE-2007-2974 | 10.0 |
Buffer overflow in the file parsing engine in Avira Antivir Antivirus before 7.03.00.09 allows remote attackers to execute arbitrary code via a crafted LZH archive file, resulting from an "integer cast around."
|
16-10-2018 - 16:46 | 01-06-2007 - 01:30 | |
CVE-2018-10678 | 5.8 |
MyBB 1.8.15, when accessed with Microsoft Edge, mishandles 'target="_blank" rel="noopener"' in A elements, which makes it easier for remote attackers to conduct redirection attacks.
|
05-06-2018 - 13:03 | 13-05-2018 - 20:29 | |
CVE-2009-1050 | 7.5 |
Bloginator 1A allows remote attackers to bypass authentication and gain administrative access by setting the identifyYourself cookie.
|
29-09-2017 - 01:34 | 24-03-2009 - 14:30 | |
CVE-2009-1049 | 7.5 |
SQL injection vulnerability in articleCall.php in Bloginator 1A allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-09-2017 - 01:34 | 24-03-2009 - 14:30 | |
CVE-2002-0338 | 5.0 |
The Bat! 1.53d and 1.54beta, and possibly other versions, allows remote attackers to cause a denial of service (crash) via an attachment whose name includes an MS-DOS device name.
|
18-10-2016 - 02:19 | 25-06-2002 - 04:00 |