cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-17482,https://securityvulnerability.io/vulnerability/CVE-2017-17482,,"An issue was discovered in OpenVMS through V8.4-2L2 on Alpha and through V8.4-2L1 on IA64, and VAX/VMS 4.0 and later. A malformed DCL command table may result in a buffer overflow allowing a local privilege escalation when a non-privileged account enters a crafted command line. This bug is exploitable on VAX and Alpha and may cause a process crash on IA64. Software was affected regardless of whether it was directly shipped by VMS Software, Inc. (VSI), HPE, HP, Compaq, or Digital Equipment Corporation.",HP,Openvms,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2018-02-07T15:00:00.000Z,0
CVE-2014-7880,https://securityvulnerability.io/vulnerability/CVE-2014-7880,,Multiple unspecified vulnerabilities in the POP implementation in HP OpenVMS TCP/IP 5.7 before ECO5 allow remote attackers to cause a denial of service via unspecified vectors.,HP,Tcp Ip Services Openvms,,,0.008949999697506428,false,,false,false,false,,,false,false,,2014-12-17T16:00:00.000Z,0
CVE-2012-3277,https://securityvulnerability.io/vulnerability/CVE-2012-3277,,"HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows remote attackers to cause a denial of service via unspecified vectors.",HP,Openvms,,,0.0026400000788271427,false,,false,false,false,,,false,false,,2012-12-13T11:53:00.000Z,0
CVE-2012-3276,https://securityvulnerability.io/vulnerability/CVE-2012-3276,,"HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN programs, which allows local users to cause a denial of service via unspecified vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2012-12-13T11:53:00.000Z,0
CVE-2012-2010,https://securityvulnerability.io/vulnerability/CVE-2012-2010,,"The ACMELOGIN implementation in HP OpenVMS 8.3 and 8.4 on the Alpha platform, and 8.3, 8.3-1H1, and 8.4 on the Itanium platform, when the SYS$ACM system service is enabled, allows local users to gain privileges via unspecified vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2012-05-18T20:00:00.000Z,0
CVE-2012-0134,https://securityvulnerability.io/vulnerability/CVE-2012-0134,,"Unspecified vulnerability in HP OpenVMS 7.3-2 on the Alpha platform, 8.3 and 8.4 on the Alpha and IA64 platforms, and 8.3-1h1 on the IA64 platform allows local users to cause a denial of service via unknown vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2012-04-19T21:00:00.000Z,0
CVE-2011-3169,https://securityvulnerability.io/vulnerability/CVE-2011-3169,,Unspecified vulnerability in the SMTP service implementation in HP TCP/IP Services 5.6 and 5.7 for OpenVMS allows remote attackers to cause a denial of service via unknown vectors.,HP,Tcp Ip Services Openvms,,,0.005760000087320805,false,,false,false,false,,,false,false,,2011-11-07T20:00:00.000Z,0
CVE-2011-3168,https://securityvulnerability.io/vulnerability/CVE-2011-3168,,Unspecified vulnerability in the POP and IMAP service implementations in HP TCP/IP Services 5.6 and 5.7 for OpenVMS allows remote attackers to obtain sensitive information via unknown vectors.,HP,Tcp Ip Services Openvms,,,0.00279999990016222,false,,false,false,false,,,false,false,,2011-11-07T20:00:00.000Z,0
CVE-2010-4110,https://securityvulnerability.io/vulnerability/CVE-2010-4110,,"Unspecified vulnerability in HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform on Integrity servers allows local users to gain privileges or cause a denial of service via unknown vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2010-12-22T20:00:00.000Z,0
CVE-2010-1973,https://securityvulnerability.io/vulnerability/CVE-2010-1973,,"Unspecified vulnerability in the Auditing subsystem in HP OpenVMS 8.3, 8.2, 7.3-2, and earlier on the ALPHA platform, and 8.3-1H1, 8.3, 8.2-1, and earlier on the Itanium platform, allows local users to gain privileges or obtain sensitive information via unknown vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2010-07-22T05:43:00.000Z,0
CVE-2010-2612,https://securityvulnerability.io/vulnerability/CVE-2010-2612,,"Unspecified vulnerability in the HP OpenVMS Auditing feature in OpenVMS ALPHA 7.3-2, 8.2, and 8.3; and OpenVMS for Integrity Servers 8.3 AND 8.3-1H1; allows local users to obtain sensitive information via unknown vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2010-07-02T12:44:00.000Z,0
CVE-2010-0443,https://securityvulnerability.io/vulnerability/CVE-2010-0443,,Unspecified vulnerability in Record Management Services (RMS) before VMS83A_RMS-V1100 for HP OpenVMS on the Alpha platform allows local users to gain privileges via unknown vectors.,HP,Openvms Rms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2010-02-04T18:00:00.000Z,0
CVE-2008-5417,https://securityvulnerability.io/vulnerability/CVE-2008-5417,,"HP DECnet-Plus 8.3 before ECO03 for OpenVMS on the Alpha platform uses world-writable permissions for the OSIT$NAMES logical name table, which allows local users to bypass intended access restrictions and modify this table via the (1) SYS$CRELNM and (2) SYS$DELLNM system services.",HP,Decnet Plus For Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2008-12-10T14:00:00.000Z,0
CVE-2008-5120,https://securityvulnerability.io/vulnerability/CVE-2008-5120,,Stack-based buffer overflow in the Process Software MultiNet finger service (aka FINGERD) for HP OpenVMS 8.3 allows remote attackers to execute arbitrary code via a long request string.,HP,Openvms,,,0.6995599865913391,false,,false,false,false,,,false,false,,2008-11-18T00:00:00.000Z,0
CVE-2008-4052,https://securityvulnerability.io/vulnerability/CVE-2008-4052,,"Stack-based buffer overflow in SMGSHR.EXE in OpenVMS for Integrity Servers 8.2-1, 8.3, and 8.3-1H1 and OpenVMS ALPHA 7.3-2, 8.2, and 8.3 allows local users to cause a denial of service (crash) or gain privileges via unspecified vectors.",HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2008-09-11T14:00:00.000Z,0
CVE-2008-3947,https://securityvulnerability.io/vulnerability/CVE-2008-3947,,DCL (aka the CLI) in OpenVMS Alpha 8.3 allows local users to gain privileges via a long command line.,HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2008-09-05T16:00:00.000Z,0
CVE-2008-3946,https://securityvulnerability.io/vulnerability/CVE-2008-3946,,The finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to read arbitrary files via a link corresponding to a (1) .plan or (2) .project file.,HP,Openvms,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2008-09-05T16:00:00.000Z,0
CVE-2008-3940,https://securityvulnerability.io/vulnerability/CVE-2008-3940,,Format string vulnerability in the finger client in HP TCP/IP Services for OpenVMS 5.x allows local users to gain privileges via format string specifiers in a (1) .plan or (2) .project file.,HP,Openvms,,,0.0006699999794363976,false,,false,false,false,,,false,false,,2008-09-05T15:00:00.000Z,0
CVE-2007-5242,https://securityvulnerability.io/vulnerability/CVE-2007-5242,,"Unspecified vulnerability in (1) SYS$EI1000.EXE and (2) SYS$EI1000_MON.EXE in HP OpenVMS 8.3 and earlier allows remote attackers to cause a denial of service (machine crash) via an ""oversize"" packet, which is not properly discarded if ""the device has no remaining buffers after receipt of the first buffer segment.""",HP,Openvms,,,0.02809000015258789,false,,false,false,false,,,false,false,,2007-10-06T16:00:00.000Z,0
CVE-2007-5241,https://securityvulnerability.io/vulnerability/CVE-2007-5241,,"Buffer overflow in NET$CSMACD.EXE in HP OpenVMS 8.3 and earlier allows local users to cause a denial of service (machine crash) via the ""MCR MCL SHOW CSMA-CD Port * All"" command, which overwrites a Non-Paged Pool Packet.",HP,Openvms,,,0.002090000081807375,false,,false,false,false,,,false,false,,2007-10-06T16:00:00.000Z,0
CVE-2007-3729,https://securityvulnerability.io/vulnerability/CVE-2007-3729,,"The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 generates different responses depending on whether or not a username is valid, which allows remote attackers to enumerate valid POP usernames.",HP,Openvms,,,0.009709999896585941,false,,false,false,false,,,false,false,,2007-07-12T17:00:00.000Z,0
CVE-2007-3730,https://securityvulnerability.io/vulnerability/CVE-2007-3730,,"The default configuration of the POP server in TCP/IP Services 5.6 for HP OpenVMS 8.3 does not log the source IP address or attempted username for login attempts, which might help remote attackers to avoid identification.",HP,Openvms,,,0.00977999996393919,false,,false,false,false,,,false,false,,2007-07-12T17:00:00.000Z,0
CVE-2007-2998,https://securityvulnerability.io/vulnerability/CVE-2007-2998,,"The Pascal run-time library (PAS$RTL.EXE) before 20070418 on OpenVMS for Integrity Servers 8.3, and PAS$RTL.EXE before 20070419 on OpenVMS Alpha 8.3, does not properly restore PC and PSL values, which allows local users to cause a denial of service (system crash) via certain Pascal code.",HP,Openvms,,,0.0006000000284984708,false,,false,false,false,,,false,false,,2007-06-04T17:00:00.000Z,0
CVE-2007-2468,https://securityvulnerability.io/vulnerability/CVE-2007-2468,,"Unspecified vulnerability in HP OpenVMS for Integrity Servers 8.2-1 and 8.3 allows local users to cause a denial of service (crash) via ""Program actions relating to exceptions.""",HP,Openvms,,,0.0006000000284984708,false,,false,false,false,,,false,false,,2007-05-02T22:00:00.000Z,0
CVE-2007-0139,https://securityvulnerability.io/vulnerability/CVE-2007-0139,,"Unspecified vulnerability in the DECnet-Plus 7.3-2 feature in DECnet/OSI 7.3-2 for OpenVMS ALPHA, and the DECnet-Plus 7.3 feature in DECnet/OSI 7.3 for OpenVMS VAX, allows attackers to obtain ""unintended privileged access to data and system resources"" via unspecified vectors, related to (1) [SYSEXE]CTF$UI.EXE, (2) [SYSMSG]CTF$MESSAGES.EXE, (3) [SYSHLP]CTF$HELP.HLB, and (4) [SYSMGR]CTF$STARTUP.COM.",HP,Openvms,,,0.007259999867528677,false,,false,false,false,,,false,false,,2007-01-09T11:00:00.000Z,0