search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2020-02-12 2020-02-12 2020-02-13 VU#597809 2.4 IBM ServeRAID Manager exposes unauthenticated Java Remote Method Invocation (RMI) service
2020-02-05 2020-02-05 2020-07-08 VU#261385 8.3 Cisco Discovery Protocol (CDP) enabled devices are vulnerable to denial-of-service and remote code execution
2020-03-04 2020-02-02 2020-06-15 VU#782301 7.7 pppd vulnerable to buffer overflow due to a flaw in EAP packet processing
2020-05-14 2020-01-28 2020-05-15 VU#366027 7.8 Samsung Qmage codec for Android Skia library does not properly validate image files
2020-01-31 2020-01-28 2020-03-09 VU#390745 10.0 OpenSMTPD vulnerable to local privilege escalation and remote code execution
2020-01-17 2020-01-17 2020-02-19 VU#338824 7.1 Microsoft Internet Explorer Scripting Engine memory corruption vulnerability
2020-01-14 2020-01-14 2020-01-18 VU#491944 5.9 Microsoft Windows Remote Desktop Gateway allows for unauthenticated remote code execution
2020-01-14 2020-01-14 2020-01-15 VU#849224 9.4 Microsoft Windows CryptoAPI fails to properly validate ECC certificate chains
2020-01-14 2020-01-14 2020-01-14 VU#335217 4.9 Content Delivery Networks handle HTTP headers in different and unexpected ways
2019-12-19 2019-12-19 2019-12-19 VU#873161 3.8 Telos Automated Message Handling System contains multiple vulnerabilities
2020-01-08 2019-12-17 2020-02-03 VU#619785 7.1 Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP web server vulnerability
2019-11-01 2019-10-31 2019-11-15 VU#125336 4.4 Microsoft Office for Mac cannot properly disable XLM macros
2019-10-09 2019-10-09 2019-10-11 VU#719689 6.9 Multiple vulnerabilities found in the Cobham EXPLORER 710 satcom terminal
2019-10-09 2019-10-09 2019-10-25 VU#763073 1.8 iTerm2 with tmux integration is vulnerable to remote command execution
2019-10-23 2019-10-03 2019-10-25 VU#766427 6.7 Multiple D-Link routers vulnerable to remote command execution

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis