Skip to main content
CVE-2013-2068 CRITICAL POC THREAT Emergency

Multiple directory traversal vulnerabilities in the AgentController in Red Hat CloudForms Management Engine 2.0 allow remote attackers to create and overwrite arbitrary files via a .. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 78.5%.

Red Hat Path Traversal Cloudforms Management Engine
NVD Exploit-DB
CVSS 2.0
9.4
EPSS
78.5%
Threat
5.7
CVE-2013-5959 HIGH This Week

Blue Coat ProxySG before 6.2.14.1, 6.3.x, 6.4.x, and 6.5 before 6.5.2 allows remote attackers to cause a denial of service (memory consumption and dropped connections) via a recursive href in an HTML. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service Proxysgos Proxysg
NVD
CVSS 2.0
7.1
EPSS
0.7%
CVE-2013-4244 MEDIUM PATCH This Month

The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service RCE Libtiff
NVD GitHub
CVSS 2.0
6.8
EPSS
0.7%
CVE-2013-0598 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the Web Client in IBM Rational ClearQuest 7.1 before 7.1.2.12, 8.0 before 8.0.0.8, and 8.0.1 before 8.0.1.1 allows remote attackers to hijack the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF IBM Rational Clearquest
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2013-4112 MEDIUM PATCH This Month

The DiagnosticsHandler in JGroup 3.0.x, 3.1.x, 3.2.x before 3.2.9, and 3.3.x before 3.3.3 allows remote attackers to obtain sensitive information (diagnostic information) and execute arbitrary code. Rated medium severity (CVSS 5.4). This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure RCE Jgroup Jboss Enterprise Application Platform
NVD
CVSS 2.0
5.4
EPSS
0.6%
CVE-2013-4276 MEDIUM PATCH This Month

Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Buffer Overflow Denial Of Service Little Cms Color Engine
NVD
CVSS 2.0
4.3
EPSS
2.3%
CVE-2013-5161 MEDIUM This Month

Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or. Rated medium severity (CVSS 4.4). No vendor patch available.

Privilege Escalation Apple Iphone Os
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2013-5160 LOW Monitor

Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of. Rated low severity (CVSS 3.3). No vendor patch available.

Privilege Escalation Denial Of Service Apple Iphone Os
NVD
CVSS 2.0
3.3
EPSS
0.0%
CVE-2013-1921 LOW Monitor

PicketBox, as used in Red Hat JBoss Enterprise Application Platform before 6.1.1, allows local users to obtain the admin encryption key by reading the Vault data file. Rated low severity (CVSS 1.9). No vendor patch available.

Red Hat Hashicorp Information Disclosure Jboss Enterprise Application Platform
NVD
CVSS 2.0
1.9
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy