search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2013-05-01 2013-04-30 2014-07-30 VU#912420 3.8 IBM Notes runs arbitrary JAVA and Javascript in emails
2015-07-07 2015-07-07 2015-07-07 VU#253708 3.8 Grandsteam GXV3611_HD camera is vulnerable to SQL injection
2019-12-19 2019-12-19 2019-12-19 VU#873161 3.8 Telos Automated Message Handling System contains multiple vulnerabilities
2013-06-05 2013-06-03 2013-06-05 VU#722868 3.8 IBM QRadar SIEM command injection vulnerability
2012-04-10 2012-04-10 2012-04-12 VU#400619 3.8 Pluck SiteLife software multiple XSS vulnerabilities
2017-09-08 2017-09-08 2017-10-12 VU#166743 3.8 Das U-Boot AES-CBC encryption implementation contains multiple vulnerabilities
2015-01-05 2014-12-28 2015-02-03 VU#533140 3.8 Tianocore UEFI implementation reclaim function vulnerable to buffer overflow
2016-03-26 2016-03-25 2016-03-26 VU#319816 3.8 npm fails to restrict the actions of malicious npm packages
2015-09-03 2015-08-31 2015-09-03 VU#845332 3.8 OrientDB and Studio prior to version 2.1.1 contain multiple vulnerabilities
2015-02-27 2015-02-26 2015-03-05 VU#632140 3.9 Multiple Toshiba products are vulnerable to trusted service path privilege escalation
2012-12-07 2012-11-15 2014-08-15 VU#702452 3.9 Qualcomm Android OS kernel privilege escalation and denial of service vulnerabilites
2019-07-17 2019-07-16 2019-07-17 VU#790507 3.9 Oracle Solaris vulnerable to arbitrary code execution via /proc/self
2018-05-23 2018-05-22 2018-06-13 VU#338343 3.9 strongSwan VPN charon server vulnerable to buffer underflow
2014-10-08 2014-09-18 2014-10-16 VU#573356 3.9 IBM WebSphere Application Server contains multiple vulnerabilities
2015-10-12 2015-10-12 2015-10-13 VU#751328 3.9 QNAP QTS is vulnerable to a path traversal attack when used with the AFP protocol and OS X

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis