Skip to main content
CVE-2013-5578 CRITICAL POC THREAT Emergency

Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote attackers to execute arbitrary code via a long argument. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 34.0%.

Buffer Overflow RCE Staruml
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
34.0%
Threat
4.4
CVE-2013-4247 HIGH POC PATCH This Week

Off-by-one error in the build_unc_path_to_root function in fs/cifs/connect.c in the Linux kernel before 3.9.6 allows remote attackers to cause a denial of service (memory corruption and system crash). Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
7.8
EPSS
0.8%
CVE-2012-6586 HIGH POC This Week

Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Myre Vacation Rental
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
1.0%
CVE-2012-6588 HIGH POC This Week

SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Myre Business Directory
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
0.4%
CVE-2012-6584 HIGH POC This Week

Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote attackers to execute arbitrary SQL commands via the bathrooms1 parameter to (1) demo2/search.php or (2) search.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Myre Realty Manager
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
0.4%
CVE-2013-3462 HIGH This Week

Buffer overflow in Cisco Unified Communications Manager (Unified CM) 7.1(x) before 7.1(5b)su6, 8.5(x) before 8.5(1)su6, 8.6(x) before 8.6(2a)su3, and 9.x before 9.1(2) allows remote authenticated. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Cisco Unified Communications Manager
NVD
CVSS 2.0
8.5
EPSS
8.8%
CVE-2013-4220 MEDIUM POC PATCH This Month

The bad_mode function in arch/arm64/kernel/traps.c in the Linux kernel before 3.9.5 on the ARM64 platform allows local users to cause a denial of service (system crash) via vectors involving an. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-4205 MEDIUM POC PATCH This Month

Memory leak in the unshare_userns function in kernel/user_namespace.c in the Linux kernel before 3.10.6 allows local users to cause a denial of service (memory consumption) via an invalid. Rated medium severity (CVSS 4.7). Public exploit code available.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.7
EPSS
0.1%
CVE-2012-6585 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in search.php in MYRE Realty Manager allows remote attackers to inject arbitrary web script or HTML via the cat_id1 parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Myre Realty Manager
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
0.8%
CVE-2012-6589 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote attackers to inject arbitrary web script or HTML via the look parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Myre Business Directory
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
0.8%
CVE-2012-6587 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote attackers to inject arbitrary web script or HTML via the link_idd. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

PHP XSS Myre Vacation Rental
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
0.7%
CVE-2013-3460 HIGH This Week

Memory leak in Cisco Unified Communications Manager (Unified CM) 8.5(x) before 8.5(1)su6, 8.6(x) before 8.6(2a)su3, and 9.x before 9.1(1) allows remote attackers to cause a denial of service (service. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Communications Manager
NVD
CVSS 2.0
7.8
EPSS
0.5%
CVE-2013-3459 HIGH This Week

Cisco Unified Communications Manager (Unified CM) 7.1(x) before 7.1(5b)su6a does not properly handle errors, which allows remote attackers to cause a denial of service (service disruption) via. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Communications Manager
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2013-3390 HIGH This Week

Memory leak in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (memory consumption) via a flood of. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Prime Central For Hosted Collaboration Solution Assurance
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2013-3389 HIGH This Week

Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (memory consumption) via a flood of TCP packets to. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Prime Central For Hosted Collaboration Solution Assurance
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2013-3388 HIGH This Week

Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (memory consumption) via a flood of TCP packets to. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Prime Central For Hosted Collaboration Solution Assurance
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2013-3387 HIGH This Week

Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.x before 9.2(1) allows remote attackers to cause a denial of service (disk consumption) via a flood of TCP packets to. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Prime Central For Hosted Collaboration Solution Assurance
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2013-4219 HIGH This Week

Multiple integer overflows in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400 devices allow remote attackers to cause a denial of service (component crash) or. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Intel Denial Of Service RCE Wimax Network Service
NVD
CVSS 2.0
7.5
EPSS
1.6%
CVE-2013-3461 HIGH This Week

Cisco Unified Communications Manager (Unified CM) 8.5(x) and 8.6(x) before 8.6(2a)su3 and 9.x before 9.1(1) does not properly restrict the rate of SIP packets, which allows remote attackers to cause. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Unified Communications Manager
NVD
CVSS 2.0
7.1
EPSS
0.5%
CVE-2013-4254 MEDIUM PATCH This Month

The validate_event function in arch/arm/kernel/perf_event.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service (NULL pointer. Rated medium severity (CVSS 6.9).

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
6.9
EPSS
0.0%
CVE-2013-4218 LOW Monitor

The InitMethodAndPassword function in InfraStack/OSAgnostic/WiMax/Agents/Supplicant/Source/SupplicantAgent.c in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless WiMAX Connection 2400. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-4217 LOW Monitor

The OSAL_Crypt_SetEncryptedPassword function in InfraStack/OSDependent/Linux/OSAL/Services/wimax_osal_crypt_services.c in the OSAL crypt module in the Intel WiMAX Network Service through 1.5.2 for. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-4216 LOW Monitor

The Trace_OpenLogFile function in InfraStack/OSDependent/Linux/InfraStackModules/TraceModule/TraceModule.c in the Trace module in the Intel WiMAX Network Service through 1.5.2 for Intel Wireless. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Intel Denial Of Service Wimax Network Service
NVD
CVSS 2.0
2.1
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy