Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

Vulnerabilities

With the aim of informing, warning and helping professionals with the latest security vulnerabilities in technology systems, we have made a database available for users interested in this information, which is in Spanish and includes all of the latest documented and recognised vulnerabilities.

This repository, with over 75,000 registers, is based on the information from the NVD (National Vulnerability Database) – by virtue of a partnership agreement – through which INCIBE translates the included information into Spanish.

On occasions this list will show vulnerabilities that have still not been translated, as they are added while the INCIBE team is still carrying out the translation process. The CVE  (Common Vulnerabilities and Exposures) Standard for Information Security Vulnerability Names is used with the aim to support the exchange of information between different tools and databases.

All vulnerabilities collected are linked to different information sources, as well as available patches or solutions provided by manufacturers and developers. It is possible to carry out advanced searches, as there is the option to select different criteria to narrow down the results, some examples being vulnerability types, manufacturers and impact levels, among others.

Through RSS feeds or Newsletters we can be informed daily about the latest vulnerabilities added to the repository. Below there is a list, updated daily, where you can discover the latest vulnerabilities.

CVE-1999-1303
Publication date:
30/11/1994
Vulnerability in prwarn in SCO UNIX 4.2 and earlier allows local users to gain root access.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1304
Publication date:
30/11/1994
Vulnerability in login in SCO UNIX 4.2 and earlier allows local users to gain root access.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1305
Publication date:
30/11/1994
Vulnerability in "at" program in SCO UNIX 4.2 and earlier allows local users to gain root access.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1310
Publication date:
04/11/1994
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-1022. Reason: This candidate is a duplicate of CVE-1999-1022. Notes: All CVE users should reference CVE-1999-1022 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
Severity CVSS v4.0: Pending analysis
Last modification:
07/11/2023

CVE-1999-1022
Publication date:
02/10/1994
serial_ports administrative program in IRIX 4.x and 5.x trusts the user's PATH environmental variable to find and execute the ls program, which allows local users to gain root privileges via a Trojan horse ls program.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1238
Publication date:
21/09/1994
Vulnerability in CORE-DIAG fileset in HP message catalog in HP-UX 9.05 and earlier allows local users to gain privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1219
Publication date:
11/08/1994
Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1494
Publication date:
09/08/1994
colorview in Silicon Graphics IRIX 5.1, 5.2, and 6.0 allows local attackers to read arbitrary files via the -text argument.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1552
Publication date:
20/07/1994
dpsexec (DPS Server) when running under XDM in IBM AIX 3.2.5 and earlier does not properly check privileges, which allows local users to overwrite arbitrary files and gain privileges.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-1239
Publication date:
13/07/1994
HP-UX 9.x does not properly enable the Xauthority mechanism in certain conditions, which could allow local users to access the X display even when they have not explicitly been authorized to do so.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0207
Publication date:
09/06/1994
Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025

CVE-1999-0337
Publication date:
03/06/1994
AIX batch queue (bsh) allows local and remote users to gain additional privileges when network printing is enabled.
Severity CVSS v4.0: Pending analysis
Last modification:
03/04/2025
Subscribe to Vulnerabilities