Vulnerability Notes Database

US-CERT publishes information about vulnerabilities in the Vulnerability Notes Database. Vulnerability notes include summaries, technical details, remediation information, and lists of affected vendors. Many vulnerability notes are the result of private coordination and disclosure efforts.

Recently published vulnerability notes are available via an Atom feed. US-CERT also publishes information about vulnerabilities in Current Activity and Alerts.

You can search the Vulnerability Notes Database or browse by several views. Help is available on database fields and customizing search queries. For example, you can search for specific information, such as the ten most recently updated vulnerabilities, a list of vulnerabilities that affect control systems (see also ICS-CERT), or a list of vulnerabilities discovered using the Basic Fuzzing Framework (BFF).

To communicate with us about a specific vulnerability, please send email with the appropriate VU# number(s) in the subject line. To protect sensitive, non-public vulnerability information, please encrypt to the US-CERT and CERT PGP keys.

We appreciate your comments and suggestions.

Recent Vulnerability Notes

View Recent Vulnerability Notes Feed
  • 17 Jul 2012VU#118913Oracle Outside In contains multiple exploitable vulnerabilitiesMultiple CVEs
  • 13 Jul 2012VU#977312Johnson Controls CK721-A and P2000 remote command execution vulnerabilityCVE-2012-2607
  • 11 Jul 2012VU#377915SMC SMC8024L2 switch web interface authentication bypassCVE-2012-2974
  • 09 Jul 2012VU#763795Netsweeper Internet Filter WebAdmin Portal multiple vulnerabilitiesMultiple CVEs
  • 09 Jul 2012VU#154307Synel SY-780/A terminal denial-of-service vulnerabilityCVE-2012-2970
  • 27 Jun 2012VU#971035Simple Certificate Enrollment Protocol (SCEP) does not strongly authenticate certificate requestsUnknown
  • 13 Jun 2012VU#709939Bradford Network Sentry v5.3 NS500 appliance contains multiple vulnerabilitiesMultiple CVEs
  • 12 Jun 2012VU#649219SYSRET 64-bit operating system privilege escalation vulnerability on Intel CPU hardwareMultiple CVEs
  • 11 Jun 2012VU#221180BMC Identity Management Suite cross-site request forgery vulnerabilityCVE-2012-2959
  • 08 Jun 2012VU#815532ForeScout CounterACT reflected XSS vulnerabilityCVE-2012-1825
Related searches:
search report database please multiple
gipoco.com is neither affiliated with the authors of this page nor responsible for its contents. This is a safe-cache copy of the original web site.