search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2017-03-06 2017-03-06 2017-03-07 VU#168699 4.6 dotCMS contains multiple vulnerabilities
2017-02-28 2017-02-28 2017-02-28 VU#742632 5.3 Sage XRT Treasury database fails to properly restrict access to authorized users
2014-11-03 2014-11-03 2017-02-13 VU#210620 5.0 uIP and lwIP DNS resolver vulnerable to cache poisoning
2017-02-08 2017-01-31 2017-02-08 VU#745607 2.5 Accellion FTP server contains information exposure and cross-site scripting vulnerabilities
2017-01-03 2017-01-03 2017-02-08 VU#475907 1.8 ShoreTel Mobility Client mobile application does not verify SSL certificates
2017-01-27 2017-01-23 2017-01-27 VU#909240 6.8 Cisco WebEx web browser extension allows arbitrary code execution
2006-04-17 2006-04-13 2017-01-20 VU#488774 0 Mozilla XBL binding vulnerability
2017-01-13 2017-01-13 2017-01-13 VU#865216 4.0 CodeLathe FileCloud is vulnerable to cross-site request forgery
2017-01-10 2017-01-10 2017-01-11 VU#767208 3.9 ThreatMetrix SDK for iOS fails to validate SSL certificates
2014-12-15 2014-12-15 2017-01-06 VU#315340 6.7 EMC Documentum products contain multiple vulnerabilities
2016-12-09 2016-12-07 2017-01-03 VU#582384 7.0 Multiple Netgear routers are vulnerable to arbitrary command injection
2016-06-01 2016-06-01 2016-12-21 VU#754056 5.8 Fonality contains a hard-coded password and embedded SSL private key
2016-12-13 2016-12-12 2016-12-19 VU#535111 4.6 McAfee VirusScan Enterprise for Windows scriptproxy COM object memory corruption vulnerability
2016-12-13 2016-12-13 2016-12-14 VU#779243 4.5 EpubCheck 4.0.1 contains a XML external entity processing vulnerability
2016-12-12 2016-12-09 2016-12-13 VU#245327 5.5 McAfee VirusScan for Linux contains multiple vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis