| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-14649 | 10.0 |
It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthe
|
13-02-2023 - 04:51 | 09-10-2018 - 17:29 | |
| CVE-2009-0960 | 4.3 |
The Mail component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 does not provide an option to disable remote image loading in HTML email, which allows remote attackers to determine the device address and when an
|
09-08-2022 - 13:48 | 19-06-2009 - 16:30 | |
| CVE-2002-0661 | 7.5 |
Directory traversal vulnerability in Apache 2.0 through 2.0.39 on Windows, OS2, and Netware allows remote attackers to read arbitrary files and execute commands via .. (dot dot) sequences containing \ (backslash) characters.
|
06-06-2021 - 11:15 | 12-08-2002 - 04:00 | |
| CVE-2012-3377 | 6.8 |
Heap-based buffer overflow in the Ogg_DecodePacket function in the OGG demuxer (modules/demux/ogg.c) in VideoLAN VLC media player before 2.0.2 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary cod
|
19-09-2017 - 01:35 | 12-07-2012 - 21:55 | |
| CVE-2014-0032 | 4.3 |
The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the serve
|
29-08-2017 - 01:34 | 14-02-2014 - 15:55 | |
| CVE-2012-4032 | 5.8 |
Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx.
|
29-08-2017 - 01:32 | 17-07-2012 - 21:55 | |
| CVE-2007-4563 | 4.4 |
Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user's group permissions to logical J2EE server processes, which allows local users to gain privileges.
|
29-07-2017 - 01:33 | 28-08-2007 - 01:17 | |
| CVE-2007-4564 | 4.6 |
Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.
|
29-07-2017 - 01:33 | 28-08-2007 - 01:17 | |
| CVE-2005-3900 | 7.8 |
Macromedia Breeze Communication Server and Breeze Live Server does 5.1 and earlier not sufficiently validate certain RTMP data, which allows attackers to cause a denial of service (instability or crash), as demonstrated using an alpha release build o
|
08-03-2011 - 02:27 | 29-11-2005 - 22:03 | |
| CVE-2010-2603 | 2.1 |
RIM BlackBerry Desktop Software 4.7 through 6.0 for PC, and 1.0 for Mac, uses a weak password to encrypt a database backup file, which makes it easier for local users to decrypt the file via a brute force attack.
|
12-01-2011 - 06:51 | 17-12-2010 - 19:00 |