search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated VU# CVSS Title
2018-03-29 2018-03-27 2018-04-24 VU#277400 5.9 Windows 7 and Windows Server 2008 R2 x64 fail to protect kernel memory when the Microsoft update for meltdown is installed
2017-12-12 2017-12-12 2018-04-09 VU#144389 4.2 TLS implementations may disclose side channel information via discrepancies between valid and invalid PKCS#1 padding
2016-08-15 2016-08-15 2018-04-04 VU#905344 3.4 HTTP CONNECT and 407 Proxy Authentication Required messages are not integrity protected
2018-03-19 2012-03-20 2018-04-04 VU#306792 1.7 Bouncy Castle BKS-V1 keystore files vulnerable to trivial hash collisions
2018-03-27 2018-02-07 2018-03-27 VU#184077 8.7 Navarino Infinity web interface is affected by multiple vulnerabilities.
2012-07-24 2012-07-20 2018-03-21 VU#108471 7.9 Symantec Web Gateway contains multiple vulnerabilities
2017-02-15 2017-02-15 2018-02-27 VU#614751 4.7 Hughes satellite modems contain multiple vulnerabilities
2018-02-15 2018-02-15 2018-02-19 VU#940439 7.3 Quagga bgpd is affected by multiple vulnerabilities
2017-10-02 2017-10-02 2018-02-02 VU#973527 8.7 Dnsmasq contains multiple vulnerabilities
2018-02-01 2018-02-01 2018-02-01 VU#319904 3 Pulse Secure Linux client GUI fails to validate SSL certificates
2017-10-12 2017-10-12 2018-01-22 VU#590639 5.5 NXP Semiconductors MQX RTOS contains multiple vulnerabilities
2017-05-02 2017-05-01 2017-12-21 VU#491375 5.5 Intel Active Management Technology (AMT) does not properly enforce access control
2017-11-29 2017-11-13 2017-11-30 VU#113765 4.6 Apple MacOS High Sierra disabled account authentication bypass
2017-11-21 2017-11-21 2017-11-21 VU#681983 1.3 Install Norton Security for Mac does not verify SSL certificates
2017-11-15 2017-11-14 2017-11-20 VU#421280 5.5 Microsoft Office Equation Editor stack buffer overflow

Sponsored by the Department of Homeland Security Office of Cybersecurity and Communications.