|
290681
|
9.8 |
CRITICAL
Network
|
apache
|
httpclient
|
http/impl/client/HttpClientBuilder.java in Apache HttpClient 4.3.x before 4.3.1 does not ensure that X509HostnameVerifier is not null, which allows attackers to have unspecified impact via vectors in…
|
CWE-20
Improper Input Validation
|
CVE-2013-4366
|
2024-11-21 10:55 |
2017-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290682
|
8.8 |
HIGH
Network
|
apache
|
subversion
|
libsvn_fs_fs/fs_fs.c in Apache Subversion 1.8.x before 1.8.2 might allow remote authenticated users with commit access to corrupt FSFS repositories and cause a denial of service or obtain sensitive i…
|
CWE-284
Improper Access Control
|
CVE-2013-4246
|
2024-11-21 10:55 |
2017-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290683
|
6.2 |
MEDIUM
Local
|
oracle
linux
|
linux
linux_kernel
|
The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service (memory consumption) by sending each descriptor over a UNIX socket before closing it, r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4312
|
2024-11-21 10:55 |
2016-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290684
|
- |
|
pwgen_project
|
pwgen
|
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.
|
CWE-310
Cryptographic Issues
|
CVE-2013-4442
|
2024-11-21 10:55 |
2014-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290685
|
- |
|
pwgen_project
|
pwgen
|
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.
|
CWE-255
Credentials Management
|
CVE-2013-4440
|
2024-11-21 10:55 |
2014-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290686
|
- |
|
redhat
|
libvirt
|
The remoteClientFreeFunc function in daemon/remote.c in libvirt before 1.1.3, when ACLs are used, does not set an identity, which causes event handler removal to be denied and remote attackers to cau…
|
NVD-CWE-Other
|
CVE-2013-4399
|
2024-11-21 10:55 |
2014-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290687
|
- |
|
qemu
|
qemu
|
The virtio_scsi_load_request function in hw/scsi/scsi-bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds arr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4542
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290688
|
- |
|
qemu
|
qemu
|
The usb_device_post_load function in hw/usb/bus.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted savevm image, related to a negative setup_len or setup_inde…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4541
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290689
|
- |
|
qemu
opensuse
|
qemu
opensuse
|
Buffer overflow in scoop_gpio_handler_update in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a large (1) prev_level, (2) gpio_level, or (3) gpio_dir value in a savevm …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4540
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290690
|
- |
|
qemu
|
qemu
|
Multiple buffer overflows in the tsc210x_load function in hw/input/tsc210x.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via a crafted (1) precision, (2) nextprecision…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4539
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
