search
menu
icon-carat-right
cmu-wordmark
×
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Carnegie Mellon University
Software Engineering Institute
CERT Coordination Center
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Home
Current:
Notes
CERT/CC Vulnerability Notes Database
Published
Public
Updated
ID
CVSS
Title
2018-02-01
2018-02-01
2018-02-01
VU#319904
3.0
Pulse Secure Linux client GUI fails to validate SSL certificates
2017-10-02
2017-10-02
2018-02-02
VU#973527
8.7
Dnsmasq contains multiple vulnerabilities
2018-02-15
2018-02-15
2018-02-19
VU#940439
7.3
Quagga bgpd is affected by multiple vulnerabilities
2017-02-15
2017-02-15
2018-02-27
VU#614751
4.7
Hughes satellite modems contain multiple vulnerabilities
2012-07-24
2012-07-20
2018-03-21
VU#108471
7.9
Symantec Web Gateway contains multiple vulnerabilities
2018-03-27
2018-02-07
2018-03-27
VU#184077
8.7
Navarino Infinity web interface is affected by multiple vulnerabilities.
2018-03-19
2012-03-20
2018-04-04
VU#306792
1.7
Bouncy Castle BKS-V1 keystore files vulnerable to trivial hash collisions
2016-08-15
2016-08-15
2018-04-04
VU#905344
3.4
HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2017-12-12
2017-12-12
2018-04-09
VU#144389
4.2
TLS implementations may disclose side channel information via discrepancies between valid and invalid PKCS#1 padding
2018-03-29
2018-03-27
2018-04-24
VU#277400
5.9
Windows 7 and Windows Server 2008 R2 x64 fail to protect kernel memory when the Microsoft update for meltdown is installed
2018-05-14
2018-05-14
2018-05-15
VU#122919
0
OpenPGP and S/MIME mail client vulnerabilities
2018-02-27
2018-02-27
2018-06-05
VU#475445
4.9
Multiple SAML libraries may allow authentication bypass via incorrect XML canonicalization and DOM traversal
2018-05-23
2018-05-22
2018-06-13
VU#338343
3.9
strongSwan VPN charon server vulnerable to buffer underflow
2018-05-21
2018-05-21
2018-06-19
VU#180049
3.4
CPU hardware utilizing speculative execution may be vulnerable to cache side-channel attacks
2018-08-03
2013-06-09
2018-08-03
VU#307144
0
mingw-w64 by default produces executables that opt in to ASLR, but are not compatible with ASLR
Previous
1
226
227
228
You're on page
229
230
231
232
240
Next
Sponsored by
CISA.
Download PGP Key
Read CERT/CC Blog
Learn about Vulnerability Analysis