search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2014-10-06 2014-09-11 2014-10-06 VU#251276 4.6 Rejetto HTTP File Server (HFS) search feature fails to handle null bytes
2018-11-01 2018-11-01 2019-01-07 VU#317277 4.6 Texas Instruments CC2640 and CC2650 microcontrollers vulnerable to heap overflow and insecure update
2015-06-15 2014-07-09 2015-06-15 VU#101500 4.6 Retrospect Backup Client uses weak password hashing
2016-10-20 2016-10-20 2016-10-20 VU#404187 4.7 Synology NAS servers contain insecure default credentials
2016-10-20 2016-10-20 2016-10-20 VU#970379 4.7 Green Packet DX-350 contains insecure default credentials
2016-10-20 2016-10-20 2016-12-13 VU#326395 4.7 Nuuo NT-4040 firmware contains insecure default credentials
2015-10-16 2015-10-13 2015-10-20 VU#943167 4.7 Voice over LTE implementations contain multiple vulnerabilities
2017-02-15 2017-02-15 2018-02-27 VU#614751 4.7 Hughes satellite modems contain multiple vulnerabilities
2012-03-22 2012-03-22 2012-03-28 VU#743555 4.7 @Mail Open webmail client contains multiple vulnerabilities
2015-08-31 2015-08-31 2016-04-17 VU#525276 4.7 Philippine Long Distance Telephone SpeedSurf 504AN and Kasda KW58293 contain multiple vulnerabilities
2014-08-07 2014-08-07 2014-08-07 VU#602006 4.7 Cobham SATCOM products' web interface contains a weak password recovery vulnerability
2020-05-18 2020-04-14 2021-02-10 VU#647177 4.8 Bluetooth devices supporting BR/EDR are vulnerable to impersonation attacks
2015-07-31 2015-07-31 2015-07-31 VU#360431 4.8 Chiyu Technology fingerprint access control contains multiple vulnerabilities
2016-04-25 2016-04-29 2016-05-02 VU#229047 4.8 Allround Automations PL/SQL Developer v11 performs updates over HTTP
2016-08-16 2016-08-16 2016-08-16 VU#294272 4.8 ReadyDesk contains multiple vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis