search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2023-08-07 2023-08-07 2023-08-07 VU#947701 Freewill Solutions IFIS new trading web application vulnerable to unauthenticated remote code execution
2023-07-27 2023-07-27 2023-08-03 VU#813349 Software driver for D-Link Wi-Fi USB Adapter vulnerable to service path privilege escalation
2023-07-20 2023-07-20 2023-07-31 VU#653767 Perimeter81 macOS Application Multiple Vulnerabilities
2023-07-11 2023-07-11 2023-07-12 VU#913565 Hard-coded credentials in Technicolor TG670 DSL gateway router
2023-02-28 2023-02-28 2025-01-30 VU#782720 TCG TPM2.0 implementations vulnerable to memory corruption
2023-01-17 2023-01-17 2023-01-23 VU#572615 Vulnerabilities in TP-Link routers, WR710N-V1-151022 and Archer C5 V2
2023-01-17 2023-01-17 2023-01-17 VU#986018 New Netcomm router models NF20MESH, NF20, and NL1902 vulnerabilities
2022-11-16 2022-01-10 2023-04-04 VU#709991 Netatalk contains multiple error and memory management vulnerabilities
2022-11-08 2022-11-08 2024-05-06 VU#434994 Multiple race conditions due to TOCTOU flaws in various UEFI Implementations
2022-11-01 2022-11-01 2024-03-08 VU#794340 OpenSSL 3.0.0 to 3.0.6 decodes some punycode email addresses in X.509 certificates improperly
2022-10-07 2022-10-07 2023-07-13 VU#730793 Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference
2022-10-03 2022-10-03 2022-11-10 VU#915563 Microsoft Exchange vulnerable to server-side request forgery and remote code execution.
2022-09-27 2022-09-27 2023-06-14 VU#855201 L2 network security controls can be bypassed using VLAN 0 stacking and/or 802.3 headers
2022-08-11 2022-08-11 2024-03-04 VU#309662 Signed third party UEFI bootloaders are vulnerable to Secure Boot bypass
2022-08-04 2022-08-04 2022-08-05 VU#495801 muhttpd versions 1.1.5 and earlier are vulnerable to path traversal

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis