|
279771
|
- |
|
google
|
chrome
|
The WebMediaPlayerAndroid::load function in content/renderer/media/android/webmediaplayer_android.cc in Google Chrome before 36.0.1985.122 on Android does not properly interact with redirects, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3161
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279772
|
- |
|
debian
google
|
debian_linux
chrome
|
The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3160
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279773
|
- |
|
google
|
chrome
|
The WebContentsDelegateAndroid::OpenURLFromTab function in components/web_contents_delegate_android/web_contents_delegate_android.cc in Google Chrome before 36.0.1985.122 on Android does not properly…
|
CWE-20
Improper Input Validation
|
CVE-2014-3159
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279774
|
- |
|
cisco
|
unified_customer_voice_portal
|
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Customer Voice Portal (CVP) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug IDs CSC…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3325
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279775
|
- |
|
ibm
|
infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
|
The GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0 FP4 and InfoSphere Master Data Management Server for Product Information Management 9.0 an…
|
CWE-200
Information Exposure
|
CVE-2014-3064
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279776
|
- |
|
ibm
|
scale_out_network_attached_storage
|
IBM Scale Out Network Attached Storage (SONAS) 1.3.x and 1.4.x before 1.4.3.3 places an administrative password in the shell history upon use of the -p option to chuser, which allows local users to o…
|
CWE-200
Information Exposure
|
CVE-2014-3045
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279777
|
- |
|
ibm
|
storwize_unified_v7000_software
storwize_unified_v7000
|
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.3 allows remote authenticated users to gain privileges by leveraging access to the service account.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3043
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279778
|
- |
|
cisco
|
unified_contact_center_enterprise
|
Directory traversal vulnerability in Cisco Unified Contact Center Enterprise allows remote authenticated users to read arbitrary web-root files via a crafted URL, aka Bug ID CSCun25262.
|
CWE-22
Path Traversal
|
CVE-2014-3323
|
2024-11-21 11:07 |
2014-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279779
|
- |
|
cisco
|
ios_xr
asr_9000_rsp440_router
asr_9001
asr_9006
asr_9010
asr_9904
asr_9912
asr_9922
|
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a seri…
|
CWE-20
Improper Input Validation
|
CVE-2014-3321
|
2024-11-21 11:07 |
2014-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279780
|
- |
|
cisco
|
unified_communications_domain_manager
|
Multiple open redirect vulnerabilities in the admin web interface in the web framework in Cisco Unified Communications Domain Manager (CDM) 8.1(.4) and earlier allow remote attackers to redirect user…
|
NVD-CWE-Other
|
CVE-2014-3320
|
2024-11-21 11:07 |
2014-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
