Skip to main content
CVE-2014-2928 HIGH POC THREAT Act Now

The iControl API in F5 BIG-IP LTM, APM, ASM, GTM, Link Controller, and PSM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, BIG-IP AAM 11.4.0 through 11.5.1, BIG-IP AFM and PEM 11.3.0 through 11.5.1,. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 64.6%.

Information Disclosure Big Ip Webaccelerator Big Ip Local Traffic Manager Big Ip Protocol Security Module Big Ip Link Controller +5
NVD Exploit-DB
CVSS 2.0
7.1
EPSS
64.6%
Threat
4.9
CVE-2013-5671 HIGH POC PATCH This Week

lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Information Disclosure Fog Dragonfly
NVD
CVSS 2.0
7.5
EPSS
2.2%
CVE-2013-6453 HIGH PATCH This Week

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Mediawiki
NVD
CVSS 2.0
7.5
EPSS
0.6%
CVE-2013-4571 HIGH PATCH This Week

Buffer overflow in php-luasandbox in the Scribuntu extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 has unspecified impact and remote vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Buffer Overflow Mediawiki
NVD
CVSS 2.0
7.5
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy