Skip to main content
CVE-2013-4679 MEDIUM POC This Month

Symantec Workspace Virtualization before 6.x before 6.4.1953.0, when a virtual application layer is configured, allows local users to gain privileges via an application that performs crafted. Rated medium severity (CVSS 6.6). Public exploit code available and no vendor patch available.

Buffer Overflow Workspace Virtualization
NVD Exploit-DB
CVSS 2.0
6.6
EPSS
0.2%
CVE-2013-4805 CRITICAL Act Now

Unspecified vulnerability in HP Integrated Lights-Out 3 (aka iLO3) firmware before 1.60 and 4 (aka iLO4) firmware before 1.30 allows remote attackers to bypass authentication via unknown vectors. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Authentication Bypass Integrated Lights Out Firmware
NVD
CVSS 2.0
9.0
EPSS
0.6%
CVE-2013-4575 HIGH This Week

Heap-based buffer overflow in the utility program in the Linux agent in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote attackers to cause a denial of service (agent. Rated high severity (CVSS 7.9). No vendor patch available.

Buffer Overflow Denial Of Service RCE Backup Exec
NVD
CVSS 2.0
7.9
EPSS
1.3%
CVE-2013-4807 HIGH This Week

Unspecified vulnerability on the HP LaserJet Pro P1102w, P1606dn, M1212nf MFP, M1213nf MFP, M1214nfh MFP, M1216nfh MFP, M1217nfw MFP, M1218nfs MFP, and CP1025nw with firmware before 2013-07-26. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure HP Laserjet Pro Cp1025Nw Firmware Laserjet Pro M1214Nfh Mfp Firmware Laserjet Pro P1606Dn Firmware +6
NVD
CVSS 2.0
7.8
EPSS
1.5%
CVE-2013-3450 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the User WebDialer page in Cisco Unified Communications Manager (Unified CM) allows remote attackers to hijack the authentication of arbitrary users. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Cisco Unified Communications Manager
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-3451 MEDIUM This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in Cisco Unified Communications Manager (Unified CM) allow remote attackers to hijack the authentication of arbitrary users for requests. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Cisco Unified Communications Manager
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-1610 MEDIUM This Month

Unquoted Windows search path vulnerability in RDDService in Symantec PGP Desktop 10.0.x through 10.2.x and Symantec Encryption Desktop 10.3.0 before MP3 allows local users to gain privileges via a. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Microsoft Encryption Desktop Pgp Desktop
NVD
CVSS 2.0
6.8
EPSS
0.0%
CVE-2013-0149 MEDIUM This Month

The OSPF implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.3, IOS-XE 2.x through 3.9.xS, ASA and PIX 7.x through 9.1, FWSM, NX-OS, and StarOS before 14.0.50488 does not properly. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Apple Cisco iOS Ios Xe +5
NVD
CVSS 2.0
5.8
EPSS
0.8%
CVE-2013-4676 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Backup Exec
NVD
CVSS 2.0
4.3
EPSS
0.5%
CVE-2013-4677 MEDIUM This Month

Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive. Rated medium severity (CVSS 4.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Backup Exec
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2013-3442 MEDIUM This Month

The web portal in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to obtain sensitive stack-trace information via unspecified vectors that trigger a stack. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Cisco Unified Communications Manager
NVD
CVSS 2.0
4.0
EPSS
0.2%
CVE-2013-4678 LOW Monitor

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified. Rated low severity (CVSS 2.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Backup Exec
NVD
CVSS 2.0
2.7
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy