Skip to main content
CVE-2013-7409 HIGH POC THREAT Act Now

Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 82.1%.

Denial Of Service RCE Buffer Overflow Allplayer
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
82.1%
Threat
5.5
CVE-2013-3304 MEDIUM POC THREAT This Month

Directory traversal vulnerability in Dell EqualLogic PS4000 with firmware 6.0 allows remote attackers to read arbitrary files via a .. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 13.6%.

Path Traversal Dell Equallogic Ps4000 Firmware
NVD Exploit-DB
CVSS 2.0
5.0
EPSS
13.6%
CVE-2014-3446 HIGH This Week

SQL injection vulnerability in wcm/system/pages/admin/getnode.aspx in BSS Continuity CMS 4.2.22640.0 allows remote attackers to execute arbitrary SQL commands via the nodeid parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Continuity Cms
NVD
CVSS 2.0
7.5
EPSS
0.4%
CVE-2014-3684 MEDIUM This Month

The tm_adopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 5.0.x, 4.5.x, 4.2.x, and earlier does not validate that the owner of the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Torque Resource Manager
NVD
CVSS 2.0
6.8
EPSS
2.4%
CVE-2014-3584 MEDIUM PATCH This Month

The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before 2.7.8, and 3.0.x before 3.0.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted SAML token in the. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Apache Cxf
NVD
CVSS 2.0
5.0
EPSS
5.6%
CVE-2014-3623 MEDIUM PATCH This Month

Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used in Apache CXF 2.7.x before 2.7.13 and 3.0.x before 3.0.2, when using TransportBinding, does not properly enforce the SAML SubjectConfirmation. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Apache Authentication Bypass Wss4J Cxf
NVD
CVSS 2.0
5.0
EPSS
2.5%
CVE-2014-7877 MEDIUM This Month

Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. No vendor patch available.

HP Denial Of Service Hp Ux
NVD
CVSS 2.0
4.9
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy