CVE List

Id CVE No. Status Description Phase Votes Comments Actions
59386  CVE-2012-6143  Candidate  Spoon::Cookie in the Spoon module 0.24 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request, which is not properly handled when it is deserialized.  Assigned (20121206)  None (candidate not yet proposed)    View
59642  CVE-2012-6399  Candidate  Cisco WebEx 4.1 on iOS does not verify that the server hostname matches a domain name in the subject"s Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate, aka Bug ID CSCud94176.  Assigned (20121216)  None (candidate not yet proposed)    View
59898  CVE-2012-6655  Candidate  ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.  Assigned (20140815)  None (candidate not yet proposed)    View
60154  CVE-2013-0207  Candidate  Cross-site request forgery (CSRF) vulnerability in the Mark Complete module 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.  Assigned (20121206)  None (candidate not yet proposed)    View
60410  CVE-2013-0463  Candidate  IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors, a different vulnerability than CVE-2013-2985, CVE-2013-2987, CVE-2013-3020, CVE-2013-0568, CVE-2013-0475, and CVE-2013-0567.  Assigned (20121216)  None (candidate not yet proposed)    View

Page 20538 of 20943, showing 5 records out of 104715 total, starting on record 102686, ending on 102690

Actions