Search
14,626 CVEs · Low severity
CVEs (14,626, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 26–50 of 14,626 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↑ | Published | Description |
|---|---|---|---|---|---|
| CVE-2009-3412 | LOW | 1.0 | 2010-01-13 | Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect c… | |
| CVE-2008-3986 | LOW | 1.0 | 2008-10-14 | Unspecified vulnerability in the Oracle Discoverer Administrator component in Oracle Application Server 9.0.4.3 and 10.1.2.2 allows local users to affect confidentiality vi… | |
| CVE-2008-3987 | LOW | 1.0 | 2008-10-14 | Unspecified vulnerability in the Oracle Discoverer Desktop component in Oracle Application Server 10.1.2.3 allows local users to affect confidentiality via unknown vectors. | |
| CVE-2004-2648 | LOW | 1.0 | 2004-12-31 | FreezeX 1.00.100.0666 allows local users with administrator privileges to cause a denial of service (FreezeX application) by overwriting the db.fzx file. | |
| CVE-2016-0431 | LOW | 1.2 | 2016-01-21 | Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unknown vectors related to Solaris Kernel Zones, a different vulnerability … | |
| CVE-2015-4823 | LOW | 1.2 | 2015-10-21 | Unspecified vulnerability in the Hyperion Installation Technology component in Oracle Hyperion 11.1.2.3 allows local users to affect confidentiality via unknown vectors rel… | |
| CVE-2015-4822 | LOW | 1.2 | 2015-10-21 | Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect availability via unknown vectors related to Solaris Kernel Zones, a different vulnerabilit… | |
| CVE-2015-0489 | LOW | 1.2 | 2015-04-16 | Unspecified vulnerability in the Application Management Pack for Oracle E-Business Suite component in Oracle E-Business Suite AMP 121030 and 121020 allows local users to af… | |
| CVE-2014-6134 | LOW | Patched | 1.2 | 2015-03-25 | IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory … |
| CVE-2014-5177 | LOW | Patched | 1.2 | 2014-08-03 | libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an X… |
| CVE-2014-3537 | LOW | Patched | 1.2 | 2014-07-23 | The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/. |
| CVE-2014-2343 | LOW | Patched | 1.2 | 2014-05-30 | Triangle MicroWorks SCADA Data Gateway before 3.00.0635 allows physically proximate attackers to cause a denial of service (excessive data processing) via a crafted DNP req… |
| CVE-2013-6891 | LOW | Patched | 1.2 | 2014-01-26 | lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read portions of arbitrary files via a modified HOME environment variable and a sy… |
| CVE-2013-4476 | LOW | Patched | 1.2 | 2013-11-13 | Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obt… |
| CVE-2013-1442 | LOW | 1.2 | 2013-09-30 | Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data from registers when using an XSAVE or XRSTOR to extend the state components… | |
| CVE-2013-2217 | LOW | 1.2 | 2013-09-23 | cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache fi… | |
| CVE-2012-6095 | LOW | Patched | 1.2 | 2013-01-24 | ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the … |
| CVE-2012-3500 | LOW | Patched | 1.2 | 2012-10-01 | scripts/annotate-output.sh in devscripts before 2.12.2, as used in rpmdevtools before 8.3, allows local users to modify arbitrary files via a symlink attack on the temporar… |
| CVE-2012-2103 | LOW | 1.2 | 2012-08-26 | The qmailscan plugin for Munin 1.4.5 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names. | |
| CVE-2012-3487 | LOW | Patched | 1.2 | 2012-08-26 | Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process. |
| CVE-2012-4676 | LOW | Patched | 1.2 | 2012-08-26 | The errorExitIfAttackViaString function in Tunnelblick 3.3beta20 and earlier allows local users to delete arbitrary files by constructing a (1) symlink or (2) hard link, a … |
| CVE-2011-4028 | LOW | Patched | 1.2 | 2012-07-03 | The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lo… |
| CVE-2012-2678 | LOW | Patched | 1.2 | 2012-07-03 | 389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), after the password for a LDAP user has been changed and before the server has been rese… |
| CVE-2012-2313 | LOW | Patched | 1.2 | 2012-06-13 | The rio_ioctl function in drivers/net/ethernet/dlink/dl2k.c in the Linux kernel before 3.3.7 does not restrict access to the SIOCSMIIREG command, which allows local users t… |
| CVE-2011-2722 | LOW | Patched | 1.2 | 2012-05-25 | The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via… |