Skip to main content
CVE-2013-6221 CRITICAL POC THREAT Emergency

Directory traversal vulnerability in CommunicationServlet in HP Service Virtualization 3.x before 3.50.1, when the AutoPass license server is enabled, allows remote attackers to create arbitrary. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 84.1%.

Path Traversal HP RCE Service Virtualization
NVD Exploit-DB GitHub
CVSS 2.0
10.0
EPSS
84.1%
Threat
6.0
CVE-2013-5017 CRITICAL Act Now

SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 23.9% and no vendor patch available.

PHP Information Disclosure Web Gateway
NVD
CVSS 3.0
9.8
EPSS
23.9%
CVE-2014-4174 CRITICAL POC PATCH Act Now

wiretap/libpcap.c in the libpcap file parser in Wireshark 1.10.x before 1.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available.

Denial Of Service RCE Buffer Overflow Wireshark
NVD
CVSS 2.0
9.3
EPSS
1.5%
CVE-2014-4152 CRITICAL Act Now

The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 11.4% and no vendor patch available.

RCE Code Injection Open Source Security Information Management
NVD
CVSS 2.0
10.0
EPSS
11.4%
CVE-2014-4151 CRITICAL Act Now

The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to create arbitrary files and execute arbitrary code via a crafted set_file request. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 11.4% and no vendor patch available.

RCE Code Injection Open Source Security Information Management
NVD
CVSS 2.0
10.0
EPSS
11.4%
CVE-2014-0598 CRITICAL Act Now

Directory traversal vulnerability in iPrint in Novell Open Enterprise Server (OES) 11 SP1 before Maintenance Update 9151 on Linux has unspecified impact and remote attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Open Enterprise Server
NVD
CVSS 2.0
10.0
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy