Skip to main content
CVE-2015-1171 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in GSM SIM Utility (aka SIM Card Editor) 6.6 allows remote attackers to execute arbitrary code via a long entry in a .sms file. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 76.9%.

RCE Buffer Overflow Sim Card Editor
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
76.9%
Threat
5.8
CVE-2014-9651 HIGH This Week

Buffer overflow in CHICKEN 4.9.0.x before 4.9.0.2, 4.9.x before 4.9.1, and before 5.0 allows attackers to have unspecified impact via a positive START argument to the "substring-index[-ci]. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Chicken
NVD
CVSS 2.0
7.5
EPSS
0.4%
CVE-2015-6266 MEDIUM This Month

The guest portal in Cisco Identity Services Engine (ISE) 3300 1.2(0.899) does not restrict access to uploaded HTML documents, which allows remote attackers to obtain sensitive information from. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Identity Services Engine Software
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2015-2987 LOW PATCH Monitor

Type74 ED before 4.0 misuses 128-bit ECB encryption for small files, which makes it easier for attackers to obtain plaintext data via differential cryptanalysis of a file with an original length. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

Information Disclosure Ed
NVD
CVSS 2.0
2.6
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy