search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2016-03-11 2016-03-10 2016-03-14 VU#713312 2.3 DTE Energy Insight app vulnerable to information exposure
2016-03-17 2016-03-17 2016-04-18 VU#897144 4.4 Solarwinds Dameware Remote Mini Controller Windows service is vulnerable to stack buffer overflow
2016-03-24 2016-03-24 2016-03-24 VU#279472 1.4 Granite Data Services AMF framework fails to properly parse XML input containing a reference to external entities
2016-03-26 2016-03-25 2016-03-26 VU#319816 3.8 npm fails to restrict the actions of malicious npm packages
2016-03-28 2016-03-28 2016-03-28 VU#732760 1.8 Autodesk Backburner Manager contains a stack-based buffer overflow vulnerability
2016-03-30 2016-02-15 2016-03-30 VU#344432 2.4 Patterson Dental Eaglesoft uses a hard-coded database password across installations
2016-04-07 2016-04-07 2016-04-20 VU#615456 6.7 Lemur Vehicle Monitors BlueDriver LSB2 does not authenticate users for Bluetooth access
2016-04-12 2016-04-12 2016-04-14 VU#813296 6.9 Microsoft Windows and Samba may allow spoofing of authenticated users ("Badlock")
2016-04-22 2016-04-18 2016-04-22 VU#267328 6.3 HP Data Protector does not perform authentication and contains an embedded SSL private key
2016-04-22 2016-04-22 2016-04-22 VU#822980 7.1 SysLINK M2M Modular Gateway contains multiple vulnerabilities
2016-04-25 2016-04-29 2016-05-02 VU#229047 4.8 Allround Automations PL/SQL Developer v11 performs updates over HTTP
2016-04-27 2016-04-26 2016-04-28 VU#718152 5.3 NTP.org ntpd contains multiple vulnerabilities
2016-04-29 2016-04-21 2016-04-29 VU#505560 4.4 Accellion File Transfer Appliance (FTA) contains multiple vulnerabilities
2016-05-02 2016-05-01 2016-05-04 VU#862384 4.6 libarchive contains a heap-based buffer overflow due to improper input validation
2016-05-04 2013-07-10 2016-05-04 VU#369800 7.4 Little CMS 2 DefaultICCintents double-free vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis