Vulnerabilities > Improper Control of Dynamically-Managed Code Resources

DATE CVE VULNERABILITY TITLE RISK
2020-09-25 CVE-2020-15372 Improper Control of Dynamically-Managed Code Resources vulnerability in Broadcom Fabric Operating System
A vulnerability in the command-line interface in Brocade Fabric OS before Brocade Fabric OS v8.2.2a1, 8.2.2c, v7.4.2g, v8.2.0_CBN3, v8.2.1e, v8.1.2k, v9.0.0, could allow a local authenticated attacker to modify shell variables, which may lead to an escalation of privileges or bypassing the logging.
local
low complexity
broadcom CWE-913
5.5
2020-07-15 CVE-2020-4100 Improper Control of Dynamically-Managed Code Resources vulnerability in Hcltechsw HCL Verse 11.0.4
"HCL Verse for Android was found to employ dynamic code loading.
local
low complexity
hcltechsw CWE-913
4.4
2019-12-19 CVE-2019-15006 Improper Control of Dynamically-Managed Code Resources vulnerability in Atlassian Confluence and Confluence Server
There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center.
network
high complexity
atlassian CWE-913
6.5
2019-03-11 CVE-2019-1617 Improper Control of Dynamically-Managed Code Resources vulnerability in Cisco Nx-Os
A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition.
low complexity
cisco CWE-913
7.4
2019-03-06 CVE-2019-1595 Improper Control of Dynamically-Managed Code Resources vulnerability in Cisco Nx-Os
A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
low complexity
cisco CWE-913
6.5
2017-03-17 CVE-2014-9852 Improper Control of Dynamically-Managed Code Resources vulnerability in multiple products
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
network
low complexity
imagemagick suse opensuse CWE-913
critical
9.8
2012-04-05 CVE-2012-2055 Improper Control of Dynamically-Managed Code Resources vulnerability in Github
GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for a model's attributes, which allows remote attackers to set the public_key[user_id] value via a modified URL for the public-key update form, related to a "mass assignment" vulnerability.
network
low complexity
github CWE-913
7.5
2007-03-02 CVE-2006-7079 Improper Control of Dynamically-Managed Code Resources vulnerability in Exv2 Content Management System
Variable extraction vulnerability in include/common.php in exV2 2.0.4.3 and earlier allows remote attackers to overwrite arbitrary program variables and conduct directory traversal attacks to execute arbitrary code by modifying the $xoopsOption['pagetype'] variable.
network
low complexity
exv2 CWE-913
critical
9.8