search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2016-12-13 2016-12-12 2016-12-19 VU#535111 4.6 McAfee VirusScan Enterprise for Windows scriptproxy COM object memory corruption vulnerability
2016-05-02 2016-05-01 2016-05-04 VU#862384 4.6 libarchive contains a heap-based buffer overflow due to improper input validation
2015-08-31 2015-08-31 2016-09-22 VU#201168 4.6 Belkin N600 DB Wireless Dual Band N+ router contains multiple vulnerabilities
2015-09-03 2015-09-03 2016-05-31 VU#630872 4.6 Mediabridge Medialink Wireless-N Broadband Router MWN-WAPR300N contains multiple vulnerabilities
2017-03-06 2017-03-06 2017-03-07 VU#168699 4.6 dotCMS contains multiple vulnerabilities
2012-09-17 2012-09-17 2012-09-17 VU#389795 4.6 Windows Phone 7 does not check certificate Common Names when sending or receiving emails over SSL.
2009-11-30 2009-11-30 2013-06-20 VU#261869 4.6 Clientless SSL VPN products break web browser domain-based security models
2017-11-29 2017-11-13 2017-11-30 VU#113765 4.6 Apple MacOS High Sierra disabled account authentication bypass
2015-10-27 2015-10-19 2015-11-03 VU#350508 4.6 HP ArcSight SmartConnector fails to properly validate SSL and contains a hard-coded password
2014-08-04 2014-08-04 2014-08-04 VU#252068 4.6 Symantec Endpoint Protection Client contains a kernel pool overflow vulnerability
2014-06-18 2014-06-18 2015-09-29 VU#774788 4.6 Belkin N150 path traversal vulnerability
2015-06-10 2015-06-08 2015-06-10 VU#555984 4.6 Avigilon Control Center is vulnerable to path traversal
2014-01-10 2014-01-02 2014-08-26 VU#348126 4.6 NTP can be abused to amplify denial-of-service attack traffic
2016-05-19 2016-05-11 2016-06-14 VU#204232 4.6 Up.time agent for Linux does not authenticate a user before allowing read access to the file system
2016-02-29 2016-02-24 2016-03-04 VU#938151 4.6 Forwarding Loop Attacks in Content Delivery Networks may result in denial of service

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis