Search
Total
21119 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-0881 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2011-10-05 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the EMCTL component in Oracle Database Server 10.2.0.3, 10.2.0.4, and 11.1.0.7, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2011-0879 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2011-10-05 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2011-0877 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2011-10-05 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2011-0816 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2011-10-05 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the CMDB Metadata & Instance APIs component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2011-3134 | 1 Tibco | 2 Spotfire Analytics Server, Spotfire Server | 2011-09-23 | 7.5 HIGH | N/A |
| Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attackers to modify data or obtain sensitive information via a crafted URL. | |||||
| CVE-2011-2746 | 1 Otrs | 1 Otrs | 2011-09-23 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators to read arbitrary files via unknown vectors. | |||||
| CVE-2011-1855 | 1 Hp | 1 Network Node Manager I | 2011-09-22 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x allows local users to read or modify (1) log files or (2) other data via unknown vectors. | |||||
| CVE-2011-1724 | 1 Hp | 1 Virtual Server Environment | 2011-09-22 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Virtual Server Environment before 6.3 allows remote authenticated users to gain privileges via unknown vectors. | |||||
| CVE-2011-1544 | 1 Hp | 1 Insight Control Performance Management | 2011-09-22 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Insight Control Performance Management before 6.3 allows remote authenticated users to gain privileges via unknown vectors. | |||||
| CVE-2011-1541 | 1 Hp | 1 System Management Homepage | 2011-09-22 | 10.0 HIGH | N/A |
| Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote attackers to bypass intended access restrictions, and consequently execute arbitrary code, via unknown vectors. | |||||
| CVE-2011-1536 | 1 Hp | 1 Performance Insight | 2011-09-22 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Performance Insight 5.0, 5.1x. 5.2x, 5.3x, 5.4, 5.41, and 5.41.002 allows remote attackers to obtain sensitive information via unknown vectors. | |||||
| CVE-2011-1539 | 1 Hp | 1 Proliant Support Pack | 2011-09-22 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP Proliant Support Pack (PSP) before 8.7 allows remote attackers to obtain sensitive information via unknown vectors. | |||||
| CVE-2011-1540 | 1 Hp | 1 System Management Homepage | 2011-09-22 | 9.0 HIGH | N/A |
| Unspecified vulnerability in HP System Management Homepage (SMH) before 6.3 allows remote authenticated users to execute arbitrary code via unknown vectors. | |||||
| CVE-2011-0894 | 1 Hp | 1 Operations | 2011-09-22 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in HP Operations 9.10 on UNIX platforms allows remote authenticated users to bypass intended access restrictions via unknown vectors. | |||||
| CVE-2011-0807 | 2 Oracle, Sun | 2 Glassfish Server, Java System Application Server | 2011-09-22 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration. | |||||
| CVE-2010-4566 | 1 Citrix | 1 Access Gateway | 2011-09-22 | 9.3 HIGH | N/A |
| The web authentication form in the NT4 authentication component in Citrix Access Gateway Enterprise Edition 9.2-49.8 and earlier, and the NTLM authentication component in Access Gateway Standard and Advanced Editions before Access Gateway 5.0, allows attackers to execute arbitrary commands via shell metacharacters in the password field. | |||||
| CVE-2011-2610 | 1 Opera | 1 Opera Browser | 2011-09-07 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue." | |||||
| CVE-2007-1259 | 1 Web-app.org | 1 Webapp | 2011-09-01 | 7.5 HIGH | N/A |
| Multiple unspecified vulnerabilities in WebAPP before 0.9.9.6 have unknown impact and attack vectors. | |||||
| CVE-2006-4028 | 1 Wordpress | 1 Wordpress | 2011-09-01 | 10.0 HIGH | N/A |
| Multiple unspecified vulnerabilities in WordPress before 2.0.4 have unknown impact and remote attack vectors. NOTE: due to lack of details, it is not clear how these issues are different from CVE-2006-3389 and CVE-2006-3390, although it is likely that 2.0.4 addresses an unspecified issue related to "Anyone can register" functionality (user registration for guests). | |||||
| CVE-2011-2957 | 1 Rockwellautomation | 1 Factorytalk Diagnostics Viewer | 2011-08-12 | 6.9 MEDIUM | N/A |
| Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR9 SR3) allows local users to execute arbitrary code via a crafted FactoryTalk Diagnostics Viewer (.ftd) configuration file, which triggers memory corruption. | |||||
| CVE-2007-6350 | 1 Scponly | 1 Scponly | 2011-08-08 | 8.5 HIGH | N/A |
| scponly 4.6 and earlier allows remote authenticated users to bypass intended restrictions and execute code by invoking dangerous subcommands including (1) unison, (2) rsync, (3) svn, and (4) svnserve, as originally demonstrated by creating a Subversion (SVN) repository with malicious hooks, then using svn to trigger execution of those hooks. | |||||
| CVE-2010-2822 | 1 Cisco | 4 Ace 4710, Ace Module, Catalyst 6500 and 1 more | 2011-08-08 | 7.8 HIGH | N/A |
| Unspecified vulnerability in the RTSP inspection feature on the Cisco Application Control Engine (ACE) Module with software before A2(3.2) for Catalyst 6500 series switches and 7600 series routers, and the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.6), allows remote attackers to cause a denial of service (device reload) via crafted RTSP packets over TCP, aka Bug IDs CSCta85227 and CSCtg14858. | |||||
| CVE-2010-4537 | 1 Crawltrack | 1 Crawltrack | 2011-07-26 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in CrawlTrack before 3.2.7, when a public stats page is provided, allows remote attackers to execute arbitrary PHP code via unknown vectors. | |||||
| CVE-2010-2825 | 1 Cisco | 4 Ace 4710, Ace Module, Catalyst 6500 and 1 more | 2011-07-26 | 7.8 HIGH | N/A |
| Unspecified vulnerability in the SIP inspection feature on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers, and the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.4), allows remote attackers to cause a denial of service (device reload) via crafted SIP packets over (1) TCP or (2) UDP, aka Bug IDs CSCta65603 and CSCta71569. | |||||
| CVE-2010-2824 | 1 Cisco | 3 Ace Module, Catalyst 6500, Catalyst 7600 | 2011-07-26 | 7.8 HIGH | N/A |
| Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756. | |||||
| CVE-2010-2823 | 1 Cisco | 1 Ace 4710 | 2011-07-26 | 7.8 HIGH | N/A |
| Unspecified vulnerability in the deep packet inspection feature on the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.6) allows remote attackers to cause a denial of service (device reload) via crafted HTTP packets, related to HTTP, RTSP, and SIP inspection, aka Bug ID CSCtb54493. | |||||
| CVE-2011-2528 | 2 Plone, Zope | 3 Plone, Plone Hotfix 20110720, Zope | 2011-07-25 | 7.5 HIGH | N/A |
| Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as used in Plone 4.x and other products, and (2) PloneHotfix20110720 for Plone 3.x allows attackers to gain privileges via unspecified vectors, related to a "highly serious vulnerability." NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-0720. | |||||
| CVE-2010-3596 | 1 Oracle | 1 Secure Backup | 2011-07-20 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in the mod_ssl component in Oracle Secure Backup 10.3.0.2 allows remote attackers to affect integrity and availability via unknown vectors. | |||||
| CVE-2011-0287 | 1 Rim | 2 Blackberry Enterprise Server, Blackberry Enterprise Server Express | 2011-07-19 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in the BlackBerry Administration API in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 5.0.1 through 5.0.3, and BlackBerry Enterprise Server Express software 5.0.1 through 5.0.3, allows remote attackers to read text files or cause a denial of service via unknown vectors. | |||||
| CVE-2009-5074 | 1 Mojolicious | 1 Mojolicious | 2011-07-14 | 10.0 HIGH | N/A |
| Unspecified vulnerability in the MojoX::Dispatcher::Static implementation in Mojolicious before 0.991250 has unknown impact and attack vectors. | |||||
| CVE-2011-2616 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (memory consumption) via unknown content on a web page, as demonstrated by test262.ecmascript.org. | |||||
| CVE-2011-2617 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements. | |||||
| CVE-2011-2615 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application hang) via unknown content on a web page, as demonstrated by domiteca.com. | |||||
| CVE-2011-2612 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by progorod.ru. | |||||
| CVE-2011-2611 | 1 Opera | 1 Opera Browser | 2011-07-11 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted web page. | |||||
| CVE-2011-2620 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors involving SVG animation. | |||||
| CVE-2011-2621 | 1 Opera | 1 Opera Browser | 2011-07-11 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via vectors related to form layout. | |||||
| CVE-2011-2622 | 1 Opera | 1 Opera Browser | 2011-07-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Web Workers implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown vectors. | |||||
| CVE-2011-2633 | 1 Opera | 1 Opera Browser | 2011-07-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service (application crash) via vectors involving a Certificate Revocation List (CRL) file, as demonstrated by the multicert-ca-02.crl file. | |||||
| CVE-2011-2629 | 1 Opera | 1 Opera Browser | 2011-07-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by www.falk.de. | |||||
| CVE-2011-2627 | 1 Opera | 1 Opera Browser | 2011-07-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the DOM implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by live.com. | |||||
| CVE-2011-2623 | 1 Opera | 1 Opera Browser | 2011-07-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the SVG BiDi implementation in Opera before 11.50 allows remote attackers to cause a denial of service (application crash or hang) via unknown vectors. | |||||
| CVE-2011-2638 | 1 Opera | 1 Opera Browser | 2011-07-06 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by games on zylom.com. | |||||
| CVE-2011-2636 | 1 Opera | 1 Opera Browser | 2011-07-06 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by a certain Tomato Firmware page. | |||||
| CVE-2011-2637 | 1 Opera | 1 Opera Browser | 2011-07-06 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via unknown content on a web page, as demonstrated by futura-sciences.com, seoptimise.com, and mitosyfraudes.org. | |||||
| CVE-2011-2074 | 2 Apple, Skype | 2 Mac Os X, Skype | 2011-05-26 | 8.5 HIGH | N/A |
| Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via a crafted message. | |||||
| CVE-2011-2164 | 1 Adobe | 1 Photoshop | 2011-05-24 | 10.0 HIGH | N/A |
| Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack vectors. | |||||
| CVE-2011-2162 | 3 Ffmpeg, Mandriva, Mplayerhq | 5 Ffmpeg, Corporate Server, Enterprise Server and 2 more | 2011-05-23 | 10.0 HIGH | N/A |
| Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers." | |||||
| CVE-2005-4045 | 1 Sun | 1 Java Communications Services Delegated Administrator | 2011-05-19 | 7.5 HIGH | N/A |
| Unspecified vulnerability in System Communications Services 6 Delegated Administrator 2005Q1 in Sun Java System Messaging Server 2005Q1 allows remote attackers to obtain the Top-Level Administrator (TLA) default password via unknown vectors, possibly involving configure_toplevel_admin.ldif. | |||||
| CVE-2007-4430 | 1 Cisco | 5 Cbos, Cli, Ids and 2 more | 2011-05-18 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions in a "show ip bgp regexp" command. NOTE: unauthenticated remote attacks are possible in environments with anonymous telnet and Looking Glass access. | |||||