Skip to main content
CVE-2015-7987 CRITICAL Act Now

Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Iphone Os Mac Os X Watchos Airport Base Station Firmware +1
NVD
CVSS 3.0
9.8
EPSS
3.1%
CVE-2015-7988 CRITICAL Act Now

The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Denial Of Service Iphone Os Mac Os X Watchos +2
NVD
CVSS 3.0
9.8
EPSS
2.6%
CVE-2016-2901 HIGH This Week

Cross-site request forgery (CSRF) vulnerability in the PA_Theme_Creator application in IBM WebSphere Portal 8.5 CF08 through CF10 and Web Content Manager allows remote attackers to hijack the. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

IBM XSS CSRF Websphere Portal Web Content Manager
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2016-0278 HIGH This Week

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM RCE Buffer Overflow Authentication Bypass Domino
NVD
CVSS 3.0
7.8
EPSS
1.9%
CVE-2016-0301 HIGH This Week

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM RCE Buffer Overflow Domino
NVD
CVSS 3.0
7.8
EPSS
1.9%
CVE-2016-0279 HIGH This Week

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM RCE Buffer Overflow Authentication Bypass Domino
NVD
CVSS 3.0
7.8
EPSS
1.9%
CVE-2016-0277 HIGH This Week

Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6 allows remote attackers to execute arbitrary code via a crafted PDF document, a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

IBM RCE Buffer Overflow Authentication Bypass Domino
NVD
CVSS 3.0
7.8
EPSS
1.9%
CVE-2016-4513 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the Schneider Electric PowerLogic PM8ECC module before 2.651 for PowerMeter 800 devices allows remote attackers to inject arbitrary web script or HTML via. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Schneider Electric Powerlogic Pm8Ecc Firmware
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-5087 MEDIUM This Month

Alertus Desktop Notification before 2.9.31.1710 on OS X uses weak permissions for configuration files and unspecified other files, which allows local users to suppress emergency notifications or. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Alertus Desktop Notification For Os X
NVD
CVSS 3.0
4.4
EPSS
0.2%
CVE-2015-7473 LOW Monitor

runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue-manager command access restrictions by leveraging authority for +connect and +dsp. Rated low severity (CVSS 2.5). No vendor patch available.

IBM Authentication Bypass Websphere Mq
NVD
CVSS 3.0
2.5
EPSS
0.1%
CVE-2016-0259 LOW Monitor

runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authority requirement and obtain sensitive information via unspecified display commands. Rated low severity (CVSS 2.5). No vendor patch available.

IBM Information Disclosure Websphere Mq
NVD
CVSS 3.0
2.5
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy