| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-10108 | 10.0 |
Unauthenticated Remote Command injection as root occurs in the Western Digital MyCloud NAS 2.11.142 /web/google_analytics.php URL via a modified arg parameter in the POST data.
|
28-07-2023 - 16:15 | 03-01-2017 - 06:59 | |
| CVE-2018-14619 | 7.2 |
A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The "null skcipher" was being dropped when each af_alg_ctx was freed instead of when the aead_tfm was freed. This can cause the null skcipher to be freed whi
|
24-02-2023 - 18:43 | 30-08-2018 - 12:29 | |
| CVE-2012-0497 | 10.0 |
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, and 6 Update 30 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate
|
13-05-2022 - 14:52 | 15-02-2012 - 22:55 | |
| CVE-2005-2958 | 7.5 |
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 (libgda2) 1.2.1 and earlier allow attackers to execute arbitrary code.
|
03-10-2018 - 21:31 | 25-10-2005 - 16:02 | |
| CVE-2012-0765 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Adobe RoboHelp 8 and 9 for Word allow remote attackers to inject arbitrary web script or HTML via a crafted URL, related to certain .htm files in (1) template_stock and (2) template_csh directori
|
29-08-2017 - 01:31 | 15-02-2012 - 01:55 | |
| CVE-2012-0761 | 10.0 |
The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0757, CVE-2012-0
|
29-08-2017 - 01:31 | 15-02-2012 - 01:55 | |
| CVE-2012-0762 | 10.0 |
The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0757, CVE-2012-0
|
29-08-2017 - 01:31 | 15-02-2012 - 01:55 | |
| CVE-2012-0764 | 10.0 |
The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0757, CVE-2012-0
|
21-03-2012 - 03:53 | 15-02-2012 - 01:55 | |
| CVE-2010-4829 | 7.5 |
SQL injection vulnerability in processview.asp in Techno Dreams (T-Dreams) Cars Ads Package 2.0 allows remote attackers to execute arbitrary SQL commands via the key parameter.
|
25-08-2011 - 04:00 | 24-08-2011 - 10:55 | |
| CVE-2002-1974 | 10.0 |
The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root.
|
05-09-2008 - 20:31 | 31-12-2002 - 05:00 |