CERT Advisories

VU#355151: ACTi cameras models from the D, B, I, and E...

Vulnerability Note VU#355151 ACTi cameras models from the D, B, I, and E series contain multiple security vulnerabilities Original Release date: 07 Mar 2017...

VU#168699: dotCMS contains multiple vulnerabilities

Vulnerability Note VU#168699 dotCMS contains multiple vulnerabilities Original Release date: 06 Mar 2017 | Last revised: 07 Mar 2017 ...

VU#742632: Sage XRT Treasury database fails to properly restrict access to...

Vulnerability Note VU#742632 Sage XRT Treasury database fails to properly restrict access to authorized users Original Release date: 28 Feb 2017 | Last revised:...

VU#614751: Hughes satellite modems contain multiple vulnerabilities

Vulnerability Note VU#614751 Hughes satellite modems contain multiple vulnerabilities Original Release date: 15 Feb 2017 | Last revised: 15 Feb 2017

VU#745607: Accellion FTP server contains information exposure and cross-site scripting vulnerabilities

Vulnerability Note VU#745607 Accellion FTP server contains information exposure and cross-site scripting vulnerabilities Original Release date: 08 Feb 2017 | Last revised: 08 Feb...

VU#867968: Microsoft Windows SMB Tree Connect Response denial of service vulnerability

Vulnerability Note VU#867968 Microsoft Windows SMB Tree Connect Response denial of service vulnerability Original Release date: 02 Feb 2017 | Last revised: 17 Mar...

VU#167623: SHDesigns Resident Download Manager does not authenticate firmware downloads

Vulnerability Note VU#167623 SHDesigns Resident Download Manager does not authenticate firmware downloads Original Release date: 31 Jan 2017 | Last revised: 01 Feb 2017

VU#909240: Cisco WebEx web browser extension allows arbitrary code execution

Vulnerability Note VU#909240 Cisco WebEx web browser extension allows arbitrary code execution Original Release date: 27 Jan 2017 | Last revised: 27 Jan 2017

VU#865216: CodeLathe FileCloud is vulnerable to cross-site request forgery

Vulnerability Note VU#865216 CodeLathe FileCloud is vulnerable to cross-site request forgery Original Release date: 13 Jan 2017 | Last revised: 13 Jan 2017

VU#767208: ThreatMetrix SDK for iOS fails to validate SSL certificates

Vulnerability Note VU#767208 ThreatMetrix SDK for iOS fails to validate SSL certificates Original Release date: 10 Jan 2017 | Last revised: 11 Jan 2017

VU#475907: ShoreTel Mobility Client mobile application does not verify SSL certificates

Vulnerability Note VU#475907 ShoreTel Mobility Client mobile application does not verify SSL certificates Original Release date: 03 Jan 2017 | Last revised: 08 Feb...

VU#535111: McAfee VirusScan Enterprise for Windows scriptproxy COM object memory corruption...

Vulnerability Note VU#535111 McAfee VirusScan Enterprise for Windows scriptproxy COM object memory corruption vulnerability Original Release date: 13 Dec 2016 | Last revised: 19...