search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2014-01-31 2014-01-31 2014-08-14 VU#250358 1.2 Hughes Network Systems Broadband Global Area Network (BGAN) satellite terminal firmware contains multiple vulnerabilities
2014-01-31 2014-01-31 2014-01-31 VU#108062 1.9 Lexmark laser printers contain multiple vulnerabilities
2014-01-28 2014-01-20 2014-01-28 VU#686662 4.8 Fail2ban postfix and cyrus-imap filters contain denial-of-service vulnerabilities
2014-01-27 2014-01-27 2014-01-28 VU#863369 2.9 Mozilla Thunderbird does not adequately restrict HTML elements in email message content
2014-01-23 2013-01-20 2014-01-28 VU#405942 0.9 CS-Cart version 4.0.2 contains cross-site scripting vulnerabilities
2014-01-23 2014-01-23 2014-02-10 VU#105686 2.4 Thecus NAS Server N8800 contains multiple vulnerabilities
2014-01-23 2014-01-17 2014-07-24 VU#869702 1.4 Avanset Visual CertExam Manager 3.3 SQL injection vulnerability
2014-01-23 2014-01-23 2014-02-07 VU#168751 0.9 Emerson Network Power Avocent MergePoint Unity 2016 KVM and possibly other model switches contain a directory traversal vulnerability
2014-01-20 2013-12-20 2014-01-20 VU#219470 5.7 MW6 Technologies ActiveX controls contain multiple vulnerabilities
2014-01-17 2014-01-17 2014-01-17 VU#122582 4.3 Dell PowerConnect 3348, 3524p, and 5324 switches are vulnerable to denial-of-service attacks
2014-01-13 2013-11-25 2016-05-11 VU#191750 0.9 ASUS Wireless Router products contain a static DNS entry
2014-01-10 2013-12-01 2014-10-02 VU#204950 1.5 Atmail Webmail Server version 7.1.3 contains cross-site scripting (XSS) and cross-site request forgery (CSRF) vulnerabilities
2014-01-10 2014-01-02 2014-08-26 VU#348126 4.6 NTP can be abused to amplify denial-of-service attack traffic
2014-01-09 2013-12-19 2014-01-09 VU#650142 2.5 libpng 1.6.1 through 1.6.7 contain a null-pointer dereference vulnerability
2014-01-09 2013-12-13 2014-01-09 VU#612076 4.1 VASCO IDENTIKEY Authentication Server contains an authentication bypass vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis