Skip to main content
CVE-2013-4983 CRITICAL POC THREAT Emergency

The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 92.7%.

PHP Command Injection Web Appliance Firmware
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
92.7%
Threat
6.3
CVE-2013-3934 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 43.6%.

Buffer Overflow Microsoft RCE Office 2012 Writer 2012
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
43.6%
Threat
4.7
CVE-2013-3658 CRITICAL Act Now

Directory traversal vulnerability in VMware ESXi 4.0 through 5.0, and ESX 4.0 and 4.1, allows remote attackers to delete arbitrary host OS files via unspecified vectors. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

VMware Path Traversal Esx ESXi
NVD
CVSS 2.0
9.4
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy