search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated VU# CVSS Title
2020-04-06 2020-04-06 2020-04-09 VU#660597 0.9 Periscope BuySpeed is vulnerable to stored cross-site scripting
2020-03-30 2020-03-30 2020-03-30 VU#962085 0.9 Versiant LYNX Customer Service Portal is vulnerable to stored cross-site scripting
2020-03-30 2019-04-12 2020-03-30 VU#944837 6.7 Vertiv Avocent UMG-4000 vulnerable to command injection and cross-site scripting vulnerabilities
2020-03-23 2020-03-23 2020-03-24 VU#354840 9.0 Microsoft Windows Type 1 font parsing remote code execution vulnerabilities
2020-03-19 2020-03-19 2020-03-20 VU#425163 0 Machine learning classifiers trained via gradient descent are vulnerable to arbitrary misclassification attack
2020-03-11 2020-03-10 2020-03-23 VU#872016 7.8 Microsoft SMBv3 compression remote code execution vulnerability
2020-03-04 2020-02-02 2020-03-23 VU#782301 7.7 pppd vulnerable to buffer overflow due to a flaw in EAP packet processing
2020-02-24 2020-02-12 2020-02-26 VU#498544 7.1 ZyXEL pre-authentication command injection in weblogin.cgi
2020-02-12 2020-02-12 2020-02-13 VU#597809 2.4 IBM ServeRAID Manager exposes unauthenticated Java Remote Method Invocation (RMI) service
2020-02-05 2020-02-05 2020-02-12 VU#261385 8.3 Cisco Discovery Protocol (CDP) enabled devices are vulnerable to denial-of-service and remote code execution
2020-01-31 2020-01-28 2020-03-09 VU#390745 10.0 OpenSMTPD vulnerable to local privilege escalation and remote code execution
2020-01-17 2020-01-17 2020-02-19 VU#338824 7.1 Microsoft Internet Explorer Scripting Engine memory corruption vulnerability
2020-01-14 2020-01-14 2020-01-14 VU#335217 4.9 Multiple caching service providers are vulnerable to HTTP cache poisoning
2020-01-14 2020-01-14 2020-01-18 VU#491944 5.9 Microsoft Windows Remote Desktop Gateway allows for unauthenticated remote code execution
2020-01-14 2020-01-14 2020-01-15 VU#849224 9.4 Microsoft Windows CryptoAPI fails to properly validate ECC certificate chains

Sponsored by CISA.