Skip to main content
CVE-2012-6096 HIGH POC THREAT Act Now

Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core before 3.4.4, and Icinga 1.6.x before 1.6.2, 1.7.x before 1.7.4, and 1.8.x before 1.8.4, might allow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 79.9%.

Buffer Overflow RCE Nagios Icinga
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
79.9%
Threat
5.4
CVE-2012-2137 MEDIUM This Month

Buffer overflow in virt/kvm/irq_comm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via vectors. Rated medium severity (CVSS 6.9). No vendor patch available.

Buffer Overflow Denial Of Service Linux RCE Linux Kernel +1
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2012-4414 MEDIUM This Month

Multiple SQL injection vulnerabilities in the replication code in Oracle MySQL possibly before 5.5.29, and MariaDB 5.1.x through 5.1.62, 5.2.x through 5.2.12, 5.3.x through 5.3.7, and 5.5.x through. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Oracle MySQL MariaDB
NVD VulDB
CVSS 2.0
6.5
EPSS
0.4%
CVE-2012-4918 MEDIUM This Month

Call of Duty Elite for iOS 2.0.1 does not properly validate the server SSL certificate, which allows remote attackers to obtain sensitive information via a Man-in-the-Middle (MITM) attack. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Apple Call Of Duty Elite
NVD
CVSS 2.0
5.8
EPSS
0.2%
CVE-2012-3364 MEDIUM This Month

Multiple stack-based buffer overflows in the Near Field Communication Controller Interface (NCI) in the Linux kernel before 3.4.5 allow remote attackers to cause a denial of service (crash) and. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Linux RCE Linux Kernel
NVD GitHub
CVSS 2.0
5.0
EPSS
1.6%
CVE-2012-2119 MEDIUM This Month

Buffer overflow in the macvtap device driver in the Linux kernel before 3.4.5, when running in certain configurations, allows privileged KVM guest users to cause a denial of service (crash) via a. Rated medium severity (CVSS 5.2). No vendor patch available.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
5.2
EPSS
0.3%
CVE-2012-2372 MEDIUM This Month

The rds_ib_xmit function in net/rds/ib_send.c in the Reliable Datagram Sockets (RDS) protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service. Rated medium severity (CVSS 4.4). No vendor patch available.

Denial Of Service Linux Linux Kernel
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2012-6502 LOW Monitor

Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information about the existence of files, and read certain data from files, via a UNC share pathname in the SRC. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Microsoft Internet Explorer
NVD
CVSS 2.0
2.6
EPSS
6.5%
CVE-2012-4461 LOW Monitor

The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the. Rated low severity (CVSS 1.9). No vendor patch available.

Denial Of Service Linux Linux Kernel
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2012-5616 LOW Monitor

Apache CloudStack 4.0.0-incubating and Citrix CloudPlatform (formerly Citrix CloudStack) before 3.0.6 stores sensitive information in the log4j.conf log file, which allows local users to obtain (1). Rated low severity (CVSS 1.5). No vendor patch available.

Citrix Apache Authentication Bypass Cloudstack Cloudplatform
NVD
CVSS 2.0
1.5
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy