|Max CVSS||10.0||Min CVSS||2.3||Total Count||2|
|ID||CVSS||Summary||Last (major) update||Published|
Acceptance of invalid/self-signed TLS certificates in "Panda Mobile Security" 1.1 for iOS allows a man-in-the-middle and/or physically proximate attacker to silently intercept information sent during the login API call.
|09-09-2021 - 13:33||05-05-2017 - 07:29|
rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size during memory allocation for XDR strings, which allows remote attackers to cause a denial of service (mem
|03-10-2019 - 00:03||04-05-2017 - 14:29|
Vulnerability in the Java Advanced Management Console component of Oracle Java SE (subcomponent: Server). The supported version that is affected is Java Advanced Management Console: 2.6. Easily exploitable vulnerability allows unauthenticated attacke
|03-10-2019 - 00:03||08-08-2017 - 15:29|
slapd in OpenLDAP before 2.3.25 allows remote authenticated users with selfwrite Access Control List (ACL) privileges to modify arbitrary Distinguished Names (DN).
|17-10-2018 - 21:38||07-09-2006 - 00:04|
A use after free in ANGLE in Google Chrome prior to 57.0.2987.98 for Windows allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
|12-06-2018 - 01:29||24-04-2017 - 23:59|
wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.
|03-05-2018 - 01:29||15-04-2004 - 04:00|
SQL injection vulnerability in offers_buy.php in EC21 Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|17-08-2017 - 01:32||06-05-2010 - 14:53|
Cross-site scripting (XSS) vulnerability in Resource Library (tjs_reslib) 0.1.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|17-08-2017 - 01:29||10-04-2009 - 22:00|
In WCDMA in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist.
|09-06-2017 - 15:14||06-06-2017 - 14:29|
In Resource Power Manager (RPM) in all Android releases from CAF using the Linux kernel, an Improper Access Control vulnerability could potentially exist.
|09-06-2017 - 15:09||06-06-2017 - 14:29|
In TrustZone in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist.
|08-06-2017 - 17:49||06-06-2017 - 14:29|
In TrustZone in all Android releases from CAF using the Linux kernel, a Double Free vulnerability could potentially exist.
|08-06-2017 - 17:46||06-06-2017 - 14:29|
Atlassian SourceTree v2.5c and prior are affected by a command injection in the handling of the sourcetree:// scheme. It will lead to arbitrary OS command execution with a URL substring of sourcetree://cloneRepo/ext:: or sourcetree://checkoutRef/ext:
|17-05-2017 - 16:04||04-05-2017 - 22:29|
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
|12-05-2017 - 13:25||03-05-2017 - 05:59|