search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2016-06-02 2016-06-02 2016-06-06 VU#321640 6.4 NTP.org ntpd is vulnerable to denial of service and other vulnerabilities
2016-06-01 2016-06-01 2016-12-21 VU#754056 5.8 Fonality contains a hard-coded password and embedded SSL private key
2016-05-26 2016-05-26 2016-05-26 VU#482135 2.0 MEDHOST Perioperative Information Management System contains hard-coded database credentials
2016-05-17 2016-05-17 2016-05-17 VU#586503 5.9 Chef Manage deserializes cookie data insecurely
2016-05-13 2016-05-13 2016-05-13 VU#785823 4.9 Lantronix xPrintServer contains multiple vulnerabilities
2016-05-19 2016-05-11 2016-06-14 VU#204232 4.6 Up.time agent for Linux does not authenticate a user before allowing read access to the file system
2016-05-04 2016-05-03 2016-05-04 VU#250519 7.3 ImageMagick does not properly validate input before processing images using a delegate
2016-05-02 2016-05-01 2016-05-04 VU#862384 4.6 libarchive contains a heap-based buffer overflow due to improper input validation
2016-04-25 2016-04-29 2016-05-02 VU#229047 4.8 Allround Automations PL/SQL Developer v11 performs updates over HTTP
2016-04-27 2016-04-26 2016-04-28 VU#718152 5.3 NTP.org ntpd contains multiple vulnerabilities
2016-04-22 2016-04-22 2016-04-22 VU#822980 7.1 SysLINK M2M Modular Gateway contains multiple vulnerabilities
2016-04-29 2016-04-21 2016-04-29 VU#505560 4.4 Accellion File Transfer Appliance (FTA) contains multiple vulnerabilities
2016-04-22 2016-04-18 2016-04-22 VU#267328 6.3 HP Data Protector does not perform authentication and contains an embedded SSL private key
2016-04-12 2016-04-12 2016-04-14 VU#813296 6.9 Microsoft Windows and Samba may allow spoofing of authenticated users ("Badlock")
2016-04-07 2016-04-07 2016-04-20 VU#615456 6.7 Lemur Vehicle Monitors BlueDriver LSB2 does not authenticate users for Bluetooth access

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis