search menu icon-carat-right cmu-wordmark
Carnegie Mellon University
Please be aware that VINCE will be down for maintenance from 12 noon EST until 4 PM EST on November 19, 2025.

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2013-02-01 2013-02-01 2013-06-14 VU#858729 8.7 Oracle Java contains multiple vulnerabilities
2013-03-05 2013-03-04 2013-06-14 VU#688246 9.4 Oracle Java contains multiple vulnerabilities
2013-01-10 2013-01-10 2013-06-12 VU#625617 9.5 Java 7 fails to restrict access to privileged code
2013-06-10 2013-06-10 2013-06-11 VU#900031 4.3 Faircom c-treeACE database weak obfuscation algorithm vulnerability
2013-06-07 2013-06-05 2013-06-07 VU#673343 4.9 Parallels Plesk Panel phppath/php vulnerability
2013-06-05 2013-06-03 2013-06-05 VU#722868 3.8 IBM QRadar SIEM command injection vulnerability
2013-05-14 2013-05-14 2013-05-21 VU#127108 1.1 Serva32 2.1.0 TFTPD service buffer overflow vulnerability
2013-05-17 2013-05-14 2013-05-17 VU#774103 4.4 Linux kernel perf_swevent_enabled array out-of-bound access privilege escalation vulnerability
2012-06-08 2012-06-07 2013-05-15 VU#815532 3.4 ForeScout CounterACT reflected XSS vulnerability
2012-09-18 2012-09-17 2013-05-15 VU#459446 4 osCommerce v2.3.1 with PayPal website payments standard module v1.0 design vulnerability
2012-07-25 2012-07-20 2013-05-15 VU#404051 5.4 Dell SonicWALL Scrutinizer SQL injection vulnerability
2012-08-16 2012-08-16 2013-05-15 VU#247235 2.8 CuteSoft Cute Editor 6.4 reflected cross site scripting
2013-05-15 2013-05-15 2013-05-15 VU#701572 5.2 Mutiny Appliance contains multiple directory traversal vulnerabilities
2013-05-14 2013-05-14 2013-05-14 VU#113732 5.8 Adobe ColdFusion 9 & 10 code injection vulnerability
2013-05-06 2013-05-03 2013-05-14 VU#237655 6.7 Microsoft Internet Explorer 8 CGenericElement object use-after-free vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis