Vulnerabilidades CVE

A continuación la lista de las últimas vulnerabilidades publicadas por el instituto NIST:

Borrar filtros
CVE ID Publicado Severidad CVSS Descripción
CVE-2020-37198 2026-02-11 HIGH 7.5 Duplicate Cleaner Pro 4.1.3 contains a denial of service vulnerability that allows attackers to crash the application by injecting an oversized buffer into the license key field. Attackers…
CVE-2020-37197 2026-02-11 HIGH 7.5 Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a…
CVE-2020-37196 2026-02-11 HIGH 7.5 Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by providing an oversized registration key. Attackers can generate a…
CVE-2020-37195 2026-02-11 HIGH 7.5 BlueAuditor 1.7.2.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload…
CVE-2020-37194 2026-02-11 HIGH 7.5 Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by supplying an overly long registration key. Attackers can generate a…
CVE-2020-37193 2026-02-11 HIGH 7.5 ZIP Password Recovery 2.30 contains a denial of service vulnerability that allows attackers to crash the application by providing maliciously crafted input. Attackers can create a specially prepared…
CVE-2020-37192 2026-02-11 MEDIUM 6.2 MSN Password Recovery 1.30 contains an XML external entity injection vulnerability that allows attackers to read local system files through crafted XML input. Attackers can exploit the 'Favorites'…
CVE-2020-37191 2026-02-11 HIGH 7.5 Top Password Software Dialup Password Recovery 1.30 contains a denial of service vulnerability that allows attackers to crash the application by overflowing input fields. Attackers can trigger the…
CVE-2020-37190 2026-02-11 HIGH 7.5 Top Password Firefox Password Recovery 2.8 contains a denial of service vulnerability that allows attackers to crash the application by overflowing input fields. Attackers can trigger the vulnerability…
CVE-2020-37189 2026-02-11 HIGH 7.5 TaskCanvas 1.4.0 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload…
CVE-2020-37188 2026-02-11 HIGH 7.5 SpotOutlook 1.2.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can overwrite the buffer by pasting…
CVE-2020-37187 2026-02-11 HIGH 7.5 SpotDialup 1.6.7 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload…
CVE-2020-37186 2026-02-11 CRITICAL 9.8 Chevereto 3.13.4 Core contains a remote code execution vulnerability that allows attackers to inject malicious code during database configuration installation. Attackers can manipulate the database table prefix parameter…
CVE-2020-37185 2026-02-11 HIGH 7.5 Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character…
CVE-2020-37184 2026-02-11 CRITICAL 9.8 Allok Video Converter 4.6.1217 contains a stack overflow vulnerability in the License Name input field that allows attackers to execute arbitrary code. Attackers can craft a specially designed…
CVE-2020-37183 2026-02-11 CRITICAL 9.8 Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) registers.…
CVE-2020-37182 2026-02-11 HIGH 7.5 Redir 3.3 contains a stack overflow vulnerability in the doproxyconnect() function that allows attackers to crash the application by sending oversized input. Attackers can exploit the sprintf() buffer…
CVE-2020-37181 2026-02-11 CRITICAL 9.8 Torrent FLV Converter 1.51 Build 117 contains a stack overflow vulnerability that allows attackers to overwrite Structured Exception Handler (SEH) through a malicious registration code input. Attackers can…
CVE-2020-37180 2026-02-11 HIGH 7.5 GTalk Password Finder 2.2.1 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character…
CVE-2020-37179 2026-02-11 HIGH 7.5 APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a…
CVE-2020-37178 2026-02-11 HIGH 7.5 KeePass Password Safe versions before 2.44 contain a denial of service vulnerability in the help system's HTML handling. Attackers can trigger the vulnerability by dragging and dropping malicious…
CVE-2020-37177 2026-02-11 HIGH 7.5 BOOTP Turbo 2.0 contains a denial of service vulnerability that allows attackers to crash the application by overwriting the Structured Exception Handler (SEH). Attackers can generate a malicious…
CVE-2020-37176 2026-02-11 CRITICAL 9.8 Torrent 3GP Converter 1.51 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler (SEH) registers. Attackers can craft a malicious…
