Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2013-3752 | 1 Sun | 1 Sunos | 2017-08-28 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect integrity via vectors related to Service Management Facility (SMF). | |||||
| CVE-2013-5883 | 1 Sun | 1 Sunos | 2017-08-28 | 3.2 LOW | N/A |
| Unspecified vulnerability in Oracle Solaris 8 allows local users to affect integrity and availability via unknown vectors related to Kernel. | |||||
| CVE-2013-3748 | 1 Sun | 1 Sunos | 2017-08-28 | 7.8 HIGH | N/A |
| Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Driver/IDM (iSCSI Data Mover). | |||||
| CVE-2013-3770 | 1 Oracle | 1 Fusion Middleware | 2017-08-28 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Content Server. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is related to "iDoc script injection" in the (1) cs and (2) urm components, which allows attackers to read "sensitive" files, as demonstrated by obtaining the "AES encryption key and encrypted credentials" of the weblogic user. | |||||
| CVE-2013-5457 | 1 Ibm | 1 Java | 2017-08-28 | 9.3 HIGH | N/A |
| Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before SR7, and 6.0.0 before SR15 allows remote attackers to execute arbitrary code via unspecified vectors. | |||||
| CVE-2013-3753 | 1 Sun | 1 Sunos | 2017-08-28 | 7.8 HIGH | N/A |
| Unspecified vulnerability in Oracle Solaris 11 allows remote attackers to affect availability via vectors related to Kernel/STREAMS framework. | |||||
| CVE-2013-0490 | 1 Ibm | 1 Infosphere Guardium | 2017-08-28 | 7.2 HIGH | N/A |
| Unspecified vulnerability in IBM InfoSphere Guardium S-TAP 8.1 for DB2 on z/OS allows local users to gain privileges via unknown vectors. | |||||
| CVE-2013-0593 | 1 Ibm | 1 Spss Samplepower | 2017-08-28 | 9.3 HIGH | N/A |
| Unspecified vulnerability in the olch2x32 ActiveX control in IBM SPSS SamplePower 3.0 before 3.0-IM-S3SAMPC-WIN32-FP001 allows remote attackers to execute arbitrary code via unknown vectors. | |||||
| CVE-2013-0559 | 1 Ibm | 1 Api Management | 2017-08-28 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in IBM API Management 2.0 before 2.0.0.1 allows remote attackers to access tenant APIs, and consequently obtain sensitive information or modify data, via unknown vectors. | |||||
| CVE-2013-0484 | 1 Ibm | 1 Cognos Tm1 | 2017-08-28 | 4.3 MEDIUM | N/A |
| The server process in IBM Cognos TM1 10.1.x before 10.1.1 FP1 allows remote attackers to cause a denial of service (daemon crash) via an undocumented API call that triggers the transmission of unexpected data. | |||||
| CVE-2013-0553 | 1 Ibm | 2 Lotus Sametime, Sametime | 2017-08-28 | 3.5 LOW | N/A |
| The client implementation in IBM Sametime 8.5.1 through 8.5.2.1, as used in Sametime Connect client, Sametime Advanced Connect client, Sametime Advanced Web client, and other products, allows remote authenticated users to send commands to individual chat users, or to all participants in a chat room, via a crafted Sametime Instant Message (IM). | |||||
| CVE-2013-0465 | 1 Ibm | 1 Webshere Cast Iron Cloud Integration | 2017-08-28 | 5.4 MEDIUM | N/A |
| Unspecified vulnerability in the IBM WebSphere Cast Iron physical and virtual appliance 6.0 and 6.1 before 6.1.0.15 and 6.3 before 6.3.0.1, when LDAP authentication is enabled, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors. | |||||
| CVE-2013-5393 | 1 Ibm | 1 Websphere Extreme Scale | 2017-08-28 | 7.5 HIGH | N/A |
| The monitoring console in IBM WebSphere eXtreme Scale 7.1.0, 7.1.1, 8.5.0, and 8.6.0 does not properly process logoff actions, which has unspecified impact and remote attack vectors. | |||||
| CVE-2013-3789 | 1 Oracle | 1 Database Server | 2017-08-28 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2013-5382 | 1 Ibm | 1 Maximo Asset Management | 2017-08-28 | 4.0 MEDIUM | N/A |
| IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote authenticated users to gain privileges via unspecified vectors, a different vulnerability than CVE-2013-5383. | |||||
| CVE-2013-5397 | 1 Ibm | 1 Rational Focal Point | 2017-08-28 | 3.3 LOW | N/A |
| Unspecified vulnerability in the Webservice Axis Gateway in IBM Rational Focal Point 6.4 before devfix1, 6.4.1.3 before devfix1, 6.5.1 before devfix1, 6.5.2 before devfix4, 6.5.2.3 before devfix9, 6.6 before devfix5, 6.6.0.1 before devfix2, and 6.6.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-5398. | |||||
| CVE-2013-5398 | 1 Ibm | 1 Rational Focal Point | 2017-08-28 | 3.3 LOW | N/A |
| Unspecified vulnerability in the Webservice Axis Gateway in IBM Rational Focal Point 6.4 before devfix1, 6.4.1.3 before devfix1, 6.5.1 before devfix1, 6.5.2 before devfix4, 6.5.2.3 before devfix9, 6.6 before devfix5, 6.6.0.1 before devfix2, and 6.6.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-5397. | |||||
| CVE-2013-3824 | 1 Oracle | 1 Supply Chain Products Suite | 2017-08-28 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Agile Collaboration Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote authenticated users to affect integrity via unknown vectors related to Manufacturing/Mfg Parts. | |||||
| CVE-2013-1948 | 2 Rob Westgeest, Ruby-lang | 2 Md2pdf, Ruby | 2017-08-28 | 10.0 HIGH | N/A |
| converter.rb in the md2pdf gem 0.0.1 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename. | |||||
| CVE-2013-3772 | 1 Oracle | 1 Fusion Middleware | 2017-08-28 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms. | |||||