CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-4641 – pig-vector LogisticRegression.java LogisticRegression temp file
https://notcve.org/view.php?id=CVE-2022-4641
21 Dec 2022 — A vulnerability was found in pig-vector and classified as problematic. Affected by this issue is the function LogisticRegression of the file src/main/java/org/apache/mahout/pig/LogisticRegression.java. The manipulation leads to insecure temporary file. The attack needs to be approached locally. The name of the patch is 1e7bd9fab5401a2df18d2eabd802adcf0dcf1f15. • https://github.com/tdunning/pig-vector/commit/1e7bd9fab5401a2df18d2eabd802adcf0dcf1f15 • CWE-377: Insecure Temporary File •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2014-6754
https://notcve.org/view.php?id=CVE-2014-6754
28 Sep 2014 — The Vector Outage Manager (aka nz.co.vector.outagemanager) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. La aplicación Vector Outage Manager (también conocido como nz.co.vector.outagemanager) 1.7 para Android no verifica los certificados X.509 de los servidores SSL, lo que permite a atacantes man-in-the-middle falsificar servidores y obtener información sen... • http://www.kb.cert.org/vuls/id/159481 • CWE-310: Cryptographic Issues •
CVSS: 10.0EPSS: 82%CPEs: 1EXPL: 9CVE-2013-5019 – Ultra Mini HTTPd - Remote Stack Buffer Overflow
https://notcve.org/view.php?id=CVE-2013-5019
31 Jul 2013 — Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request. Desbordamiento de búfer pasado en pula en Ultra Mini HTTPD 1.21 permite a atacantes remotos ejecutar código arbitrario a través de un nombre largo de recurso en una petición HTTP. • https://packetstorm.news/files/id/122811 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •