|
285281
|
7.8 |
HIGH
Local
|
linux
google
|
linux_kernel
android
|
Race condition in the ip4_datagram_release_cb function in net/ipv4/datagram.c in the Linux kernel before 3.15.2 allows local users to gain privileges or cause a denial of service (use-after-free) by …
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2014-9914
|
2024-11-21 11:21 |
2017-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285282
|
6.1 |
MEDIUM
Network
|
nodejs
|
node.js
|
The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9772
|
2024-11-21 11:21 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285283
|
7.5 |
HIGH
Network
|
viprinet
|
multichannel_vpn_router_300_firmware
|
The hardware VPN client in Viprinet MultichannelVPN Router 300 version 2013070830/2013080900 does not validate the remote VPN endpoint identity (through the checking of the endpoint's SSL key) before…
|
CWE-20
Improper Input Validation
|
CVE-2014-9755
|
2024-11-21 11:21 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285284
|
5.9 |
MEDIUM
Network
|
viprinet
|
multichannel_vpn_router_300_firmware
|
The hardware VPN client in Viprinet MultichannelVPN Router 300 version 2013070830/2013080900 does not validate the remote VPN endpoint identity (through the checking of the endpoint's SSL key) before…
|
CWE-20
Improper Input Validation
|
CVE-2014-9754
|
2024-11-21 11:21 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285285
|
4.0 |
MEDIUM
Local
|
unzip_project
|
unzip
|
Buffer overflow in the list_files function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via vectors related to the compression method.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9913
|
2024-11-21 11:21 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285286
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9910
|
2024-11-21 11:21 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285287
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9909
|
2024-11-21 11:21 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285288
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The get_icu_disp_value_src_php function in ext/intl/locale/locale_methods.c in PHP before 5.3.29, 5.4.x before 5.4.30, and 5.5.x before 5.5.14 does not properly restrict calls to the ICU uresbund.cpp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9912
|
2024-11-21 11:21 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285289
|
9.8 |
CRITICAL
Network
|
icu-project
|
international_components_for_unicode
|
Stack-based buffer overflow in the ures_getByKeyWithFallback function in common/uresbund.cpp in International Components for Unicode (ICU) before 54.1 for C/C++ allows remote attackers to cause a den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9911
|
2024-11-21 11:21 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285290
|
9.8 |
CRITICAL
Network
|
debian
dbd-mysql_project
|
debian_linux
dbd-mysql
|
Use-after-free vulnerability in DBD::mysql before 4.029 allows attackers to cause a denial of service (program crash) or possibly execute arbitrary code via vectors related to a lost server connectio…
|
CWE-416
Use After Free
|
CVE-2014-9906
|
2024-11-21 11:21 |
2016-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
