| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-5158 | 2.1 |
Stack-based buffer overflow in hw/scsi/scsi-bus.c in QEMU, when built with SCSI-device emulation support, allows guest OS users with CAP_SYS_RAWIO permissions to cause a denial of service (instance crash) via an invalid opcode in a SCSI command descr
|
08-09-2020 - 13:54 | 12-04-2016 - 01:59 | |
| CVE-2019-1751 | 7.8 |
A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could allow an unauthenticated, remote attacker to cause either an interface queue wedge or a device reload. The vulnerability is due to the incorrect handl
|
09-10-2019 - 23:47 | 28-03-2019 - 00:29 | |
| CVE-2015-5378 | 5.0 |
Logstash 1.5.x before 1.5.3 and 1.4.x before 1.4.4 allows remote attackers to read communications between Logstash Forwarder agent and Logstash server.
|
17-06-2019 - 15:48 | 27-06-2017 - 20:29 | |
| CVE-2015-5622 | 3.5 |
Cross-site scripting (XSS) vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the Author or Contributor role to place a crafted shortcode inside an HTML element, related to w
|
04-11-2017 - 01:29 | 03-08-2015 - 14:59 | |
| CVE-2006-1921 | 6.4 |
nettools.php in PHP Net Tools 2.7.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the host parameter.
|
19-10-2017 - 01:29 | 20-04-2006 - 18:06 | |
| CVE-2003-0244 | 5.0 |
The route cache implementation in Linux 2.4, and the Netfilter IP conntrack module, allows remote attackers to cause a denial of service (CPU consumption) via packets with forged source addresses that cause a large number of hash table collisions.
|
11-10-2017 - 01:29 | 27-05-2003 - 04:00 | |
| CVE-2008-0692 | 7.5 |
SQL injection vulnerability in bidhistory.php in iTechBids 3 Gold and 5.0 allows remote attackers to execute arbitrary SQL commands via the item_id parameter.
|
29-09-2017 - 01:30 | 12-02-2008 - 01:00 | |
| CVE-2015-3228 | 6.8 |
Integer overflow in the gs_heap_alloc_bytes function in base/gsmalloc.c in Ghostscript 9.15 and earlier allows remote attackers to cause a denial of service (crash) via a crafted Postscript (ps) file, as demonstrated by using the ps2pdf command, whic
|
21-09-2017 - 01:29 | 11-08-2015 - 14:59 | |
| CVE-2015-5623 | 4.0 |
WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass intended access restrictions and create drafts by leveraging the Subscriber role, as demonstrated by a post-quickdraft-save a
|
21-09-2017 - 01:29 | 03-08-2015 - 14:59 | |
| CVE-2014-0878 | 5.8 |
The IBMSecureRandom component in the IBMJCE and IBMSecureRandom cryptographic providers in IBM SDK Java Technology Edition 5.0 before Service Refresh 16 FP6, 6 before Service Refresh 16, 6.0.1 before Service Refresh 8, 7 before Service Refresh 7, and
|
29-08-2017 - 01:34 | 26-05-2014 - 19:55 | |
| CVE-2017-2316 | 2.1 |
A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading to a denial of service.
|
27-04-2017 - 16:55 | 24-04-2017 - 15:59 | |
| CVE-2012-2150 | 5.0 |
xfs_metadump in xfsprogs before 3.2.4 does not properly obfuscate file data, which allows remote attackers to obtain sensitive information by reading a generated image.
|
07-12-2016 - 03:00 | 25-08-2015 - 17:59 | |
| CVE-2014-8873 | 10.0 |
A .desktop file in the Debian openjdk-7 package 7u79-2.5.5-1~deb8u1 includes a MIME type registration that is added to /etc/mailcap by mime-support, which allows remote attackers to execute arbitrary code via a JAR file.
|
10-11-2015 - 16:32 | 09-11-2015 - 16:59 |