|
281261
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect availability via vectors related to WL…
|
NVD-CWE-noinfo
|
CVE-2014-4201
|
2024-11-21 11:09 |
2014-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281262
|
- |
|
zte
|
zxv10_w300_firmware
zxv10_w300
|
ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the PPPoE/PPPoA passwo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4154
|
2024-11-21 11:09 |
2014-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281263
|
- |
|
zte
|
zxv10_w300_firmware
zxv10_w300
|
The ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2014-4018
|
2024-11-21 11:09 |
2014-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281264
|
- |
|
arubanetworks
|
clearpass
|
The Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to obtain database credential…
|
CWE-200
Information Exposure
|
CVE-2014-4031
|
2024-11-21 11:09 |
2014-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281265
|
- |
|
freebsd
|
freebsd
|
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize certain data structures, which allows local users to obtain sensitive information from kernel m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3953
|
2024-11-21 11:09 |
2014-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281266
|
- |
|
freebsd
|
freebsd
|
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize the buffer between the header and data of a control message, which allows local users to obtain…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3952
|
2024-11-21 11:09 |
2014-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281267
|
- |
|
arubanetworks
|
clearpass
|
SQL injection vulnerability in the Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated user…
|
CWE-89
SQL Injection
|
CVE-2014-4013
|
2024-11-21 11:09 |
2014-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281268
|
- |
|
openstack
canonical
|
neutron
ubuntu_linux
|
The L3-agent in OpenStack Neutron before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated users to cause a denial of service (IPv4 address attachment outage) by at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4167
|
2024-11-21 11:09 |
2014-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281269
|
- |
|
dolibarr
|
dolibarr_erp\/crm
|
Multiple SQL injection vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote authenticated users to execute arbitrary SQL commands via the (1) entity parameter in an update action to user/fiche.php …
|
CWE-89
SQL Injection
|
CVE-2014-3992
|
2024-11-21 11:09 |
2014-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281270
|
- |
|
dolibarr
|
dolibarr_erp\/crm
|
Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.5.3 allow remote attackers to inject arbitrary web script or HTML via the (1) dol_use_jmobile, (2) dol_optimize_smallscreen, …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3991
|
2024-11-21 11:09 |
2014-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
