Skip to main content
CVE-2013-0640 HIGH POC KEV THREAT Act Now

Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Buffer Overflow Memory Corruption Denial Of Service RCE Adobe
NVD Exploit-DB VulDB
CVSS 3.1
7.8
EPSS
92.4%
Threat
7.3
CVE-2013-0641 HIGH KEV THREAT Act Now

Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute arbitrary code via a crafted PDF document, as exploited in. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and EPSS exploitation probability 88.0%.

Adobe Buffer Overflow RCE
NVD VulDB
CVSS 3.1
7.8
EPSS
88.0%
Threat
5.7
CVE-2013-1402 MEDIUM POC THREAT This Month

DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 11.3%.

Information Disclosure Digilibe
NVD Exploit-DB
CVSS 2.0
5.0
EPSS
11.3%
CVE-2012-5188 CRITICAL PATCH Act Now

Untrusted search path vulnerability in mora Downloader before 1.0.0.1 allows remote attackers to trigger the launch of a .exe file via unspecified vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Mora Downloader
NVD
CVSS 2.0
10.0
EPSS
1.7%
CVE-2012-5634 MEDIUM This Month

Xen 4.2.x, 4.1.x, and 4.0, when using Intel VT-d for PCI passthrough, does not properly configure VT-d when supporting a device that is behind a legacy PCI Bridge, which allows local guests to cause. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Denial Of Service Xen
NVD
CVSS 2.0
6.1
EPSS
0.4%
CVE-2013-0701 MEDIUM This Month

SQL injection vulnerability in Cybozu Garoon 2.5.0 through 3.5.3 allows remote authenticated users to execute arbitrary SQL commands by leveraging a logging privilege. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

SQLi Garoon
NVD
CVSS 2.0
6.0
EPSS
0.3%
CVE-2013-0153 MEDIUM This Month

The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, when using AMD-Vi for PCI passthrough, uses the same interrupt remapping table for the host and all guests, which allows guests to. Rated medium severity (CVSS 4.7). No vendor patch available.

Denial Of Service Amd Xen
NVD
CVSS 2.0
4.7
EPSS
0.1%
CVE-2013-0702 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Cybozu Garoon 2.0.0 through 3.5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Garoon
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2012-5564 LOW Monitor

android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log. Rated low severity (CVSS 3.3). No vendor patch available.

Information Disclosure Google Android Debug Bridge
NVD
CVSS 2.0
3.3
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy