Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2010-3796 | 1 Apple | 2 Mac Os X, Mac Os X Server | 2010-11-17 | 4.3 MEDIUM | N/A |
| Safari RSS in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 does not block Java applets in an RSS feed, which allows remote attackers to obtain sensitive information via a feed: URL containing an applet that performs DOM modifications. | |||||
| CVE-2010-1801 | 1 Apple | 3 Coregraphics, Mac Os X, Mac Os X Server | 2010-11-17 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF file. | |||||
| CVE-2010-3903 | 1 Infradead | 1 Openconnect | 2010-11-12 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in OpenConnect before 2.23 allows remote AnyConnect SSL VPN servers to cause a denial of service (application crash) via a 404 HTTP status code. | |||||
| CVE-2009-4898 | 1 Twiki | 1 Twiki | 2010-11-12 | 6.8 MEDIUM | N/A |
| Cross-site request forgery (CSRF) vulnerability in TWiki before 4.3.2 allows remote attackers to hijack the authentication of arbitrary users for requests that update pages, as demonstrated by a URL for a save script in the ACTION attribute of a FORM element, in conjunction with a call to the submit method in the onload attribute of a BODY element. NOTE: this issue exists because of an insufficient fix for CVE-2009-1339. | |||||
| CVE-2010-4024 | 1 Hp | 1 Insight Control Power Management | 2010-11-11 | 6.8 MEDIUM | N/A |
| Cross-site request forgery (CSRF) vulnerability in HP Insight Control Power Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||||
| CVE-2010-3521 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HCM ePay component in Oracle PeopleSoft and JDEdwards Suite 9.0 to Payroll Update 10-C and 9.1 to Payroll Update 10-C allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3286 | 1 Hp | 1 Systems Insight Manager | 2010-11-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Systems Insight Manager (SIM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors. | |||||
| CVE-2010-3520 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HCM - GP France component in Oracle PeopleSoft and JDEdwards Suite 8.81 SP1 Bundle #12, 8.9 GP Update 2010-E, 9.0 GP Update 2010-E, and 9.1 GP Update 2010-E allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3288 | 1 Hp | 1 Systems Insight Manager | 2010-11-11 | 6.8 MEDIUM | N/A |
| Cross-site request forgery (CSRF) vulnerability in HP Systems Insight Manager (SIM) before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||||
| CVE-2010-3519 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.28 and 8.50.12 allows remote authenticated users to affect integrity via unknown vectors. | |||||
| CVE-2010-3518 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HCM GP - Japan component in Oracle PeopleSoft and JDEdwards Suite 8.81 SP1 Bundle #13, 8.9 GP Update 2010-E, 9.0 GP Update 2010-E, and 9.1 GP Update 2010-E allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3537 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise FMS - AM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3576 | 1 Oracle | 2 Opensolaris, Solaris | 2010-11-11 | 3.6 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect integrity and availability, related to the SCSI enclosure services device driver. | |||||
| CVE-2010-3577 | 1 Oracle | 1 Opensolaris | 2010-11-11 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in Oracle OpenSolaris allows remote attackers to affect confidentiality and integrity, related to Kernel/CIFS. | |||||
| CVE-2010-3582 | 1 Oracle | 1 Vm | 2010-11-11 | 9.0 HIGH | N/A |
| Unspecified vulnerability in the OracleVM component in Oracle VM 2.2.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to ovs-agent. | |||||
| CVE-2010-3986 | 1 Hp | 1 Virtual Connect Enterprise Manager | 2010-11-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Virtual Connect Enterprise Manager (VCEM) 6.0 and 6.1 allows remote attackers to read arbitrary files via unknown vectors. | |||||
| CVE-2010-3987 | 1 Hp | 1 Insight Control Virtual Machine Management | 2010-11-11 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2010-3517 | 1 Oracle | 2 Opensolaris, Solaris | 2010-11-11 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability, related to Kernel/X86. | |||||
| CVE-2010-3512 | 1 Oracle | 1 Sun Products Suite | 2010-11-11 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0u8 allows remote authenticated users to affect confidentiality, related to DAV (WebDAV). | |||||
| CVE-2010-3511 | 1 Oracle | 1 Opensolaris | 2010-11-11 | 2.6 LOW | N/A |
| Unspecified vulnerability in Oracle OpenSolaris allows local users to affect integrity and availability via unknown vectors related to Tooltalk. | |||||
| CVE-2010-3508 | 1 Oracle | 1 Solaris | 2010-11-11 | 3.2 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Zones. | |||||
| CVE-2010-3502 | 1 Oracle | 1 Siebel Suite | 2010-11-11 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel Core component in Oracle Siebel Suite 7.7.2.12, 7.8.2.14, 8.0.0.10, and 8.1.1.3 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
| CVE-2010-4101 | 1 Hp | 1 Insight Recovery | 2010-11-11 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in HP Insight Recovery before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2010-4028 | 1 Hp | 2 Loadrunner, Loadrunner Web Tours | 2010-11-11 | 7.5 HIGH | N/A |
| Unspecified vulnerability in LoadRunner Web Tours 9.10 in HP LoadRunner 9.1 and earlier allows remote attackers to cause a denial of service, and possibly obtain sensitive information or modify data, via unknown vectors. | |||||
