| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-2497 | 4.3 |
The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.
|
28-09-2022 - 20:39 | 21-03-2014 - 14:55 | |
| CVE-2018-15776 | 4.6 |
Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 contain an improper error handling vulnerability. An unauthenticated attacker with physical access to the system could potentially exploit this vulnerability to get access to the u-boot shell.
|
24-08-2020 - 17:37 | 13-12-2018 - 22:29 | |
| CVE-2018-15774 | 6.5 |
Dell EMC iDRAC7/iDRAC8 versions prior to 2.61.60.60 and iDRAC9 versions prior to 3.20.21.20, 3.21.24.22, 3.21.26.22, and 3.23.23.23 contain a privilege escalation vulnerability. An authenticated malicious iDRAC user with operator privileges could pot
|
09-10-2019 - 23:35 | 13-12-2018 - 22:29 | |
| CVE-2017-5970 | 5.0 |
The ipv4_pktinfo_prepare function in net/ipv4/ip_sockglue.c in the Linux kernel through 4.9.9 allows attackers to cause a denial of service (system crash) via (1) an application that makes crafted system calls or possibly (2) IPv4 traffic with invali
|
03-10-2019 - 00:03 | 14-02-2017 - 06:59 | |
| CVE-2015-2430 | 9.3 |
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow attackers to bypass an application sandbox protection mechanism and perform uns
|
15-05-2019 - 15:10 | 15-08-2015 - 00:59 | |
| CVE-2006-0222 | 4.3 |
Cross-site scripting (XSS) vulnerability in fullview.php in AlstraSoft Template Seller Pro allows remote attackers to inject arbitrary web script or HTML via the tempid parameter.
|
19-10-2018 - 15:43 | 16-01-2006 - 21:03 | |
| CVE-2013-5488 | 5.0 |
Cisco Common Services, as used in Cisco Prime LAN Management Solution (LMS), Cisco Security Manager, Cisco Unified Service Monitor, and Cisco Unified Operations Manager, does not properly interact with the ActiveMQ component, which allows remote atta
|
29-08-2017 - 01:33 | 12-09-2013 - 13:28 | |
| CVE-2007-5718 | 4.9 |
vobcopy 0.5.14 allows local users to append data to an arbitrary file, or create an arbitrary new file, via a symlink attack on the (1) /tmp/vobcopy.bla or (2) /tmp/vobcopy_0.5.14.log temporary file.
|
29-07-2017 - 01:33 | 30-10-2007 - 21:46 | |
| CVE-2002-2415 | 6.8 |
Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service.
|
05-09-2008 - 20:33 | 31-12-2002 - 05:00 |