search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2014-07-03 2014-06-24 2014-07-03 VU#402020 6.3 Autodesk VRED contains an unauthenticated remote code execution vulnerability
2015-04-30 2015-04-30 2015-04-30 VU#581276 6.3 EMC AutoStart is vulnerable to remote code execution via specially crafted packets
2017-04-04 2017-04-04 2017-04-14 VU#307983 6.3 Action Message Format (AMF3) Java implementations are vulnerable to insecure deserialization and XML external entities references
2016-11-17 2016-11-11 2016-11-17 VU#624539 6.3 Ragentek Android OTA update mechanism vulnerable to MITM attack
2016-08-11 2016-08-11 2016-08-12 VU#332115 6.3 D-Link routers contain buffer overflow vulnerability
2016-04-22 2016-04-18 2016-04-22 VU#267328 6.3 HP Data Protector does not perform authentication and contains an embedded SSL private key
2019-08-13 2019-08-13 2019-11-19 VU#605641 6.3 HTTP/2 implementations do not robustly handle abnormal traffic and resource exhaustion
2015-07-24 2015-07-21 2015-09-14 VU#819439 6.2 Fiat Chrysler Automobiles UConnect allows a vehicle to be remotely controlled
2012-08-17 2012-08-17 2012-08-17 VU#441363 6.2 HP Virtual SAN appliance root shell command injection
2013-10-16 2013-10-15 2014-04-28 VU#953241 6.2 Oracle Outside In Microsoft Access 1.x parser stack buffer overflow
2011-11-08 2011-11-08 2012-03-28 VU#675073 6.2 Microsoft Windows TrueType font array indexing vulnerability
2017-11-03 2017-11-01 2017-11-09 VU#739007 6.2 IEEE P1735 implementations may have weak cryptographic protections
2011-12-08 2011-11-29 2013-12-02 VU#717921 6.2 Hewlett-Packard printers and scanner devices allow remote unautheticated firmware updates
2015-03-26 2015-03-26 2015-03-26 VU#930956 6.2 Multiple ANTlabs InnGate models allow unauthenticated read/write to filesystem
2016-08-01 2016-08-01 2016-08-02 VU#603047 6.2 Crestron AirMedia AM-100 contains multiple vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis