| Max CVSS | 7.6 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2003-1562 | 7.6 |
sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, which makes it easier for remote attackers to use t
|
13-12-2022 - 12:15 | 31-12-2003 - 05:00 | |
| CVE-2015-2694 | 5.8 |
The kdcpreauth modules in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.2 do not properly track whether a client's request has been validated, which allows remote attackers to bypass an intended preauthentication requirement by providing (1
|
21-01-2020 - 15:46 | 25-05-2015 - 19:59 | |
| CVE-2017-6338 | 4.0 |
Multiple Access Control issues in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allow an authenticated, remote user with low privileges like 'Reports Only' or 'Auditor' to change FTP Access Control Settings, create o
|
03-10-2019 - 00:03 | 05-04-2017 - 16:59 | |
| CVE-2015-4170 | 4.7 |
Race condition in the ldsem_cmpxchg function in drivers/tty/tty_ldsem.c in the Linux kernel before 3.13-rc4-next-20131218 allows local users to cause a denial of service (ldsem_down_read and ldsem_down_write deadlock) by establishing a new tty thread
|
12-11-2017 - 02:29 | 02-05-2016 - 10:59 | |
| CVE-2006-0558 | 4.9 |
perfmon (perfmon.c) in Linux kernel on IA64 architectures allows local users to cause a denial of service (crash) by interrupting a task while another process is accessing the mm_struct, which triggers a BUG_ON action in the put_page_testzero functio
|
11-10-2017 - 01:30 | 14-04-2006 - 21:02 | |
| CVE-2008-0521 | 5.0 |
Multiple directory traversal vulnerabilities in Bubbling Library 1.32 allow remote attackers to read arbitrary files via a .. (dot dot) in the uri parameter to dispatcher.php in (1) examples/dispatcher/framework/, (2) examples/dispatcher/, (3) exampl
|
29-09-2017 - 01:30 | 31-01-2008 - 20:00 | |
| CVE-2015-4082 | 4.0 |
attic before 0.15 does not confirm unencrypted backups with the user, which allows remote attackers with read and write privileges for the encrypted repository to obtain potentially sensitive information by changing the manifest type byte of the repo
|
25-08-2017 - 12:05 | 18-08-2017 - 16:29 | |
| CVE-2009-4458 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the (1) tech parameter to admin/admin/config.php during a trunks display
|
17-08-2017 - 01:31 | 30-12-2009 - 00:30 | |
| CVE-2015-2851 | 6.8 |
client_chown in the sync client in Synology Cloud Station 1.1-2291 through 3.1-3320 on OS X allows local users to change the ownership of arbitrary files, and consequently obtain root access, by specifying a filename.
|
03-12-2016 - 03:07 | 30-05-2015 - 19:59 |