Skip to main content
CVE-2013-4973 CRITICAL Act Now

Stack-based buffer overflow in RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted .rmp file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Epss exploitation probability 11.8% and no vendor patch available.

Buffer Overflow RCE Realplayer Realplayer Sp
NVD
CVSS 2.0
9.3
EPSS
11.8%
CVE-2013-4974 CRITICAL Act Now

RealNetworks RealPlayer before 16.0.3.51, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service RCE Realplayer Realplayer Sp
NVD
CVSS 2.0
9.3
EPSS
4.9%
CVE-2013-0595 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Lotus Domino Lotus Inotes
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-0566 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Accelerator JSPs, (2) Organization Administration Console JSPs, and (3) Administration Console JSPs in WebSphere Commerce Tools in IBM. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Websphere Commerce
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-0591 LOW Monitor

Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Lotus Domino Lotus Inotes
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2013-0590 LOW Monitor

Cross-site scripting (XSS) vulnerability in iNotes 8.5.x in IBM Lotus Domino 8.5 before 8.5.3 FP5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, aka. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Lotus Domino Lotus Inotes
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2013-0586 LOW Monitor

Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to inject arbitrary web script. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

IBM XSS Cognos Business Intelligence
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2013-2988 LOW Monitor

Absolute path traversal vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to read files by leveraging the. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal IBM Cognos Business Intelligence
NVD
CVSS 2.0
2.6
EPSS
0.2%
CVE-2013-2978 LOW Monitor

Absolute path traversal vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to read files by leveraging the. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable. No vendor patch available.

Path Traversal IBM Cognos Business Intelligence
NVD
CVSS 2.0
2.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy