Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

Vulnerabilities

With the aim of informing, warning and helping professionals with the latest security vulnerabilities in technology systems, we have made a database available for users interested in this information, which is in Spanish and includes all of the latest documented and recognised vulnerabilities.

This repository, with over 75,000 registers, is based on the information from the NVD (National Vulnerability Database) – by virtue of a partnership agreement – through which INCIBE translates the included information into Spanish.

On occasions this list will show vulnerabilities that have still not been translated, as they are added while the INCIBE team is still carrying out the translation process. The CVE  (Common Vulnerabilities and Exposures) Standard for Information Security Vulnerability Names is used with the aim to support the exchange of information between different tools and databases.

All vulnerabilities collected are linked to different information sources, as well as available patches or solutions provided by manufacturers and developers. It is possible to carry out advanced searches, as there is the option to select different criteria to narrow down the results, some examples being vulnerability types, manufacturers and impact levels, among others.

Through RSS feeds or Newsletters we can be informed daily about the latest vulnerabilities added to the repository. Below there is a list, updated daily, where you can discover the latest vulnerabilities.

CVE-1999-1238
Publication date:
21/09/1994
Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1219
Publication date:
11/08/1994
Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1494
Publication date:
09/08/1994
colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1552
Publication date:
20/07/1994
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1239
Publication date:
13/07/1994
HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0207
Publication date:
09/06/1994
Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0337
Publication date:
03/06/1994
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0423
Publication date:
01/06/1994
Vulnerability in hpterm on HP-UX 10.20 allows local users to gain additional privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0113
Publication date:
23/05/1994
Some implementations of rlogin allow root access if given a -froot parameter.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1134
Publication date:
18/05/1994
Vulnerability in Vue 3.0 in HP 9.x allows local users to gain root privileges, as fixed by PHSS_4038, PHSS_4055, and PHSS_4066.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1388
Publication date:
13/05/1994
passwd in SunOS 4.1.x allows local users to overwrite arbitrary files via a symlink attack and the -F command line argument.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1146
Publication date:
04/05/1994
Vulnerability in Glance and gpm programs in GlancePlus for HP-UX 9.x and earlier allows local users to access arbitrary files and gain privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025
Subscribe to Vulnerabilities