search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated VU# CVSS Title
2019-04-17 2019-04-15 2019-04-23 VU#166939 4.0 Broadcom WiFi chipset drivers contain multiple vulnerabilities
2019-04-11 2019-04-10 2019-04-24 VU#192371 4.5 VPN applications insecurely store session cookies
2019-04-12 2019-04-10 2019-04-16 VU#871675 7.0 WPA3 design issues and implementation vulnerabilities in hostapd and wpa_supplicant
2019-04-08 2019-04-08 2019-04-08 VU#174715 1.6 MyCar Controls uses hard-coded credentials
2019-01-28 2019-01-21 2019-02-20 VU#465632 7.5 Microsoft Exchange server 2013 and newer are vulnerable to NTLM relay attacks
2018-12-20 2018-12-21 2019-01-15 VU#741315 4.3 Dokan file system driver contains a stack-based buffer overflow
2018-12-20 2018-12-19 2018-12-20 VU#228297 4.3 Microsoft Windows MsiAdvertiseProduct function vulnerable to privilege escalation via race condition
2018-12-19 2018-12-19 2018-12-21 VU#573168 6.2 Microsoft Internet Explorer scripting engine JScript memory corruption vulnerability
2018-12-13 2018-12-12 2019-01-28 VU#756913 0.8 Pixar Tractor contains a stored cross-site scripting vulnerability
2019-02-05 2018-11-21 2019-04-19 VU#730261 4.6 Marvell Avastar wireless SoCs have multiple vulnerabilities
2019-01-04 2018-11-12 2019-01-04 VU#531281 9.7 Microsoft Windows DNS servers are vulnerable to heap overflow
2019-01-04 2018-11-12 2019-01-04 VU#289907 5.0 Microsoft Windows Kernel Transaction Manager (KTM) is vulnerable to a race condition
2018-11-06 2018-11-05 2019-02-04 VU#395981 4.0 Self-encrypting hard drives do not adequately protect data
2018-11-01 2018-11-01 2019-01-07 VU#317277 4.6 Texas Instruments CC2640 and CC2650 microcontrollers vulnerable to heap overflow and insecure update
2018-11-01 2018-10-31 2018-11-05 VU#339704 5.5 Cisco ASA and FTD SIP Inspection denial-of-service vulnerability

Sponsored by the Department of Homeland Security Office of Cybersecurity and Communications.