|
276721
|
- |
|
linux
|
linux_kernel
|
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 does not properly handle invalid instructions, which allows guest OS users to cause a denial…
|
CWE-399
Resource Management Errors
|
CVE-2014-8481
|
2024-11-21 11:19 |
2014-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276722
|
- |
|
linux
|
linux_kernel
|
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 lacks intended decoder-table flags for certain RIP-relative instructions, which allows guest…
|
CWE-399
Resource Management Errors
|
CVE-2014-8480
|
2024-11-21 11:19 |
2014-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276723
|
- |
|
citrix
|
netscaler_application_delivery_controller_firmware
netscaler_gateway_firmware
|
Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5.50.10 before 10.5-52.11, 10.1.122.17 before 10.1-129.11, and 10.1-120.1316.e before 10.1-129.1105.e, when using unspecified…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8580
|
2024-11-21 11:19 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276724
|
- |
|
trendmicro
|
interscan_web_security_virtual_appliance
|
The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration inp…
|
CWE-20
Improper Input Validation
|
CVE-2014-8510
|
2024-11-21 11:19 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276725
|
- |
|
rewardingyourself
|
rewardingyourself
|
Cross-site scripting (XSS) vulnerability in the RewardingYourself application for Android and BlackBerry OS allows remote attackers to inject arbitrary web script or HTML via a crafted QR code.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8672
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276726
|
- |
|
gwt_mobile_phonegap_showcase_project
|
gwt_mobile_phonegap_showcase
|
Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for Android allows remote attackers to inject arbitrary web script or HTML via a crafted Bluetooth Device Name…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8671
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276727
|
- |
|
vbulletin
|
vbulletin
|
Open redirect vulnerability in go.php in vBulletin 4.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
|
NVD-CWE-Other
|
CVE-2014-8670
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276728
|
- |
|
sap
|
customer_relationship_management
|
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2014-8669
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276729
|
- |
|
sap
|
contract_accounting
|
SQL injection vulnerability in SAP Contract Accounting allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-8668
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276730
|
- |
|
sap
|
hana_web-based_development_workbench
|
Cross-site scripting (XSS) vulnerability in SAP HANA Web-based Development Workbench allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8667
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
