Skip to main content
CVE-2013-2050 HIGH POC THREAT Act Now

SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine (CFME) 5.1 and ManageIQ Enterprise Virtualization Manager 5.0 and earlier allows remote. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 54.2%.

Red Hat SQLi Cloudforms Management Engine Manageiq Enterprise Virtualization Manager
NVD
CVSS 2.0
7.5
EPSS
54.2%
Threat
4.6
CVE-2013-3713 MEDIUM POC This Month

The image creation configuration in aaa_base before 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain. Rated medium severity (CVSS 4.4). Public exploit code available and no vendor patch available.

Information Disclosure Opensuse
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2014-0618 HIGH This Week

Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Juniper Junos Srx100 Srx110 +10
NVD
CVSS 2.0
7.8
EPSS
0.5%
CVE-2013-4517 MEDIUM PATCH This Month

Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs),. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Denial Of Service Apache Java Santuario Xml Security For Java
NVD
CVSS 2.0
4.3
EPSS
8.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy