Skip to main content
CVE-2014-2087 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in the CDownloads_Deleted::UpdateDownload function in Downloads_Deleted.cpp in Free Download Manager 3.9.3 build 1360, 3.8 build 1173, 3.0 build 852, and earlier allows. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 36.8%.

RCE Buffer Overflow Free Download Manager
NVD Exploit-DB VulDB
CVSS 2.0
9.3
EPSS
36.8%
Threat
4.5
CVE-2013-2642 CRITICAL POC THREAT Emergency

Sophos Web Appliance before 3.7.8.2 allows (1) remote attackers to execute arbitrary commands via shell metacharacters in the client-ip parameter to the Block page, when using the user_workstation. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 12.0%.

Command Injection Sophos Web Appliance Firmware Web Appliance
NVD Exploit-DB VulDB
CVSS 2.0
9.3
EPSS
12.0%
CVE-2013-3938 CRITICAL Act Now

Integer overflow in xnview.exe in XnView 2.13 allows remote attackers to execute arbitrary code via a large NUM_ELEMENTS field in an IFD_ENTRY structure in a JXR file, which triggers a heap-based. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Epss exploitation probability 12.2% and no vendor patch available.

RCE Buffer Overflow Xnview
NVD VulDB
CVSS 2.0
9.3
EPSS
12.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy