Search
31,145 CVEs · Critical severity
CVEs (31,145, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 476–500 of 31,145 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2013-5027 | CRITICAL | 9.8 | 2019-12-27 | Collabtive 1.0 has incorrect access control | |
| CVE-2013-5122 | CRITICAL | 9.8 | 2020-01-07 | Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access | |
| CVE-2013-5609 | CRITICAL | Patched | 9.8 | 2013-12-11 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 … |
| CVE-2013-5613 | CRITICAL | Patched | 9.8 | 2013-12-11 | Use-after-free vulnerability in the PresShell::DispatchSynthMouseMove function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and Se… |
| CVE-2013-5615 | CRITICAL | Patched | 9.8 | 2013-12-11 | The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 does not properly enforce cer… |
| CVE-2013-5616 | CRITICAL | Patched | 9.8 | 2013-12-11 | Use-after-free vulnerability in the nsEventListenerManager::HandleEventSubType function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.… |
| CVE-2013-5618 | CRITICAL | Patched | 9.8 | 2013-12-11 | Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user interface in the editor component in Mozilla Firefox before 26.0, Firefox ES… |
| CVE-2013-5654 | CRITICAL | 9.1 | 2019-02-15 | Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage | |
| CVE-2013-5743 | CRITICAL | Patched | 9.8 | 2019-12-11 | Multiple SQL injection vulnerabilities in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.9rc1, and 2.1.x before 2.1.7. |
| CVE-2013-5945 | CRITICAL | Patched | 9.8 | 2020-02-11 | Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08… |
| CVE-2013-6014 | CRITICAL | Patched | 9.3 | 2013-10-28 | Juniper Junos 10.4 before 10.4S15, 11.4 before 11.4R9, 11.4X27 before 11.4X27.44, 12.1 before 12.1R7, 12.1X44 before 12.1X44-D20, 12.1X45 before 12.1X45-D15, 12.2 before 12… |
| CVE-2013-6225 | CRITICAL | 9.8 | 2020-01-13 | LiveZilla 5.0.1.4 has a Remote Code Execution vulnerability | |
| CVE-2013-6236 | CRITICAL | 9.8 | 2020-02-12 | IZON IP 2.0.2: hard-coded password vulnerability | |
| CVE-2013-6276 | CRITICAL | 9.8 | 2021-08-09 | QNAP F_VioCard 2312 and F_VioGate 2308 have hardcoded entries in authorized_keys files. NOTE: 1. All active models are not affected. The last affected model was EOL since 2… | |
| CVE-2013-6295 | CRITICAL | 9.8 | 2020-02-18 | PrestaShop 1.5.5 vulnerable to privilege escalation via a Salesman account via upload module | |
| CVE-2013-6362 | CRITICAL | 9.8 | 2020-02-13 | Xerox ColorCube and WorkCenter devices in 2013 had hardcoded FTP and shell user accounts. | |
| CVE-2013-6647 | CRITICAL | 9.8 | 2017-04-11 | A use-after-free in AnimationController::endAnimationUpdate in Google Chrome. | |
| CVE-2013-6671 | CRITICAL | Patched | 9.8 | 2013-12-11 | The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote att… |
| CVE-2013-6792 | CRITICAL | Patched | 9.8 | 2020-01-23 | Google Android prior to 4.4 has an APK Signature Security Bypass Vulnerability |
| CVE-2013-6924 | CRITICAL | 9.8 | 2017-10-11 | Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote attackers to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt… | |
| CVE-2013-7052 | CRITICAL | 9.8 | 2020-02-04 | D-Link DIR-100 4.03B07: security bypass via an error in the cliget.cgi script | |
| CVE-2013-7055 | CRITICAL | 9.8 | 2020-02-04 | D-Link DIR-100 4.03B07 has PPTP and poe information disclosure | |
| CVE-2013-7070 | CRITICAL | Patched | 9.8 | 2019-12-31 | The handle_request function in lib/HTTPServer.pm in Monitorix before 3.3.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the URI. |
| CVE-2013-7087 | CRITICAL | Patched | 9.8 | 2019-11-15 | ClamAV before 0.97.7 has WWPack corrupt heap memory |
| CVE-2013-7088 | CRITICAL | Patched | 9.8 | 2019-11-15 | ClamAV before 0.97.7 has buffer overflow in the libclamav component |