search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2023-09-12 2023-09-12 2024-12-20 VU#347067 Multiple BGP implementations are vulnerable to improperly formatted BGP updates
2024-04-09 2024-04-09 2024-12-19 VU#155143 Linux kernel on Intel systems is susceptible to Spectre v2 attacks
2024-12-11 2024-12-11 2024-12-11 VU#164934 PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement
2021-11-09 2021-11-09 2024-12-10 VU#999008 Compilers permit Unicode control and homoglyph characters
2024-10-23 2024-08-19 2024-10-23 VU#123336 Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J
2024-07-09 2024-07-09 2024-10-15 VU#456537 RADIUS protocol susceptible to forgery attacks.
2024-01-16 2024-01-16 2024-10-09 VU#132380 Vulnerabilities in EDK2 NetworkPkg IP stack implementation.
2024-03-19 2024-03-19 2024-10-03 VU#417980 Implementations of UDP-based application protocols are vulnerable to network loops
2024-09-19 2024-09-19 2024-09-19 VU#138043 A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server
2024-08-30 2024-07-25 2024-08-30 VU#455367 Insecure Platform Key (PK) used in UEFI system firmware signature
2024-04-30 2024-04-30 2024-08-23 VU#163057 BMC software fails to validate IPMI session.
2021-01-19 2021-01-19 2024-08-19 VU#434904 Dnsmasq is vulnerable to memory corruption and cache poisoning
2024-07-30 2024-07-30 2024-08-06 VU#244112 Multiple SMTP services are susceptible to spoofing attacks due to insufficient enforcement
2024-04-03 2024-04-03 2024-07-19 VU#421644 HTTP/2 CONTINUATION frames can be utilized for DoS attacks
2018-08-14 2018-08-14 2024-07-15 VU#857035 7.9 IKEv1 Main Mode vulnerable to brute force attacks

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis