Skip to main content
CVE-2013-1336 MEDIUM This Month

The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check signatures, which allows remote attackers to make undetected changes to signed. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 60.2% and no vendor patch available.

Information Disclosure Microsoft Net Framework
NVD
CVSS 2.0
5.0
EPSS
60.2%
CVE-2013-0096 MEDIUM This Month

Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Epss exploitation probability 41.3% and no vendor patch available.

Privilege Escalation Microsoft Windows Essentials
NVD
CVSS 2.0
6.8
EPSS
41.3%
CVE-2013-1301 MEDIUM This Month

Microsoft Visio 2003 SP3 2007 SP3, and 2010 SP1 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference,. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 27.8% and no vendor patch available.

Information Disclosure Microsoft Visio
NVD
CVSS 2.0
4.3
EPSS
27.8%
CVE-2013-1297 MEDIUM This Month

Microsoft Internet Explorer 6 through 8 does not properly restrict data access by VBScript, which allows remote attackers to perform cross-domain reading of JSON files via a crafted web site, aka. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 14.5% and no vendor patch available.

Information Disclosure Microsoft Internet Explorer
NVD
CVSS 2.0
4.3
EPSS
14.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy