Skip to main content
CVE-2013-4979 CRITICAL POC THREAT Emergency

Buffer overflow in the gldll32.dll module in EPS Viewer 3.2 and earlier allows remote attackers to execute arbitrary code via a crafted EPS file. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 11.7%.

Buffer Overflow RCE Eps Viewer
NVD
CVSS 2.0
9.3
EPSS
11.7%
CVE-2014-1204 HIGH POC This Week

SQL injection vulnerability in Tableau Server 8.0.x before 8.0.7 and 8.1.x before 8.1.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Tableau Server
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
2.3%
CVE-2014-0001 HIGH PATCH Act Now

Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 20.7%.

Buffer Overflow Denial Of Service Oracle RCE MariaDB +5
NVD
CVSS 2.0
7.5
EPSS
20.7%
CVE-2013-6235 MEDIUM POC PATCH This Month

Multiple cross-site scripting (XSS) vulnerabilities in JAMon (Java Application Monitor) 2.7 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) listenertype or (2). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available.

Java XSS Java Application Monitor
NVD
CVSS 2.0
4.3
EPSS
0.4%
CVE-2014-0757 HIGH This Week

Smart Software Solutions (3S) CoDeSys Runtime Toolkit before 2.4.7.44 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Null Pointer Dereference Codesys Runtime Toolkit
NVD
CVSS 2.0
7.1
EPSS
2.0%
CVE-2013-6143 MEDIUM This Month

The Schneider Electric Telvent SAGE 3030 RTU with firmware C3413-500-001D3_P4 and C3413-500-001F0_PB allows remote attackers to cause a denial of service (temporary outage and CPU consumption) via. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Schneider Electric Telvent Sage 3030 Firmware
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2013-6727 MEDIUM This Month

The Connect client in IBM Sametime 8.5.2 through 8.5.2.1 and 9.0 before HF1 does not properly restrict unsigned Java plugins, which allows remote attackers to obtain sensitive information via. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Java IBM Sametime
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2013-4383 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the jQuery Countdown module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "access administration pages" permission to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Jquery Countdown
NVD
CVSS 2.0
2.1
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy