Skip to main content
CVE-2013-3586 HIGH POC This Week

Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Samsung Authentication Bypass Smart Viewer Dvr
NVD Exploit-DB
CVSS 2.0
7.6
EPSS
7.8%
CVE-2013-3582 HIGH POC This Week

Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Buffer Overflow Dell Latitude D530 Latitude D531 Latitude D630 +19
NVD
CVSS 2.0
7.6
EPSS
0.8%
CVE-2013-2353 HIGH This Week

Unspecified vulnerability in HP StoreOnce D2D Backup System 1.x before 1.2.19 and 2.x before 2.3.0 allows remote attackers to cause a denial of service via unknown vectors. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service HP Storeonce D2D
NVD
CVSS 2.0
7.8
EPSS
1.4%
CVE-2013-2247 HIGH PATCH This Week

The Fast Permissions Administration module 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.3 for Drupal does not properly restrict access to the modal content callback, which allows remote attackers. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Privilege Escalation Fast Permission Administration
NVD
CVSS 2.0
7.5
EPSS
0.4%
CVE-2013-1432 HIGH PATCH This Week

Xen 4.1.x and 4.2.x, when the XSA-45 patch is in place, does not properly maintain references on pages stored for deferred cleanup, which allows local PV guest kernels to cause a denial of service. Rated high severity (CVSS 7.4).

Denial Of Service Xen
NVD
CVSS 2.0
7.4
EPSS
0.4%
CVE-2013-2072 HIGH This Week

Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of. Rated high severity (CVSS 7.4). No vendor patch available.

Python Buffer Overflow Denial Of Service Xen Debian Linux
NVD
CVSS 2.0
7.4
EPSS
0.4%
CVE-2013-2211 HIGH This Week

The libxenlight (libxl) toolstack library in Xen 4.0.x, 4.1.x, and 4.2.x uses weak permissions for xenstore keys for paravirtualised and emulated serial console devices, which allows local guest. Rated high severity (CVSS 7.4). No vendor patch available.

Privilege Escalation Xen
NVD
CVSS 2.0
7.4
EPSS
0.2%
CVE-2013-2176 HIGH This Week

Unquoted Windows search path vulnerability in the Red Hat Enterprise Virtualization Application Provisioning Tool (RHEV-APT) in the rhev-guest-tools-iso package 3.2 allows local users to gain. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Red Hat Information Disclosure Microsoft Enterprise Virtualization
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2013-3077 HIGH PATCH This Week

Multiple integer overflows in the IP_MSFILTER and IPV6_MSFILTER features in (1) sys/netinet/in_mcast.c and (2) sys/netinet6/in6_mcast.c in the multicast implementation in the kernel in FreeBSD 8.3. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Buffer Overflow Freebsd
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2013-2804 HIGH This Week

The DNP Master Driver in Software Toolbox TOP Server before 5.12.140.0 allows remote attackers to cause a denial of service (master-station infinite loop) via crafted DNP3 packets to TCP port 20000. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Top Server
NVD
CVSS 2.0
7.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy