Skip to main content
CVE-2013-3607 CRITICAL POC THREAT Emergency

Multiple stack-based buffer overflows in the web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 14.6%.

Buffer Overflow RCE H8Dcl 6F H8Dcl If H8Dct Hibqf +123
NVD
CVSS 2.0
10.0
EPSS
14.6%
CVE-2013-3608 CRITICAL POC Act Now

The web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*, X8SI*, X9DAX-*, X9DB*, X9DR*, X9QR*,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure H8Dcl 6F H8Dcl If H8Dct Hibqf H8Dct Hln4F +122
NVD
CVSS 2.0
10.0
EPSS
1.9%
CVE-2013-3609 CRITICAL POC Act Now

The web interface in the Intelligent Platform Management Interface (IPMI) implementation on Supermicro H8DC*, H8DG*, H8SCM-F, H8SGL-F, H8SM*, X7SP*, X8DT*, X8SI*, X9DAX-*, X9DB*, X9DR*, X9QR*,. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass H8Dcl 6F H8Dcl If H8Dct Hibqf H8Dct Hln4F +122
NVD
CVSS 2.0
10.0
EPSS
1.6%
CVE-2013-3458 HIGH This Week

Cisco Adaptive Security Appliances (ASA) devices, when SMP is used, do not properly process X.509 certificates, which allows remote attackers to cause a denial of service (device crash) via a large. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Cisco Adaptive Security Appliance Software
NVD
CVSS 2.0
7.1
EPSS
0.5%
CVE-2013-5132 MEDIUM This Month

Apple AirPort Base Station Firmware before 7.6.4 does not properly handle incorrect frame lengths, which allows remote attackers to cause a denial of service (device crash) by associating with the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Apple Airport Base Station Firmware
NVD
CVSS 2.0
5.4
EPSS
0.4%
CVE-2013-0531 MEDIUM This Month

The SSL implementation in IBM Security AppScan Enterprise before 8.7.0.1 enables cipher suites with weak encryption algorithms, which makes it easier for remote attackers to obtain sensitive. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure IBM Security Appscan
NVD
CVSS 2.0
5.0
EPSS
0.1%
CVE-2013-5483 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in bookmarklet.jsp in Cisco SocialMiner allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCuh73868. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco XSS Socialminer
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-3596 MEDIUM This Month

AdvancePro Advanceware allows remote authenticated users to obtain sensitive information about arbitrary customers' orders via a modified id parameter. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Advanceware
NVD
CVSS 2.0
4.0
EPSS
0.2%
CVE-2013-2997 LOW Monitor

IBM Security AppScan Enterprise before 8.7 does not invalidate the session context upon a logout action, which allows remote attackers to hijack sessions by leveraging an unattended workstation. Rated low severity (CVSS 1.7), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation IBM Security Appscan
NVD
CVSS 2.0
1.7
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy