CVE-2013-5589
- EPSS 1.99%
- Veröffentlicht 29.08.2013 12:07:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
SQL injection vulnerability in cacti/host.php in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2013-2072
- EPSS 1.06%
- Veröffentlicht 28.08.2013 21:55:08
- Zuletzt bearbeitet 29.04.2026 01:13:23
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of service (memory corruption and xend toolstack crash) a...
CVE-2013-2900
- EPSS 1.55%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not properly handle pathname components composed entirely of . (dot) and whitespace characters, which allows remote attackers to conduc...
CVE-2013-2901
- EPSS 1.39%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
Multiple integer overflows in (1) libGLESv2/renderer/Renderer9.cpp and (2) libGLESv2/renderer/Renderer11.cpp in Almost Native Graphics Layer Engine (ANGLE), as used in Google Chrome before 29.0.1547.57, allow remote attackers to cause a denial of ser...
CVE-2013-2902
- EPSS 1.27%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
Use-after-free vulnerability in the XSLT ProcessingInstruction implementation in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related t...
CVE-2013-2903
- EPSS 1.27%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
Use-after-free vulnerability in the HTMLMediaElement::didMoveToNewDocument function in core/html/HTMLMediaElement.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspec...
CVE-2013-2904
- EPSS 1.63%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
Use-after-free vulnerability in the Document::finishedParsing function in core/dom/Document.cpp in Blink, as used in Google Chrome before 29.0.1547.57, allows remote attackers to cause a denial of service or possibly have unspecified other impact via...
- EPSS 0.84%
- Veröffentlicht 21.08.2013 12:17:56
- Zuletzt bearbeitet 29.04.2026 01:13:23
The SharedMemory::Create function in memory/shared_memory_posix.cc in Google Chrome before 29.0.1547.57 uses weak permissions under /dev/shm/, which allows attackers to obtain sensitive information via direct access to a POSIX shared-memory file.
CVE-2013-4242
- EPSS 0.53%
- Veröffentlicht 19.08.2013 23:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
GnuPG before 1.4.14, and Libgcrypt before 1.5.3 as used in GnuPG 2.0.x and possibly other products, allows local users to obtain private RSA keys via a cache side-channel attack involving the L3 cache, aka Flush+Reload.
CVE-2013-4852
- EPSS 3.45%
- Veröffentlicht 19.08.2013 23:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
Integer overflow in PuTTY 0.62 and earlier, WinSCP before 5.1.6, and other products that use PuTTY allows remote SSH servers to cause a denial of service (crash) and possibly execute arbitrary code in certain applications that use PuTTY via a negativ...