|Max CVSS||9.3||Min CVSS||5.1||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCalendar property name.
|03-05-2022 - 14:27||03-06-2019 - 20:29|
As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR < 60.8, Firefox <
|24-08-2020 - 17:37||23-07-2019 - 14:15|
getchar.c in Vim before 8.1.1365 and Neovim before 0.3.6 allows remote attackers to execute arbitrary OS commands via the :source! command in a modeline, as demonstrated by execute in Vim, and assert_fails or nvim_input in Neovim.
|13-06-2019 - 21:29||05-06-2019 - 14:29|