search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2016-01-21 2016-01-21 2016-01-27 VU#992624 5.9 Harman AMX multimedia devices contain hard-coded credentials
2016-01-28 2016-01-28 2016-01-29 VU#257823 6.9 OpenSSL re-uses unsafe prime numbers in Diffie-Hellman protocol
2016-02-01 2016-02-01 2016-02-01 VU#972224 1.0 Huawei Mobile WiFi E5151 and E5186 routers use insufficiently random values for DNS queries
2016-02-02 2016-02-02 2016-02-02 VU#544527 2.1 OpenELEC and RasPlex have a hard-coded SSH root password
2016-02-02 2016-02-02 2016-02-02 VU#719736 4.4 Fisher-Price Smart Toy platform allows some unauthenticated web API commands
2016-02-03 2016-02-03 2016-02-04 VU#777024 5.6 Netgear Management System NMS300 contains arbitrary file upload and path traversal vulnerabilities
2016-02-04 2016-02-04 2016-02-08 VU#305096 1.6 Comodo Chromodo browser with Ad Sanitizer does not enforce same origin policy and is based on an outdated version of Chromium
2016-02-11 2016-02-11 2016-02-16 VU#327976 5.9 Cisco Adaptive Security Appliance (ASA) IKEv1 and IKEv2 contains a buffer overflow vulnerability
2016-03-30 2016-02-15 2016-03-30 VU#344432 2.4 Patterson Dental Eaglesoft uses a hard-coded database password across installations
2016-02-16 2016-02-16 2016-11-09 VU#507216 5.2 Hirschmann "Classic Platform" switches reveal administrator password in SNMP community string by default
2016-02-17 2016-02-16 2016-03-14 VU#457759 8.1 glibc vulnerable to stack buffer overflow in DNS resolver
2016-02-17 2016-02-17 2016-02-17 VU#923388 6.2 Swann SRNVW-470 allows unauthorized access to video stream and contains a hard-coded password
2016-02-17 2016-02-17 2016-02-19 VU#899080 6.4 Zhuhai Raysharp firmware for DVRs from multiple vendors contains hard-coded credentials
2016-02-22 2016-02-22 2016-04-04 VU#485744 5.9 Flexera Software FlexNet Publisher lmgrd contains a buffer overflow vulnerability
2016-02-24 2016-02-23 2016-03-01 VU#981271 1.9 Multiple wireless keyboard/mouse devices use an unsafe proprietary wireless protocol

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis