Skip to main content
CVE-2012-3282 CRITICAL POC THREAT Emergency

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1468. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 35.1%.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
35.1%
Threat
4.6
CVE-2012-3285 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1513. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
26.9%
CVE-2012-3284 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1512. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 26.9% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
26.9%
CVE-2012-3283 CRITICAL Act Now

Unspecified vulnerability on the HP LeftHand Virtual SAN Appliance hydra with software before 10.0 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1511. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 23.2% and no vendor patch available.

HP RCE San Iq Lefthand P4000 Virtual San Appliance
NVD
CVSS 2.0
10.0
EPSS
23.2%
CVE-2013-1120 MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Unity Express with software before 8.0 allow remote attackers to hijack the authentication of unspecified victims via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF Cisco Unity Express Software Unity Express
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
0.6%
CVE-2012-3281 HIGH This Week

Unspecified vulnerability in Device Manager in HP XP P9000 Command View Advanced Edition before 7.4.0-00 allows remote attackers to cause a denial of service via unknown vectors. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service HP Xp P9000 Command View Advanced Edition
NVD
CVSS 2.0
7.8
EPSS
1.4%
CVE-2012-2292 HIGH This Week

The Silverlight cross-domain policy in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 does not restrict access to the Archer application, which allows remote attackers. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Rsa Archer Smartsuite Rsa Archer Egrc
NVD
CVSS 2.0
7.5
EPSS
0.2%
CVE-2012-2294 MEDIUM This Month

EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to conduct clickjacking attacks via a crafted web page. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Rsa Archer Smartsuite Rsa Archer Egrc
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2012-2293 MEDIUM This Month

Directory traversal vulnerability in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allows remote authenticated users to upload files, and consequently execute arbitrary. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal RCE Rsa Archer Smartsuite Rsa Archer Egrc
NVD
CVSS 2.0
6.5
EPSS
1.3%
CVE-2012-3279 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in HP Network Node Manager i (NNMi) 8.x, 9.0x, 9.1x, and 9.20 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

HP XSS Network Node Manager I
NVD
CVSS 2.0
4.3
EPSS
0.6%
CVE-2012-5186 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in FLUGELz netmania myu-s and PHP WeblogSystem allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

PHP XSS Myu S Php Weblog System Mania
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-5187 MEDIUM This Month

The Weathernews Touch application 2.3.2 and earlier for Android allows attackers to obtain sensitive information about logged locations via a crafted application that leverages read permission for. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Google Weathernews Touch
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2012-1064 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to inject arbitrary web script or HTML via. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Rsa Archer Smartsuite Rsa Archer Egrc
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2013-1107 MEDIUM This Month

The search function in Cisco Webex Social (formerly Cisco Quad) allows remote authenticated users to read files via unspecified parameters, aka Bug ID CSCud40235. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cisco Webex Social
NVD
CVSS 2.0
4.0
EPSS
0.2%
CVE-2013-0254 LOW PATCH Monitor

The QSharedMemory class in Qt 5.0.0, 4.8.x before 4.8.5, 4.7.x before 4.7.6, and other versions including 4.4.0 uses weak permissions (world-readable and world-writable) for shared memory segments,. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity.

Privilege Escalation Qt
NVD
CVSS 2.0
3.6
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy