Skip to main content
CVE-2014-3791 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 allows remote attackers to execute arbitrary code via a long string in a cookie UserID parameter to vfolder.ghp. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 77.2%.

RCE Buffer Overflow Easy File Sharing Web Server
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
77.2%
Threat
5.8
CVE-2014-3444 CRITICAL POC THREAT Emergency

The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 27.6%.

RCE Denial Of Service Code Injection Realplayer
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
27.6%
Threat
4.2
CVE-2014-3412 CRITICAL Act Now

Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Juniper Information Disclosure Junos Space Junos Space Ja1500 Appliance Junos Space Ja2500 Appliance
NVD
CVSS 2.0
10.0
EPSS
1.9%
CVE-2013-7383 CRITICAL Act Now

x2gocleansessions in X2Go Server before 4.0.0.8 and 4.0.1.x before 4.0.1.10 allows remote authenticated users to gain privileges via unspecified vectors, possibly related to backticks. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation X2Go Server
NVD
CVSS 2.0
9.0
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy