OVAL Definitions - Class: Vulnerability

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Vulnerability which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) in... oval:org.mitre.oval:def:19790 Vulnerability windows
Vulnerability which allows remote attackers to inject arbitrary web script or HTML in Opera before 12.10 oval:org.mitre.oval:def:19762 Vulnerability windows
Vulnerability which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) i... oval:org.mitre.oval:def:19634 Vulnerability windows
Vulnerability which allows remote attackers to bypass a CSRF protection in Opera before 12.13 oval:org.mitre.oval:def:19617 Vulnerability windows
Vulnerability which allows remote attackers to spoof the address field in Opera before 12.12 oval:org.mitre.oval:def:19531 Vulnerability windows
Vulnerability which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks in Opera be... oval:org.mitre.oval:def:19458 Vulnerability windows
Vulnerability which allows remote attackers to execute arbitrary code in Opera before 12.13 oval:org.mitre.oval:def:19436 Vulnerability windows
Vulnerability which makes it easier for remote attackers to bypass cross-site scripting (XSS) protection mechanisms in O... oval:org.mitre.oval:def:19099 Vulnerability windows
Vulnerability which allows remote attackers to execute arbitrary code in Opera before 12.13 oval:org.mitre.oval:def:19083 Vulnerability windows
Vulnerability which allows remote attackers to conduct phishing attacks in Opera before 12.11 oval:org.mitre.oval:def:19005 Vulnerability windows
Warning messages could be displayed to users oval:org.apache.httpd:def:20021592 Vulnerability
Weak Encryption in RDP Protocol oval:org.mitre.oval:def:199 Vulnerability windows
Web Applications Page Content Vulnerability (CVE-2014-1813) - MS14-022 oval:org.mitre.oval:def:24787 Vulnerability windows
Web Audio memory corruption issues oval:org.mitre.oval:def:24428 Vulnerability windows
Web proxy auto-discovery vulnerability - MS12-074 oval:org.mitre.oval:def:15810 Vulnerability windows
Web Proxy TCP State Limited Denial of Service Vulnerability oval:org.mitre.oval:def:6068 Vulnerability windows
Web Services on Devices API Memory Corruption Vulnerability oval:org.mitre.oval:def:6079 Vulnerability windows
Web View Remote Code Execution Vulnerability oval:org.mitre.oval:def:3585 Vulnerability windows
WebAccess Context Data Cross-site Scripting Vulnerability oval:org.mitre.oval:def:7080 Vulnerability unix
WebAccess Virtual Machine Name Cross-site Scripting Vulnerability oval:org.mitre.oval:def:6863 Vulnerability unix
WebClient Service Unchecked Buffer Remote Code Execution (64-bit XP,SP1) oval:org.mitre.oval:def:716 Vulnerability windows
WebClient Service Unchecked Buffer Remote Code Execution (XP,SP1) oval:org.mitre.oval:def:683 Vulnerability windows
WebClient Service Unchecked Buffer Remote Code Execution (XP,SP2) oval:org.mitre.oval:def:1602 Vulnerability windows
WebClient Service Unchecked Buffer Remote Code Execution (Server 2003) oval:org.mitre.oval:def:1547 Vulnerability windows
WebClient Service Unchecked Buffer Remote Code Execution (Server 2003,SP1) oval:org.mitre.oval:def:1220 Vulnerability windows
WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, al... oval:org.mitre.oval:def:14482 Vulnerability windows
WebDAV elevation of privilege vulnerability - CVE-2015-0011 (MS15-008) oval:org.mitre.oval:def:27743 Vulnerability windows
WebDAV remote crash oval:org.apache.httpd:def:20040809 Vulnerability
WebKit 'ConditionEventListener' Remote Code Execution Vulnerability oval:org.mitre.oval:def:7071 Vulnerability windows
WebKit 'DOCUMENT_POSITION_DISCONNECTED' Attribute Remote Code Execution Vulnerability oval:org.mitre.oval:def:6912 Vulnerability windows

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html