Skip to main content
CVE-2013-6420 HIGH POC PATCH THREAT Act Now

The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 40.2%.

Denial Of Service Buffer Overflow PHP OpenSSL RCE +2
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
40.2%
Threat
4.2
CVE-2013-6925 HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Ruggedcom Rugged Operating System
NVD
CVSS 2.0
8.3
EPSS
0.6%
CVE-2013-6329 HIGH PATCH This Week

IBM Global Security Kit (aka GSKit), as used in Content Manager OnDemand 8.5 and 9.0 and other products, allows remote attackers to cause a denial of service via a crafted handshake during resumption. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service IBM Content Manager Ondemand For Multiplatforms Global Security Kit Security Access Manager For Web
NVD
CVSS 2.0
7.8
EPSS
2.4%
CVE-2013-6926 HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD
CVSS 2.0
8.0
EPSS
0.3%
CVE-2013-2814 HIGH This Week

Cooper Power Systems Cybectec DNP3 Master OPC Server allows remote attackers to cause a denial of service (unhandled exception and process crash) via unspecified vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Dnp3 Master Opc Server
NVD
CVSS 2.0
7.1
EPSS
0.5%
CVE-2013-2813 HIGH This Week

The DNP3 component in Cooper Power Systems SMP 4, 4/DP, and 16 gateways allows remote attackers to cause a denial of service (reboot or link outage) via a crafted DNP3 TCP packet. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Smp 16 Gateway Data Concentrator Smp 4 Dp Gateway Data Concentrator Smp 4 Gateway Data Concentrator
NVD
CVSS 2.0
7.1
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy