search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated VU# CVSS Title
2020-03-19 2020-03-19 2020-06-04 VU#425163 0 Machine learning classifiers trained via gradient descent are vulnerable to arbitrary misclassification attack
2020-03-11 2020-03-10 2020-06-04 VU#872016 7.8 Microsoft SMBv3 compression remote code execution vulnerability
2020-03-04 2020-02-02 2020-06-15 VU#782301 7.7 pppd vulnerable to buffer overflow due to a flaw in EAP packet processing
2019-07-15 2019-07-15 2020-06-18 VU#129209 0 LLVMs Arm stack protection feature can be rendered ineffective
2012-06-27 2012-06-27 2020-06-29 VU#971035 0.5 Simple Certificate Enrollment Protocol (SCEP) does not strongly authenticate certificate requests
2020-02-05 2020-02-05 2020-07-08 VU#261385 8.3 Cisco Discovery Protocol (CDP) enabled devices are vulnerable to denial-of-service and remote code execution
2020-06-08 2020-06-08 2020-07-08 VU#339275 Universal Plug and Play (UPnP) SUBSCRIBE can be abused to send traffic to arbitrary destinations
2020-05-26 2020-05-23 2020-07-09 VU#127371 6.8 iOS, iPadOS, tvOS, watchOS, and macOS contain a double-free vulnerability in the XNU kernel lio_listio() function
2020-07-08 2020-06-30 2020-07-13 VU#290915 F5 BIG-IP contains multiple vulnerabilities including unauthenticated remote command execution
2020-07-29 2020-07-29 2020-08-13 VU#174059 GRUB2 bootloader is vulnerable to buffer overflow
2020-08-20 2020-08-20 2020-08-20 VU#116713 NCR SelfServ ATM dispenser software contains multiple vulnerabilities
2020-08-20 2020-08-20 2020-08-21 VU#815655 NCR SelfServ ATM BNA contains multiple vulnerabilities
2020-08-20 2020-08-20 2020-08-24 VU#221785 Diebold Nixdorf ProCash 2100xe USB ATM does not adequately secure communications between CCDM and host
2010-08-02 2010-08-02 2020-09-02 VU#362332 9.5 Wind River Systems VxWorks debug service enabled by default
2020-06-02 2020-06-01 2020-09-30 VU#636397 IP-in-IP protocol routes arbitrary traffic by default

Sponsored by CISA.