Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2012-4411 | 4.6 |
The graphical console in Xen 4.0, 4.1 and 4.2 allows local OS guest administrators to obtain sensitive host resource information via the qemu monitor. NOTE: this might be a duplicate of CVE-2007-0998.
|
13-02-2023 - 00:26 | 23-11-2012 - 20:55 | |
CVE-2017-3890 | 4.3 |
A reflected cross-site scripting vulnerability in the BlackBerry WatchDox Server components Appliance-X, version 1.8.1 and earlier, and vAPP, versions 4.6.0 to 5.4.1, allows remote attackers to execute script commands in the context of the affected b
|
22-04-2021 - 21:18 | 13-01-2017 - 09:59 | |
CVE-2018-15937 | 9.3 |
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution.
|
24-02-2020 - 21:15 | 12-10-2018 - 18:29 | |
CVE-2018-15930 | 9.3 |
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution.
|
24-02-2020 - 21:15 | 12-10-2018 - 18:29 | |
CVE-2018-15931 | 9.3 |
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution.
|
24-02-2020 - 21:15 | 12-10-2018 - 18:29 | |
CVE-2012-2976 | 10.0 |
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary shell commands via crafted input to application scripts, related to an "injection" issue.
|
22-12-2017 - 02:29 | 23-07-2012 - 17:55 | |
CVE-2012-2961 | 7.5 |
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
22-12-2017 - 02:29 | 23-07-2012 - 17:55 | |
CVE-2012-2953 | 10.0 |
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts.
|
22-12-2017 - 02:29 | 23-07-2012 - 17:55 | |
CVE-2012-2957 | 7.2 |
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.
|
22-12-2017 - 02:29 | 23-07-2012 - 17:55 | |
CVE-2012-2574 | 7.5 |
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue.
|
22-12-2017 - 02:29 | 23-07-2012 - 17:55 | |
CVE-2005-3798 | 7.5 |
SQL injection vulnerability in admin/index.php in AlstraSoft Template Seller Pro 3.25 allows remote attackers to execute arbitrary SQL commands via the username field.
|
11-07-2017 - 01:33 | 24-11-2005 - 11:03 | |
CVE-2015-1959 | 4.6 |
IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not properly restrict encrypted files, which allows local users to obtain sensitive
|
28-12-2016 - 02:59 | 28-06-2015 - 15:59 | |
CVE-2002-1420 | 7.2 |
Integer signedness error in select() on OpenBSD 3.1 and earlier allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsig
|
18-10-2016 - 02:27 | 11-04-2003 - 04:00 | |
CVE-2010-4558 | 7.5 |
phpMyFAQ 2.6.11 and 2.6.12, as distributed between December 4th and December 15th 2010, contains an externally introduced modification (Trojan Horse) in the getTopTen method in inc/Faq.php, which allows remote attackers to execute arbitrary PHP code.
|
20-12-2010 - 05:00 | 17-12-2010 - 19:00 | |
CVE-2009-0690 | 9.3 |
The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a negative value for the stream offset in a JPEG2000 (aka JPX) stream, which allows remote attackers to cause a denial of serv
|
24-06-2009 - 04:00 | 23-06-2009 - 21:30 |