search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2022-11-01 2022-11-01 2024-03-08 VU#794340 OpenSSL 3.0.0 to 3.0.6 decodes some punycode email addresses in X.509 certificates improperly
2022-08-11 2022-08-11 2024-03-04 VU#309662 Signed third party UEFI bootloaders are vulnerable to Secure Boot bypass
2023-12-06 2023-12-06 2024-03-04 VU#811862 Image files in UEFI can be abused to modify boot behavior
2024-01-16 2024-01-16 2024-01-31 VU#302671 SMTP end-of-data uncertainty can be abused to spoof emails and bypass policies
2024-01-16 2024-01-16 2024-01-17 VU#446598 GPU kernel implementations susceptible to memory leak
2023-09-06 2023-09-06 2023-09-06 VU#304455 Authentication Bypass in Tenda N300 Wireless N VDSL2 Modem Router
2023-08-28 2023-08-28 2023-08-28 VU#757109 Groupnotes Inc. Videostream Mac client allows for privilege escalation to root account
2023-08-16 2023-08-16 2023-08-16 VU#287122 Parsec Remote Desktop App is prone to a local elevation of privilege due to a logical flaw in its code integrity verification process
2023-08-11 2023-02-17 2023-08-11 VU#127587 Python Parsing Error Enabling Bypass CVE-2023-24329
2023-08-07 2023-08-07 2023-08-07 VU#947701 Freewill Solutions IFIS new trading web application vulnerable to unauthenticated remote code execution
2023-07-27 2023-07-27 2023-08-03 VU#813349 Software driver for D-Link Wi-Fi USB Adapter vulnerable to service path privilege escalation
2023-07-20 2023-07-20 2023-07-31 VU#653767 Perimeter81 macOS Application Multiple Vulnerabilities
2022-02-01 2022-02-01 2023-07-17 VU#796611 InsydeH2O UEFI software impacted by multiple vulnerabilities in SMM
2022-10-07 2022-10-07 2023-07-13 VU#730793 Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference
2021-05-24 2021-05-24 2023-07-13 VU#799380 Devices supporting Bluetooth Core and Mesh Specifications are vulnerable to impersonation attacks and AuthValue disclosure

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis