Vulnerabilities > Exposed Dangerous Method or Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-25 | CVE-2020-17391 | Exposed Dangerous Method or Function vulnerability in Parallels Desktop This vulnerability allows local attackers to disclose information on affected installations of Parallels Desktop 15.1.3-47255. | 6.5 |
| 2020-08-25 | CVE-2020-17388 | Exposed Dangerous Method or Function vulnerability in Marvell Qconvergeconsole This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. | 8.8 |
| 2020-07-28 | CVE-2020-15623 | Exposed Dangerous Method or Function vulnerability in Control-Webpanel Webpanel 0.9.8.923 This vulnerability allows remote attackers to write arbitrary files on affected installations of CentOS Web Panel cwp-e17.0.9.8.923. | 9.8 |
| 2019-07-29 | CVE-2019-12948 | Exposed Dangerous Method or Function vulnerability in Polycom Unified Communications Software A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote attacker with admin privileges to cause a denial of service (DoS) condition or execute arbitrary code. | 8.3 |
| 2019-07-01 | CVE-2019-4386 | Exposed Dangerous Method or Function vulnerability in IBM DB2 IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 could allow an authenticated user to execute a function that would cause the server to crash. | 6.5 |
| 2018-12-21 | CVE-2018-19322 | Exposed Dangerous Method or Function vulnerability in Gigabyte products The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. | 7.8 |
| 2018-08-09 | CVE-2018-10931 | Exposed Dangerous Method or Function vulnerability in multiple products It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. | 9.8 |
| 2018-03-23 | CVE-2018-8949 | Exposed Dangerous Method or Function vulnerability in Misp-Project Misp An issue was discovered in app/Model/Attribute.php in MISP before 2.4.89. | 4.3 |
| 2017-11-22 | CVE-2017-2735 | Exposed Dangerous Method or Function vulnerability in Huawei Y6 PRO Firmware 9.1.0.248(C636E5R3P1) TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. | 7.1 |
| 2016-12-29 | CVE-2016-7462 | Exposed Dangerous Method or Function vulnerability in VMWare Vrealize Operations The Suite REST API in VMware vRealize Operations (aka vROps) 6.x before 6.4.0 allows remote authenticated users to write arbitrary content to files or rename files via a crafted DiskFileItem in a relay-request payload that is mishandled during deserialization. | 8.5 |