CVE-2020-37175 2026-02-11 HIGH 7.5 P2PWIFICAM2 for iOS 10.4.1 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the Camera ID input field. Attackers can paste a…
CVE-2020-37173 2026-02-11 HIGH 7.5 AVideo Platform 8.1 contains an information disclosure vulnerability that allows attackers to enumerate user details through the playlistsFromUser.json.php endpoint. Attackers can retrieve sensitive user information including email, password…
CVE-2020-37172 2026-02-11 MEDIUM 5.3 AVideo Platform 8.1 contains a cross-site request forgery vulnerability that allows attackers to reset user passwords by exploiting the password recovery mechanism. Attackers can craft malicious requests to…
CVE-2020-37158 2026-02-11 MEDIUM 5.3 AVideo Platform 8.1 contains a cross-site request forgery vulnerability that allows attackers to reset user passwords by exploiting the password recovery mechanism. Attackers can craft malicious requests to…
CVE-2020-37156 2026-02-11 MEDIUM 6.5 BloodX 1.0 contains an authentication bypass vulnerability in login.php that allows attackers to access the dashboard without valid credentials. Attackers can exploit the vulnerability by sending a crafted…
CVE-2020-37153 2026-02-11 CRITICAL 9.8 ASTPP 4.0.1 contains multiple vulnerabilities including cross-site scripting and command injection in SIP device configuration and plugin management interfaces. Attackers can exploit these flaws to inject system commands,…
CVE-2020-37104 2026-02-11 HIGH 7.5 ASTPP 4.0.1 contains an information disclosure vulnerability that allows unauthenticated attackers to download database backup files by predicting backup filename patterns. Attackers can generate a list of 6-digit…
CVE-2019-25313 2026-02-11 MEDIUM 4.0 FlexNet Publisher 11.12.1 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious HTML form to trick…
CVE-2024-50618 2026-02-11 N/A 0.0 A Use of Single-factor Authentication vulnerability in the Authentication component of CIPPlanner CIPAce before 9.17 allows attackers to bypass a protection mechanism. When the system is configured to…
CVE-2024-26479 2026-02-11 N/A 0.0 An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the Command execution function.
CVE-2024-26478 2026-02-11 N/A 0.0 An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the /api/users endpoint.
CVE-2024-26477 2026-02-11 N/A 0.0 An issue in Statping-ng v.0.91.0 allows an attacker to obtain sensitive information via a crafted request to the api parameter of the oauth, amazon_sns, export endpoints.
CVE-2026-2321 2026-02-11 N/A 0.0 Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit…
CVE-2026-2319 2026-02-11 HIGH 7.5 Race in DevTools in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage in specific UI gestures and install a malicious extension…
CVE-2026-2315 2026-02-11 HIGH 8.8 Inappropriate implementation in WebGPU in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium…
CVE-2026-2314 2026-02-11 HIGH 8.8 Heap buffer overflow in Codecs in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity:…
CVE-2026-2313 2026-02-11 HIGH 8.8 Use after free in CSS in Google Chrome prior to 145.0.7632.45 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity:…
CVE-2025-70297 2026-02-11 N/A 0.0 A stored cross-site scripting (XSS) vulnerability in the recipe asset upload and media serving component in Mealie 3.3.1 allows remote authenticated users to inject arbitrary web script or…
CVE-2025-70296 2026-02-11 N/A 0.0 A stored HTML injection vulnerability in the Recipe Notes rendering component in Mealie 3.3.1 allows remote authenticated users to inject arbitrary HTML, resulting in user interface redressing within…
CVE-2025-12059 2026-02-11 CRITICAL 9.8 Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Logo Software Industry and Trade Inc. Logo j-Platform allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…
CVE-2026-26092 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26091 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26090 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26089 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26088 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26087 2026-02-12 N/A 0.0 Rejected reason: Not used
CVE-2026-26086 2026-02-12 N/A 0.0 Rejected reason: Not used
« Anterior Página 308 de 4232 Siguiente »