|
286151
|
7.5 |
HIGH
Network
|
cryptocat_project
|
cryptocat
|
Cryptocat before 2.0.22 has Remote Denial of Service via username
|
CWE-20
Improper Input Validation
|
CVE-2013-4100
|
2024-11-21 10:54 |
2019-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286152
|
5.5 |
MEDIUM
Local
|
gnome
debian
redhat
opensuse
|
evince
debian_linux
enterprise_linux
opensuse
|
evince is missing a check on number of pages which can lead to a segmentation fault
|
CWE-20
Improper Input Validation
|
CVE-2013-3718
|
2024-11-21 10:54 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286153
|
6.5 |
MEDIUM
Network
|
opensuse
|
open_build_service
|
The controller of the Open Build Service API prior to version 2.4.4 is missing a write permission check, allowing an authenticated attacker to add or remove user roles from packages and/or project me…
|
CWE-275
Permission Issues
|
CVE-2013-3703
|
2024-11-21 10:54 |
2018-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286154
|
5.5 |
MEDIUM
Local
|
ibm
|
tivoli_application_dependency_discovery_manager
|
IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.2.x before 7.2.1.5 and 7.2.x before 7.2.2.0 on Unix use weak permissions (755) for unspecified configuration and log files, which allow…
|
CWE-275
Permission Issues
|
CVE-2013-4040
|
2024-11-21 10:54 |
2018-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286155
|
7.3 |
HIGH
Adjacent
|
ibm
|
sterling_connect
|
IBM Sterling Connect:Direct for OpenVMS 3.4.00, 3.4.01, 3.5.00, 3.6.0, and 3.6.0.1 allow remote attackers to have unspecified impact by leveraging failure to reject client requests for an unencrypted…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4035
|
2024-11-21 10:54 |
2018-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286156
|
7.8 |
HIGH
Local
|
ahnlab
|
v3_internet_security
|
Buffer overflow in MedCoreD.sys in AhnLab V3 Internet Security 8.0.7.5 (Build 1373) allows local users to gain privileges via a crafted 0xA3350014 IOCTL call.
|
CWE-264
CWE-119
Permissions, Privileges, and Access Controls
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3947
|
2024-11-21 10:54 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286157
|
6.6 |
MEDIUM
Network
|
redhat
|
jboss_application_server
|
The Embedded Jopr component in JBoss Application Server includes the cleartext datasource password in unspecified HTML responses, which might allow (1) man-in-the-middle attackers to obtain sensitive…
|
CWE-255
Credentials Management
|
CVE-2013-3734
|
2024-11-21 10:54 |
2017-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286158
|
7.5 |
HIGH
Network
|
freerdp
|
freerdp
|
FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished.
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-4119
|
2024-11-21 10:54 |
2016-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286159
|
7.5 |
HIGH
Network
|
freerdp
opensuse
|
freerdp
leap
opensuse
|
FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-4118
|
2024-11-21 10:54 |
2016-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286160
|
- |
|
sap
|
governance_risk_and_compliance
|
Multiple unspecified vulnerabilities in SAP Governance, Risk, and Compliance (GRC) allow remote authenticated users to gain privileges and execute arbitrary programs via a crafted (1) RFC or (2) SOAP…
|
NVD-CWE-noinfo
|
CVE-2013-3678
|
2024-11-21 10:54 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
