search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2012-10-04 2012-09-26 2012-10-04 VU#989684 0.9 Cerberus FTP Server web interface cross-site request forgery vulnerability
2012-09-24 2012-09-24 2012-09-25 VU#555668 5.8 JAMF Software Casper Suite contains a cross-site request forgery vulnerability
2013-08-02 2012-09-20 2013-08-08 VU#987798 3.2 BREACH vulnerability in compressed HTTPS
2012-09-27 2012-09-20 2012-09-27 VU#950795 2 Trend Micro Control Manager adhoc query vulnerability
2012-09-18 2012-09-17 2013-05-15 VU#459446 4 osCommerce v2.3.1 with PayPal website payments standard module v1.0 design vulnerability
2012-09-17 2012-09-17 2012-09-17 VU#591667 1.7 CoSoSys Endpoint Protector 4 appliance contains a predictable password for root-equivalent account vulnerability
2012-09-17 2012-09-17 2012-09-17 VU#389795 4.6 Windows Phone 7 does not check certificate Common Names when sending or receiving emails over SSL.
2012-09-17 2012-09-17 2012-09-21 VU#480095 6.9 Microsoft Internet Explorer 6/7/8/9 contain a use-after-free vulnerability
2012-09-13 2012-09-13 2014-08-15 VU#471364 1.4 Trend Micro InterScan Messaging Security Suite is vulnerable to XSS and CSRF vulnerabilities
2012-09-10 2012-09-10 2012-09-10 VU#143395 3.4 F5 Networks ASM appliance contains a cross-site scripting vulnerability
2012-09-06 2012-09-06 2014-08-15 VU#788478 5.2 Webmin contains input validation vulnerabilities
2012-10-30 2012-08-31 2012-10-30 VU#408099 6.1 CA ARCserve Backup authentication service denial-of-service vulnerability
2012-10-30 2012-08-31 2012-10-30 VU#936363 7.8 CA ARCserve Backup opcode 0x7a RWSList remote code execution vulnerability
2012-08-30 2012-08-30 2012-08-30 VU#511404 4.8 Open Technology Real Services nested tags cross-site scripting vulnerability
2012-08-27 2012-08-26 2013-01-16 VU#636312 9.5 Oracle Java JRE 1.7 Expression.execute() and SunToolkit.getField() fail to restrict access to privileged code

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis