Wind River Support Network

HomeCVE Database

The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.

Reset
Showing
of 202651 entries
IDDescriptionPriorityModified dateFixed Release
CVE-2013-7119 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7118 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7117 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7116 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7115 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7109 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none -- Feb 20, 2020 n/a
CVE-2013-7098 OpenConnect VPN client with GnuTLS before 5.02 contains a heap overflow if MTU is increased on reconnection. HIGH Feb 20, 2020 n/a
CVE-2013-7089 ClamAV before 0.97.7: dbg_printhex possible information leak MEDIUM Nov 20, 2019 n/a
CVE-2013-7088 ClamAV before 0.97.7 has buffer overflow in the libclamav component HIGH Nov 20, 2019 n/a
CVE-2013-7087 ClamAV before 0.97.7 has WWPack corrupt heap memory HIGH Nov 20, 2019 n/a
CVE-2013-7072 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a unique security issue, and some vulnerability databases had associated inapplicable details with this ID. Notes: none -- Nov 7, 2023 n/a
CVE-2013-7071 Cross-site scripting (XSS) vulnerability in the handle_request function in lib/HTTPServer.pm in Monitorix before 3.4.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO. MEDIUM Jan 8, 2020 n/a
CVE-2013-7070 The handle_request function in lib/HTTPServer.pm in Monitorix before 3.3.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the URI. HIGH Jan 9, 2020 n/a
CVE-2013-7062 Multiple cross-site scripting (XSS) vulnerabilities in Zope, as used in Plone 3.3.x through 3.3.6, 4.0.x through 4.0.9, 4.1.x through 4.1.6, 4.2.x through 4.2.7, and 4.3 through 4.3.2, allow remote attackers to inject arbitrary web script or HTML via unspecified input in the (1) browser_id_manager or (2) OFS.Image method. MEDIUM Jan 9, 2020 n/a
CVE-2013-7055 D-Link DIR-100 4.03B07 has PPTP and poe information disclosure MEDIUM Feb 4, 2020 n/a
CVE-2013-7054 D-Link DIR-100 4.03B07: cli.cgi XSS MEDIUM Feb 4, 2020 n/a
CVE-2013-7053 D-Link DIR-100 4.03B07: cli.cgi CSRF MEDIUM Feb 4, 2020 n/a
CVE-2013-7052 D-Link DIR-100 4.03B07: security bypass via an error in the cliget.cgi script MEDIUM Feb 4, 2020 n/a
CVE-2013-7051 D-Link DIR-100 4.03B07: cli.cgi security bypass due to failure to check authentication parameters MEDIUM Feb 4, 2020 n/a
CVE-2013-7048 OpenStack Compute (Nova) Grizzly 2013.1.4, Havana 2013.2.1, and earlier uses world-writable and world-readable permissions for the temporary directory used to store live snapshots, which allows local users to read and modify live snapshots. LOW Jan 24, 2014 n/a
CVE-2013-6995 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6927 Internet TRiLOGI Server (unknown versions) could allow a local user to bypass security and create a local user account. LOW Feb 14, 2020 n/a
CVE-2013-6924 Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php. -- Oct 11, 2017 n/a
CVE-2013-6880 Open redirect in proxy.php in FlashCanvas before 1.6 allows remote attackers to redirect users to arbitrary web sites and conduct cross-site scripting (XSS) attacks via the HTTP Referer header. MEDIUM Nov 22, 2019 n/a
CVE-2013-6879 The Mijosoft MijoSearch component 2.0.1 and earlier for Joomla! allows remote attackers to obtain sensitive information via a request to component/mijosearch/search, which reveals the installation path in an error message. MEDIUM Nov 22, 2019 n/a
CVE-2013-6878 Cross-site scripting (XSS) vulnerability in the Mijosoft MijoSearch component 2.0.4 and earlier for Joomla! allows remote attackers to inject arbitrary web script or HTML via the query parameter to component/mijosearch/search. MEDIUM Nov 22, 2019 n/a
CVE-2013-6876 The (1) pty_init_terminal and (2) pipe_init_terminal functions in main.c in s3dvt 0.2.2 and earlier allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: this vulnerability was fixed with commit ad732f00b411b092c66a04c359da0f16ec3b387, but the version number was not changed. HIGH Apr 6, 2018 n/a
CVE-2013-6858 Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Dashboard (Horizon) 2013.2 and earlier allow local users to inject arbitrary web script or HTML via an instance name to (1) Volumes or (2) Network Topology page. LOW Nov 25, 2013 n/a
CVE-2013-6811 Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DSL-6740U gateway (Rev. H1) allow remote attackers to hijack the authentication of administrators for requests that change administrator credentials or enable remote management services to (1) Custom Services in Port Forwarding, (2) Port Triggering Entries, (3) URL Filters in Parental Control, (4) Print Server settings, (5) QoS Queue Setup, or (6) QoS Classification Entries. MEDIUM Nov 22, 2019 n/a
CVE-2013-6792 Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability HIGH Jan 27, 2020 n/a
CVE-2013-6785 Directory traversal vulnerability in url_redirect.cgi in Supermicro IPMI before SMT_X9_315 allows authenticated attackers to read arbitrary files via the url_name parameter. MEDIUM Feb 4, 2020 n/a
CVE-2013-6773 Splunk 5.0.3 has an Unquoted Service Path in Windows for Universal Forwarder which can allow an attacker to escalate privileges MEDIUM Jan 27, 2020 n/a
CVE-2013-6772 Splunk before 5.0.4 lacks X-Frame-Options which can allow Clickjacking MEDIUM Jan 27, 2020 n/a
CVE-2013-6764 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-6795. Reason: This candidate is a duplicate of CVE-2013-6795. A typo in an external publication caused this ID to be associated with the wrong vulnerability. Notes: All CVE users should reference CVE-2013-6795 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage -- Nov 7, 2023 n/a
CVE-2013-6762 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6761 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6760 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6759 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6758 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6757 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6756 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6755 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6754 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6753 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6752 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6751 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6739 IBM SPSS Modeler before 16 on UNIX allows remote authenticated users to bypass intended access restrictions via an SSO token. IBM X-Force ID: 89855. MEDIUM Apr 27, 2018 n/a
CVE-2013-6716 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
CVE-2013-6681 Tube Map Live Underground for Android before 3.0.22 has an Information Disclosure Vulnerability MEDIUM Feb 12, 2020 n/a
CVE-2013-6680 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2013. Notes: none -- Nov 7, 2023 n/a
The 'Fixed Release' column is displayed if a single product version is selected from the filter. The fixed release is applicable in cases when the CVE has been addressed and fixed for that product version. Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.
Live chat
Online