Skip to main content
CVE-2013-2687 HIGH POC PATCH This Week

Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and (2) QNX Momentics Tool Suite through 6.5.0 SP1 in the QNX Software Development. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Buffer Overflow Denial Of Service RCE Qnx Momentics Tool Suite Qnx Software Development Platform +1
NVD
CVSS 2.0
7.8
EPSS
3.7%
CVE-2013-2688 MEDIUM POC PATCH This Month

Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service (application crash) or. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable. Public exploit code available.

Buffer Overflow Denial Of Service RCE Qnx Software Development Platform Qnx Neutrino Rtos
NVD
CVSS 2.0
5.4
EPSS
3.7%
CVE-2013-2704 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the Dropdown Menu Widget plugin 1.9.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that insert. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF WordPress XSS Dropdown Menu Widget
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-3424 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in Administration and View pages in Cisco Secure Access Control System (ACS) allows remote attackers to hijack the authentication of arbitrary users,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Cisco Secure Access Control System
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-3655 MEDIUM This Month

The Sharp AQUOS PhotoPlayer HN-PP150 with firmware before 1.04.00.04 allows remote attackers to cause a denial of service (networking outage) via crafted packet data. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Aquos Hn Pp150 Firmware Aquos Hn Pp150
NVD
CVSS 2.0
5.0
EPSS
1.1%
CVE-2013-3423 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the web interface in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified field, aka. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco XSS Secure Access Control System
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-3422 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in Administration pages in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco XSS Secure Access Control System
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-3421 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the Help index page in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco XSS Secure Access Control System
NVD
CVSS 2.0
4.3
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy