| Max CVSS | 7.2 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-5157 | 7.2 |
arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to gain privileges by triggering an NMI.
|
14-03-2024 - 19:58 | 31-08-2015 - 10:59 | |
| CVE-2002-1561 | 5.0 |
The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference
|
30-04-2019 - 14:27 | 02-04-2003 - 05:00 | |
| CVE-2007-5358 | 6.8 |
Multiple buffer overflows in the voicemail functionality in Asterisk 1.4.x before 1.4.13, when using IMAP storage, might allow (1) remote attackers to execute arbitrary code via a long combination of Content-type and Content-description headers, or (
|
15-10-2018 - 21:43 | 12-10-2007 - 23:17 | |
| CVE-2017-2104 | 4.3 |
The Business LaLa Call App for Android 1.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
|
10-05-2017 - 17:27 | 28-04-2017 - 16:59 | |
| CVE-2005-4477 | 6.8 |
Cross-site scripting (XSS) vulnerability in papaya CMS 4.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the bab[searchfor] parameter.
|
20-09-2008 - 04:43 | 22-12-2005 - 11:03 |