Skip to main content
CVE-2015-6912 CRITICAL POC THREAT Emergency

Synology Video Station before 1.5-0763 allows remote attackers to execute arbitrary shell commands via shell metacharacters in the subtitle_codepage parameter to subtitle.cgi. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 29.7%.

Command Injection Synology Video Station
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
29.7%
Threat
4.4
CVE-2014-9208 CRITICAL POC THREAT Emergency

Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execute arbitrary code via unknown vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 22.3%.

RCE Buffer Overflow Webaccess
NVD Exploit-DB
CVSS 2.0
10.0
EPSS
22.3%
Threat
4.2
CVE-2014-7216 CRITICAL POC Act Now

Multiple stack-based buffer overflows in Yahoo!. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Messenger
NVD
CVSS 2.0
9.3
EPSS
5.6%
CVE-2015-3964 CRITICAL Act Now

SMA Solar Sunny WebBox has hardcoded passwords, which makes it easier for remote attackers to obtain access via unspecified vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Webbox Firmware
NVD
CVSS 2.0
10.0
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy