|
290941
|
5.3 |
MEDIUM
Adjacent
|
ibm
|
network_operating_system
|
The Fibre Channel over Ethernet (FCoE) feature in IBM System Networking and Blade Network Technology (BNT) switches running IBM Networking Operating System (aka NOS, formerly BLADE Operating System) …
|
CWE-200
Information Exposure
|
CVE-2013-0570
|
2024-11-21 10:47 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290942
|
6.1 |
MEDIUM
Network
|
ibm
|
inotes
|
Open redirect vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified ve…
|
CWE-601
Open Redirect
|
CVE-2013-0594
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290943
|
5.4 |
MEDIUM
Network
|
ibm
|
inotes
|
Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. IBM X-Force…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0592
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290944
|
7.5 |
HIGH
Network
|
ibm
|
inotes
|
IBM iNotes before 8.5.3 Fix Pack 6 and 9.x before 9.0.1 allows remote attackers to bypass the remote image filtering mechanism and obtain sensitive information via a crafted e-mail message. IBM X-For…
|
CWE-200
Information Exposure
|
CVE-2013-0589
|
2024-11-21 10:47 |
2018-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290945
|
8.8 |
HIGH
Network
|
redhat
|
manageiq_enterprise_virtualization_manager
|
Cross-site request forgery (CSRF) vulnerability in ManageIQ Enterprise Virtualization Manager (EVM) allows remote attackers to hijack the authentication of users for requests that have unspecified im…
|
CWE-352
Origin Validation Error
|
CVE-2013-0185
|
2024-11-21 10:47 |
2018-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290946
|
8.8 |
HIGH
Network
|
apache
|
vcl
|
The Privileges portion of the web GUI and the XMLRPC API in Apache VCL 2.3.x before 2.3.2, 2.2.x before 2.2.2 and 2.1 allow remote authenticated users with nodeAdmin, manageGroup, resourceGrant, or u…
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2013-0267
|
2024-11-21 10:47 |
2018-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290947
|
- |
|
webfs
|
webfs
|
The Gentoo init script for webfs uses world-readable permissions for /var/log/webfsd.log, which allows local users to have unspecified impact by reading the file.
|
CWE-200
Information Exposure
|
CVE-2013-0347
|
2024-11-21 10:47 |
2014-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290948
|
- |
|
redhat
|
freeipa
|
The ipapwd_chpwop function in daemons/ipa-slapi-plugins/ipa-pwd-extop/ipa_pwd_extop.c in the directory server (dirsrv) in FreeIPA before 3.2.0 allows remote attackers to cause a denial of service (cr…
|
CWE-20
Improper Input Validation
|
CVE-2013-0336
|
2024-11-21 10:47 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290949
|
- |
|
bundler
opensuse
fedoraproject
|
bundler
opensuse
fedora
|
Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.
|
CWE-20
Improper Input Validation
|
CVE-2013-0334
|
2024-11-21 10:47 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290950
|
- |
|
corosync
|
corosync
|
The init_nss_hash function in exec/totemcrypto.c in Corosync 2.0 before 2.3 does not properly initialize the HMAC key, which allows remote attackers to cause a denial of service (crash) via a crafted…
|
NVD-CWE-Other
|
CVE-2013-0250
|
2024-11-21 10:47 |
2014-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
