Latest 7 days CVE Lists

Latest 7 days CVE Lists 피드 구독하기
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
업데이트: 53분 12초 지남

CVE-2019-18934

수, 2019/11/20 - 3:15오전
Unbound 1.6.4 through 1.9.4 contain a vulnerability in the ipsec module that can cause shell code execution after receiving a specially crafted answer. This issue can only be triggered if unbound was compiled with `--enable-ipsecmod` support, and ipsecmod is enabled and used in the configuration.

CVE-2012-6070

수, 2019/11/20 - 2:15오전
Falconpl before 0.9.6.9-git20120606 misuses the libcurl API which may allow remote attackers to interfere with security checks.

CVE-2012-6071

수, 2019/11/20 - 2:15오전
nuSOAP before 0.7.3-5 does not properly check the hostname of a cert.

CVE-2012-6135

수, 2019/11/20 - 2:15오전
RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to delete arbitrary files during the startup process.

CVE-2016-1000236

수, 2019/11/20 - 2:15오전
Node-cookie-signature before 1.0.6 is affected by a timing attack due to the type of comparison used.

CVE-2011-2921

수, 2019/11/20 - 2:15오전
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.

CVE-2011-4968

수, 2019/11/20 - 1:15오전
nginx http proxy module does not verify peer identity of https origin server which could facilitate man-in-the-middle attack (MITM)

CVE-2012-0824

수, 2019/11/20 - 1:15오전
gnusound 0.7.5 has format string issue

CVE-2012-0843

수, 2019/11/20 - 1:15오전
uzbl: Information disclosure via world-readable cookies storage file

CVE-2014-5439

수, 2019/11/20 - 1:15오전
sniffit 0.3.7 and prior: A configuration file can be leveraged to execute code as root

CVE-2011-4919

수, 2019/11/20 - 1:15오전
mpack 1.6 has information disclosure via eavesdropping on mails sent by other users

CVE-2011-4952

수, 2019/11/20 - 1:15오전
cobbler: Web interface lacks CSRF protection when using Django framework

CVE-2011-4954

수, 2019/11/20 - 1:15오전
cobbler has local privilege escalation via the use of insecure location for PYTHON_EGG_CACHE

CVE-2011-4967

수, 2019/11/20 - 1:15오전
tog-Pegasus has a package hash collision DoS vulnerability

CVE-2016-1000006

수, 2019/11/20 - 12:15오전
hhvm before 3.12.11 has a use-after-free in the serialize_memoize_param() and ResourceBundle::__construct() functions.

CVE-2012-0842

수, 2019/11/20 - 12:15오전
surf: cookie jar has read access from other local user

CVE-2019-16860

화, 2019/11/19 - 10:15오후
Code42 app through version 7.0.2 for Windows has an Untrusted Search Path. In certain situations, a non-administrative attacker on the local machine could create or modify a dynamic-link library (DLL). The Code42 service could then load it at runtime, and potentially execute arbitrary code at an elevated privilege on the local machine.

CVE-2019-16861

화, 2019/11/19 - 10:15오후
Code42 server through 7.0.2 for Windows has an Untrusted Search Path. In certain situations, a non-administrative attacker on the local server could create or modify a dynamic-link library (DLL). The Code42 service could then load it at runtime, and potentially execute arbitrary code at an elevated privilege on the local server.

CVE-2014-5118

화, 2019/11/19 - 8:15오전
A Security Bypass Vulnerability exists in TBOOT before 1.8.2 in the boot loader module when measuring commandline parameters.

CVE-2019-12422

화, 2019/11/19 - 8:15오전
Apache Shiro before 1.4.2, when using the default "remember me" configuration, cookies could be susceptible to a padding attack.

페이지