search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2012-11-09 2012-10-29 2012-11-19 VU#795644 4.4 Esri ArcGIS server 10.1 contains a blind SQL injection vulnerability
2012-11-12 2012-11-12 2012-11-12 VU#611988 1.3 Vanilla Forums version 2.1.a26 contains a parameter manipulation vulnerability
2012-11-14 2012-10-31 2012-11-14 VU#558132 2.9 Dell OpenManage Server Administrator contains a cross-site scripting vulnerability
2012-11-16 2012-11-16 2014-07-30 VU#273371 1.9 Novell File Reporter contains multiple vulnerabilities
2012-11-20 2012-11-20 2014-01-28 VU#849841 8.7 Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers
2012-11-26 2012-11-26 2012-12-07 VU#281284 1.9 Samsung Printer firmware contains a hardcoded SNMP community string
2012-12-06 2012-11-30 2012-12-06 VU#571068 1.5 ManageEngine AssetExplorer fails to properly sanitize XML asset data submission
2012-12-07 2012-11-15 2014-08-15 VU#702452 3.9 Qualcomm Android OS kernel privilege escalation and denial of service vulnerabilites
2012-12-12 2012-12-12 2012-12-12 VU#876780 1.4 D-Link DSL2730U router restricted telnet shell command whitelisting bypass
2012-12-12 2012-11-19 2013-01-02 VU#194604 1.8 IBM Power 5 Service Processor privilege escalation vulnerability
2012-12-12 2012-12-12 2012-12-12 VU#856892 1.3 Centreon 2.3.3 through 2.3.9-4 blind sqli injection vulnerability.
2012-12-13 2012-11-24 2012-12-13 VU#871148 1.5 Huawei E585 pocket wifi 2 device contains multiple vulnerabilities
2012-12-17 2012-12-17 2014-07-24 VU#546769 3.2 Adobe Shockwave player vulnerable to downgrading
2012-12-17 2012-12-17 2014-05-15 VU#323161 0 Adobe Shockwave player provides vulnerable Flash runtime
2012-12-17 2012-12-17 2014-07-24 VU#519137 3.2 Adobe Shockwave player installs Xtras without prompting

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis