search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2016-06-20 2016-06-20 2016-06-20 VU#143335 4.0 mDNSResponder contains multiple memory-based vulnerabilities
2016-06-23 2016-06-23 2016-06-23 VU#302544 3.0 Alertus Desktop Notification for OS X sets insecure permissions for configuration and other files
2016-06-10 2016-06-10 2016-07-01 VU#778696 5.6 Netgear D6000 and D3600 contain hard-coded cryptographic keys and are vulnerable to authentication bypass
2016-07-05 2016-07-05 2016-07-05 VU#690343 3.4 Acer Portal app for Android does not properly validate SSL certificates
2016-07-12 2016-07-12 2016-07-12 VU#123799 4.4 libbpg contains a type confusion vulnerability that leads to out of bounds write
2016-07-13 2016-07-13 2016-07-13 VU#665280 3.5 Accela Civic Platform Citizen Access portal contains multiple vulnerabilities
2016-07-18 2016-07-18 2016-07-19 VU#797896 1.1 CGI web servers assign Proxy header values from client requests to internal HTTP_PROXY environment variables
2016-07-29 2016-07-29 2016-07-29 VU#217871 3.4 Intel CrossWalk project does not validate SSL certificates after first acceptance
2016-08-01 2016-08-01 2016-08-01 VU#974424 6.2 Crestron Electronics DM-TXRX-100-STR web interface contains multiple vulnerabilities
2016-08-01 2016-08-01 2016-08-02 VU#603047 6.2 Crestron AirMedia AM-100 contains multiple vulnerabilities
2016-08-04 2016-08-04 2016-08-05 VU#856152 7.0 NUUO and Netgear Network Video Recorder (NVR) products web interfaces contain multiple vulnerabilities
2016-08-08 2016-08-06 2016-08-08 VU#735416 1.0 UltraVNC repeater does not restrict IP addresses or ports by default
2016-07-19 2016-07-19 2016-08-08 VU#682704 2.2 Misys FusionCapital Opics Plus contains multiple vulnerabilities
2009-04-06 1997-06-07 2016-08-12 VU#908801 0 Particle Software IntraLaunch Application Launcher ActiveX control fails to restrict access to dangerous methods
2016-08-11 2016-08-11 2016-08-12 VU#332115 6.3 D-Link routers contain buffer overflow vulnerability

Sponsored by CISA.