Max CVSS | 9.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-2187 | 4.9 |
The gtco_probe function in drivers/input/tablet/gtco.c in the Linux kernel through 4.5.2 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device desc
|
12-09-2023 - 14:45 | 02-05-2016 - 10:59 | |
CVE-2018-7105 | 9.0 |
A security vulnerability in HPE Integrated Lights-Out 5 (iLO 5) for HPE Gen10 Servers prior to v1.35, HPE Integrated Lights-Out 4 (iLO 4) prior to v2.61, HPE Integrated Lights-Out 3 (iLO 3) prior to v1.90 could be remotely exploited to execute arbitr
|
03-10-2019 - 00:03 | 27-09-2018 - 18:29 | |
CVE-2007-4543 | 4.3 |
Cross-site scripting (XSS) vulnerability in enter_bug.cgi in Bugzilla 2.17.1 through 2.20.4, 2.22.x before 2.22.3, and 3.x before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via the buildid field in the "guided form."
|
15-10-2018 - 21:36 | 27-08-2007 - 21:17 | |
CVE-2007-4538 | 5.0 |
email_in.pl in Bugzilla 2.23.4 through 3.0.0 allows remote attackers to execute arbitrary commands via the -f (From address) option to the Email::Send::Sendmail function, probably involving shell metacharacters.
|
15-10-2018 - 21:35 | 27-08-2007 - 21:17 | |
CVE-2007-4539 | 5.0 |
The WebService (XML-RPC) interface in Bugzilla 2.23.3 through 3.0.0 does not enforce permissions for the time-tracking fields of bugs, which allows remote attackers to obtain sensitive information via certain XML-RPC requests, as demonstrated by the
|
15-10-2018 - 21:35 | 27-08-2007 - 21:17 | |
CVE-2002-1409 | 2.1 |
ptrace on HP-UX 11.00 through 11.11 allows local users to cause a denial of service (data page fault panic) via "an incorrect reference to thread register state."
|
11-10-2017 - 01:29 | 11-04-2003 - 04:00 | |
CVE-2015-5070 | 3.5 |
The (1) filesystem::get_wml_location function in filesystem.cpp and (2) is_legal_file function in filesystem_boost.cpp in Battle for Wesnoth before 1.12.4 and 1.13.x before 1.13.1, when a case-insensitive filesystem is used, allow remote attackers to
|
10-10-2017 - 14:54 | 26-09-2017 - 14:29 | |
CVE-2005-4647 | 7.5 |
Multiple SQL injection vulnerabilities in PEARLINGER Pearl Forums 2.4 allow remote attackers to execute arbitrary SQL commands via the (1) forumsId and (2) topicId parameters in index.php. NOTE: the provenance of this information is unknown; the det
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 |