Software Engineering Institute
Carnegie Mellon University
Computer Emergency Readiness Team
- VU#199397: Insecure Implementation of Tunneling Protocols (GRE/IPIP/4in6/6in4)
- VU#952657: Rsync contains six vulnerabilities
- VU#529659: Howyar Reloader UEFI Bootloader Vulnerable to Unsigned Software Execution
- VU#164934: PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement
- VU#123336: Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J
- VU#138043: A stack-based overflow vulnerability exists in the Microchip Advanced Software Framework (ASF) implementation of the tinydhcp server
- VU#455367: Insecure Platform Key (PK) used in UEFI system firmware signature
- VU#244112: Multiple SMTP services are susceptible to spoofing attacks due to insufficient enforcement