Skip to main content
CVE-2013-4115 HIGH PATCH Act Now

Buffer overflow in the idnsALookup function in dns_internal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service (memory corruption and server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 75.1%.

Buffer Overflow Denial Of Service Opensuse Squid
NVD
CVSS 2.0
7.5
EPSS
75.1%
CVE-2013-4147 HIGH POC THREAT Act Now

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 10.6%.

Denial Of Service RCE Yard Radius
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
10.6%
CVE-2013-4789 HIGH POC PATCH This Week

SQL injection vulnerability in modules/rss/rss.php in Cotonti before 0.9.14 allows remote attackers to execute arbitrary SQL commands via the "c" parameter to index.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

PHP SQLi Cotonti Siena
NVD Exploit-DB GitHub
CVSS 2.0
7.5
EPSS
1.0%
CVE-2013-4742 HIGH This Week

Buffer overflow in NetWin SurgeFTP before 23d2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string within the authentication request. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service RCE Surgeftp
NVD
CVSS 2.0
7.5
EPSS
3.7%
CVE-2013-4943 HIGH This Week

The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Siemens Comos
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2012-3039 HIGH This Week

Moxa OnCell Gateway G3111, G3151, G3211, and G3251 devices with firmware before 1.4 do not use a sufficient source of entropy for SSH and SSL keys, which makes it easier for remote attackers to. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Oncell Gateway Firmware Oncell Gateway G3111 Oncell Gateway G3151 Oncell Gateway G3211 +1
NVD
CVSS 2.0
7.1
EPSS
0.5%
CVE-2013-2792 HIGH This Week

Schweitzer Engineering Laboratories (SEL) SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service (infinite loop) via a crafted DNP3 TCP packet. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Sel 2241 Sel 3505 Sel 3530 Sel 3530 4
NVD
CVSS 2.0
7.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy