Skip to main content
CVE-2016-8584 CRITICAL POC Act Now

Trend Micro Threat Discovery Appliance 2.6.1062r1 and earlier uses predictable session values, which allows remote attackers to bypass authentication by guessing the value. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Trend Micro Authentication Bypass Threat Discovery Appliance
NVD
CVSS 3.0
9.8
EPSS
4.1%
CVE-2017-7895 CRITICAL PATCH Act Now

The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 21.5%.

Buffer Overflow Linux Linux Kernel Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
21.5%
CVE-2017-2096 CRITICAL PATCH Act Now

smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Command Injection Smalruby Editor
NVD
CVSS 3.1
9.8
EPSS
4.7%
CVE-2017-2142 CRITICAL Act Now

Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Wn G300R3 Firmware
NVD
CVSS 3.0
9.8
EPSS
2.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy