Skip to main content
CVE-2013-3918 HIGH POC KEV PATCH THREAT Act Now

The InformationCardSigninHelper Class ActiveX control in icardie.dll in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Denial Of Service Buffer Overflow Microsoft RCE
NVD Exploit-DB VulDB
CVSS 3.1
8.8
EPSS
87.0%
Threat
7.4
CVE-2013-4740 MEDIUM POC PATCH This Month

goodix_tool.c in the Goodix gt915 touchscreen driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, relies on. Rated medium severity (CVSS 6.9). Public exploit code available.

Google Denial Of Service Linux Buffer Overflow Race Condition +2
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2013-4511 MEDIUM POC PATCH This Month

Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entirety of kernel memory, and. Rated medium severity (CVSS 6.9). Public exploit code available.

Buffer Overflow Linux Linux Kernel
NVD GitHub
CVSS 2.0
6.9
EPSS
0.1%
CVE-2013-6122 MEDIUM POC PATCH This Month

goodix_tool.c in the Goodix gt915 touchscreen driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly. Rated medium severity (CVSS 6.9). Public exploit code available.

Google Denial Of Service Linux Buffer Overflow Qualcomm +1
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2013-6763 MEDIUM POC PATCH This Month

The uio_mmap_physical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service (memory. Rated medium severity (CVSS 6.9). Public exploit code available.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
6.9
EPSS
0.0%
CVE-2013-5726 MEDIUM POC This Month

Tweetbot 1.3.3 for Mac, and 2.8.5 for iPad and iPhone, does not require confirmation of (1) follow or (2) favorite actions, which allows remote attackers to automatically force the user to perform. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF Tweetbot
NVD
CVSS 2.0
6.8
EPSS
0.3%
CVE-2013-4516 MEDIUM POC PATCH This Month

The mp_get_count function in drivers/staging/sb105x/sb_pci_mp.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. Public exploit code available.

Information Disclosure Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-4512 MEDIUM POC PATCH This Month

Buffer overflow in the exitcode_proc_write function in arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other. Rated medium severity (CVSS 4.7). Public exploit code available.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.7
EPSS
0.1%
CVE-2013-4514 MEDIUM POC PATCH This Month

Multiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c in the Linux kernel before 3.12 allow local users to cause a denial of service or possibly have unspecified other impact by. Rated medium severity (CVSS 4.7). Public exploit code available.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.7
EPSS
0.0%
CVE-2013-4513 MEDIUM PATCH This Month

Buffer overflow in the oz_cdev_write function in drivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity.

Buffer Overflow Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-4515 MEDIUM PATCH This Month

The bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2013-2239 MEDIUM This Month

vzkernel before 042stab080.2 in the OpenVZ modification for the Linux kernel 2.6.32 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel. Rated medium severity (CVSS 4.7). No vendor patch available.

Privilege Escalation Linux Vzkernel
NVD
CVSS 2.0
4.7
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy