Export limit exceeded: 364156 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (364156 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-32771 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32770 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32769 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32768 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32767 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32765 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32764 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32763 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32762 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32761 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32760 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32759 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32758 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2025-32757 | 2025-04-11 | N/A | ||
| Not used | ||||
| CVE-2013-7316 | 1 Gitlab | 1 Gitlab | 2025-04-11 | N/A |
| Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versions before 6.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML file, as demonstrated by README.html. | ||||
| CVE-2013-4987 | 1 Pineapp | 1 Mail-secure | 2025-04-11 | N/A |
| PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command. | ||||
| CVE-2013-2776 | 3 Apple, Redhat, Todd Miller | 3 Mac Os X, Enterprise Linux, Sudo | 2025-04-11 | N/A |
| sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard input, output, and error file descriptors of another terminal. NOTE: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions. | ||||
| CVE-2013-2436 | 2 Oracle, Redhat | 4 Jdk, Jre, Enterprise Linux and 1 more | 2025-04-11 | N/A |
| Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-1488 and CVE-2013-2426. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect "type checks" and "method handle binding" involving Wrapper.convert. | ||||
| CVE-2013-2429 | 3 Oracle, Redhat, Sun | 7 Jdk, Jre, Enterprise Linux and 4 more | 2025-04-11 | N/A |
| Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to ImageIO. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to "JPEGImageWriter state corruption" when using native code, which triggers memory corruption. | ||||
| CVE-2013-2422 | 3 Oracle, Redhat, Sun | 7 Jdk, Jre, Enterprise Linux and 4 more | 2025-04-11 | N/A |
| Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and 6 Update 43 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper method-invocation restrictions by the MethodUtil trampoline class, which allows remote attackers to bypass the Java sandbox. | ||||