Skip to main content
CVE-2012-6437 CRITICAL Act Now

The device does not properly authenticate users and the potential exists for a remote user to upload a new firmware image to the Ethernet card, whether it is a corrupt or legitimate firmware image. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 11.8% and no vendor patch available.

Rockwell Authentication Bypass
NVD VulDB
CVSS 3.1
9.8
EPSS
11.8%
CVE-2012-6503 CRITICAL PATCH Act Now

Unspecified vulnerability in the NinjaXplorer component before 1.0.7 for Joomla!. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Com Ninjaxplorer
NVD
CVSS 2.0
10.0
EPSS
0.5%
CVE-2013-0842 CRITICAL Act Now

Google Chrome before 24.0.1312.56 does not properly handle %00 characters in pathnames, which has unspecified impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Google Chrome
NVD
CVSS 2.0
10.0
EPSS
0.4%
CVE-2013-0840 CRITICAL Act Now

Google Chrome before 24.0.1312.56 does not validate URLs during the opening of new windows, which has unspecified impact and remote attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Google Microsoft Chrome
NVD
CVSS 2.0
10.0
EPSS
0.4%
CVE-2013-1104 CRITICAL Act Now

The HTTP Profiling functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.3.101.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Cisco 2000 Wireless Lan Controller 2100 Wireless Lan Controller 2500 Wireless Lan Controller +6
NVD
CVSS 2.0
9.0
EPSS
1.2%
CVE-2013-1105 CRITICAL Act Now

Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.235.3, 7.1 and 7.2 before 7.2.111.3, and 7.3 before 7.3.101.0 allow remote authenticated users to bypass wireless-management. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Cisco Wireless Lan Controller Software 2000 Wireless Lan Controller 2100 Wireless Lan Controller +4
NVD
CVSS 2.0
9.0
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy