| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-3896 | 7.2 |
A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An unprivileged local attacker can use this flaw for a privilege escalation or for a system crash and a denial of service (DoS).
|
12-02-2023 - 23:38 | 19-06-2019 - 00:15 | |
| CVE-2017-5637 | 5.0 |
Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3
|
20-07-2021 - 23:15 | 10-10-2017 - 01:30 | |
| CVE-2008-1025 | 4.3 |
Cross-site scripting (XSS) vulnerability in Apple WebKit, as used in Safari before 3.1.1, allows remote attackers to inject arbitrary web script or HTML via a crafted URL with a colon in the hostname portion.
|
08-08-2017 - 01:29 | 17-04-2008 - 19:05 | |
| CVE-2003-1227 | 7.5 |
PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on Windows or in Configuration mode on Unix, allows remote attackers to inject arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter, a different vul
|
11-07-2017 - 01:29 | 31-12-2003 - 05:00 | |
| CVE-2014-1555 | 9.3 |
Use-after-free vulnerability in the nsDocLoader::OnProgress function in Mozilla Firefox before 31.0, Firefox ESR 24.x before 24.7, and Thunderbird before 24.7 allows remote attackers to execute arbitrary code via vectors that trigger a FireOnStateCha
|
07-01-2017 - 02:59 | 23-07-2014 - 11:12 | |
| CVE-2015-7280 | 10.0 |
The web administration interface on ReadyNet WRT300N-DD devices with firmware 1.0.26 has a default password of admin for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session.
|
28-11-2016 - 19:42 | 31-12-2015 - 05:59 | |
| CVE-2015-7281 | 6.8 |
Cross-site request forgery (CSRF) vulnerability on ReadyNet WRT300N-DD devices with firmware 1.0.26 allows remote attackers to hijack the authentication of arbitrary users.
|
28-11-2016 - 19:42 | 31-12-2015 - 05:59 | |
| CVE-2015-7282 | 4.3 |
ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.
|
28-11-2016 - 19:42 | 31-12-2015 - 05:59 | |
| CVE-2010-1853 | 6.8 |
Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted magnet URL with a large
|
11-05-2010 - 04:00 | 07-05-2010 - 20:30 |