| CVE-2010-4027 | 1 Hp | 1 Palm Webos | 2010-11-11 | 5.6 MEDIUM | N/A |
| Unspecified vulnerability in the camera application in HP Palm webOS 1.4.1 allows local users to overwrite arbitrary files via unknown vectors. | |||||
| CVE-2010-4026 | 1 Hp | 1 Palm Webos | 2010-11-11 | 6.2 MEDIUM | N/A |
| Unspecified vulnerability in the service API in HP Palm webOS 1.4.1 allows local users to gain privileges by leveraging the ability to perform certain service calls. | |||||
| CVE-2010-4025 | 1 Hp | 1 Palm Webos | 2010-11-11 | 9.3 HIGH | N/A |
| Unspecified vulnerability in Doc Viewer in HP Palm webOS 1.4.1 allows remote attackers to execute arbitrary code via a crafted document, as demonstrated by a Word document. | |||||
| CVE-2010-3547 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft FMS ESA - EX component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3991 | 1 Hp | 2 Insight Control Server Migration, Insight Control Server Migration6.0.1 | 2010-11-11 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2010-4023 | 1 Hp | 1 Insight Control Power Management | 2010-11-11 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in HP Insight Control Power Management before 6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2010-3988 | 1 Hp | 1 Insight Control Virtual Machine Management | 2010-11-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to bypass intended access restrictions and cause a denial of service via unknown vectors. | |||||
| CVE-2010-3536 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3993 | 1 Hp | 2 Insight Control Server Migration, Insight Control Server Migration6.0.1 | 2010-11-11 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote attackers to obtain sensitive information or modify data via unknown vectors. | |||||
| CVE-2010-3989 | 1 Hp | 1 Insight Control Virtual Machine Management | 2010-11-11 | 6.8 MEDIUM | N/A |
| Cross-site request forgery (CSRF) vulnerability in HP Insight Control Virtual Machine Management before 6.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. | |||||
| CVE-2010-3992 | 1 Hp | 2 Insight Control Server Migration, Insight Control Server Migration6.0.1 | 2010-11-11 | 9.0 HIGH | N/A |
| Unspecified vulnerability in HP Insight Control Server Migration before 6.2 allows remote authenticated users to gain privileges via unknown vectors. | |||||
| CVE-2010-3522 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft and JDEdwards Suite 8.49.28 and 8.50.12 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
| CVE-2010-3580 | 1 Oracle | 1 Opensolaris | 2010-11-11 | 4.6 MEDIUM | N/A |
| Unspecified vulnerability in Oracle OpenSolaris allows local users to affect availability via unknown vectors related to Kernel/File System. | |||||
| CVE-2010-3291 | 1 Hp | 2 Assetcenter, Assetmanager | 2010-11-11 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in HP AssetCenter 5.0x through AC_5.03, and AssetManager 5.1x through AM_5.12 and 5.2x through AM_5.22, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2010-3578 | 1 Oracle | 1 Opensolaris | 2010-11-11 | 9.0 HIGH | N/A |
| Unspecified vulnerability in Oracle OpenSolaris allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Depot Server. | |||||
| CVE-2010-3542 | 1 Oracle | 2 Opensolaris, Solaris | 2010-11-11 | 1.9 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect confidentiality, related to USB. | |||||
| CVE-2010-3540 | 1 Oracle | 2 Opensolaris, Solaris | 2010-11-11 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect availability, related to ZFS. | |||||
| CVE-2010-3503 | 1 Oracle | 2 Opensolaris, Solaris | 2010-11-11 | 6.3 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 10 and OpenSolaris allows local users to affect confidentiality and integrity via unknown vectors related to su. | |||||
| CVE-2010-3533 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise SCM OM and CRM Order Capture component in Oracle PeopleSoft and JDEdwards Suite 8.9, 9.0, and 9.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3532 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise CRM - Order Capture component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #28 and 9.1 Bundle #4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3531 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise FMS ESA - RM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3530 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HCM - HR component in Oracle PeopleSoft and JDEdwards Suite 9.0 Bundle #13 and 9.1 Bundle #3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3529 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise FMS - Cash Management component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2010-3528 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise CRM - Common Components component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #41, 9.0 Bundle #28, and 9.1 Bundle #4 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
| CVE-2010-3527 | 1 Oracle | 1 Peoplesoft And Jdedwards Product Suite | 2010-11-11 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise FMS - AM component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #38, 9.0 Bundle #31, and 9.1 Bundle #6 allows remote authenticated users to affect integrity and availability via unknown vectors. | |||||
| CVE-2010-4102 | 1 Hp | 1 Insight Recovery | 2010-11-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Insight Recovery before 6.2 allows remote attackers to read arbitrary files via unknown vectors. | |||||