search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2012-12-12 2012-12-12 2012-12-12 VU#876780 1.4 D-Link DSL2730U router restricted telnet shell command whitelisting bypass
2012-11-26 2012-11-26 2012-12-07 VU#281284 1.9 Samsung Printer firmware contains a hardcoded SNMP community string
2012-12-06 2012-11-30 2012-12-06 VU#571068 1.5 ManageEngine AssetExplorer fails to properly sanitize XML asset data submission
2011-10-05 2011-08-05 2012-11-30 VU#357851 8 UPnP requests accepted over router WAN interfaces
2012-11-09 2012-10-29 2012-11-19 VU#795644 4.4 Esri ArcGIS server 10.1 contains a blind SQL injection vulnerability
2012-11-05 2012-11-05 2012-11-15 VU#985625 7.8 Symantec Antivirus products fail to properly handle CAB files
2012-11-14 2012-10-31 2012-11-14 VU#558132 2.9 Dell OpenManage Server Administrator contains a cross-site scripting vulnerability
2012-11-12 2012-11-12 2012-11-12 VU#611988 1.3 Vanilla Forums version 2.1.a26 contains a parameter manipulation vulnerability
2012-11-09 2012-11-09 2012-11-09 VU#659615 2.3 Oberthur smart cards generate weak certificates
2012-11-02 2012-11-02 2012-11-08 VU#802596 1.2 Pattern Insight 2.3 contains multiple vulnerabilities
2012-11-07 2012-11-07 2012-11-07 VU#427547 1.8 Agile FleetCommander and FleetCommander Kiosk versions prior to 4.08 contain multiple vulnerabilities
2012-11-05 2012-11-05 2012-11-06 VU#662243 6.5 Sophos Antivirus contains multiple vulnerabilities
2012-11-06 2012-11-06 2012-11-06 VU#180091 0.9 VeriCentre web application SQL injection vulnerability
2012-11-02 2012-10-22 2012-11-02 VU#111708 3.7 Fortigate UTM appliances share the same default CA certificate
2012-10-15 2012-10-15 2012-11-01 VU#332412 6.1 Novell ZENworks Asset Management 7.5 web console information disclosure vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis