Total
28552 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2013-5845 | 1 Oracle | 1 Ilearning | 2024-02-28 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 5.2.1 and 6.0 allows remote attackers to affect integrity via unknown vectors related to Learner Administration. | |||||
CVE-2012-3230 | 1 Oracle | 1 Siebel Crm | 2024-02-28 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Portal Framework. | |||||
CVE-2013-1494 | 2 Oracle, Sun | 4 Sparc T4-1, Sparc T4-1b, Sparc T4-4 and 1 more | 2024-02-28 | 4.7 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 10, when running on SPARC T4 servers, allows local users to affect availability via unknown vectors related to Kernel. | |||||
CVE-2012-2866 | 2 Google, Opensuse | 2 Chrome, Opensuse | 2024-02-28 | 7.5 HIGH | N/A |
Google Chrome before 21.0.1180.89 does not properly perform a cast of an unspecified variable during handling of run-in elements, which allows remote attackers to cause a denial of service or possibly have unknown other impact via a crafted document. | |||||
CVE-2012-3228 | 1 Oracle | 1 Financial Services Software | 2024-02-28 | 4.9 MEDIUM | N/A |
Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.2, 5.0.5, 5.1.0, 5.2.0, 5.3.0 through 5.3.4, 6.0.1, and 6.2.0 allows remote authenticated users to affect integrity and availability, related to BASE. | |||||
CVE-2013-3841 | 1 Oracle | 1 Siebel Crm | 2024-02-28 | 5.0 MEDIUM | N/A |
Unspecified vulnerability in the Siebel Core - EAI component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Web Services. | |||||
CVE-2012-1739 | 1 Oracle | 1 E-business Suite | 2024-02-28 | 3.5 LOW | N/A |
Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affect integrity via unknown vectors related to Financials Business Intelligence. | |||||
CVE-2012-2796 | 2 Ffmpeg, Libav | 2 Ffmpeg, Libav | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in the vc1_decode_frame function in libavcodec/vc1dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to inconsistencies in "coded slice positions and interlacing" that trigger "out of array writes." | |||||
CVE-2013-1483 | 1 Oracle | 1 Javafx | 2024-02-28 | 10.0 HIGH | N/A |
Unspecified vulnerability in the JavaFX component in Oracle Java SE JavaFX 2.2.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than other CVEs listed in the February 2013 CPU. | |||||
CVE-2012-1684 | 1 Sun | 1 Sunos | 2024-02-28 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Password Policy. | |||||
CVE-2012-1732 | 1 Oracle | 1 Siebel Crm | 2024-02-28 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Framework, a different vulnerability than CVE-2012-1754. | |||||
CVE-2012-3628 | 1 Apple | 1 Safari | 2024-02-28 | 9.3 HIGH | N/A |
WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1. | |||||
CVE-2013-1546 | 1 Oracle | 1 Financial Services Software | 2024-02-28 | 1.5 LOW | N/A |
Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2.8.0 through 3.1.0 and 5.0.2 through 12.0.1 allows local users to affect confidentiality via vectors related to BASE. | |||||
CVE-2013-1490 | 1 Oracle | 2 Jdk, Jre | 2024-02-28 | 4.3 MEDIUM | N/A |
Unspecified vulnerability in Oracle Java SE 7 Update 11 (JRE 1.7.0_11-b21) allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors, aka "Issue 51," a different vulnerability than CVE-2013-0431. NOTE: as of 20130130, this vulnerability does not contain any independently-verifiable details, and there is no vendor acknowledgement. A CVE identifier is being assigned because this vulnerability has received significant public attention, and the original researcher has an established history of releasing vulnerability reports that have been fixed by vendors. NOTE: this issue also exists in SE 6, but it cannot be exploited without a separate vulnerability. | |||||
CVE-2012-0435 | 1 Suse | 1 Webyast | 2024-02-28 | 5.8 MEDIUM | N/A |
SUSE WebYaST before 1.2 0.2.63-0.6.1 allows remote attackers to modify the hosts list, and subsequently conduct man-in-the-middle attacks, via a crafted /host request on TCP port 4984. | |||||
CVE-2012-0962 | 2 Canonical, Sebastian Heinlein | 2 Ubuntu Linux, Aptdaemon | 2024-02-28 | 4.3 MEDIUM | N/A |
Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack. | |||||
CVE-2013-1747 | 1 Ngircd | 1 Ngircd | 2024-02-28 | 5.0 MEDIUM | N/A |
channel.c in ngIRCd 20 and 20.1 allows remote attackers to cause a denial of service (assertion failure and crash) via a KICK command for a user who is not on the associated channel. | |||||
CVE-2012-1993 | 1 Hp | 1 System Management Homepage | 2024-02-28 | 3.2 LOW | N/A |
Unspecified vulnerability in HP System Management Homepage (SMH) before 7.0 allows local users to modify data or obtain sensitive information via unknown vectors. | |||||
CVE-2013-4684 | 1 Juniper | 13 Junos, Srx100, Srx110 and 10 more | 2024-02-28 | 7.8 HIGH | N/A |
flowd in Juniper Junos 10.4 before 10.4S14, 11.4 before 11.4R8, 12.1 before 12.1R7, and 12.1X44 before 12.1X44-D15 on SRX devices, when PIM and NAT are enabled, allows remote attackers to cause a denial of service (daemon crash) via crafted PIM packets, aka PR 842253. | |||||
CVE-2012-4461 | 1 Linux | 1 Linux Kernel | 2024-02-28 | 1.9 LOW | N/A |
The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl. |