|
284861
|
6.6 |
MEDIUM
Network
|
redhat
|
jboss_application_server
|
The Embedded Jopr component in JBoss Application Server includes the cleartext datasource password in unspecified HTML responses, which might allow (1) man-in-the-middle attackers to obtain sensitive…
|
CWE-255
Credentials Management
|
CVE-2013-3734
|
2024-11-21 10:54 |
2017-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284862
|
7.5 |
HIGH
Network
|
freerdp
|
freerdp
|
FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished.
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-4119
|
2024-11-21 10:54 |
2016-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284863
|
7.5 |
HIGH
Network
|
freerdp
opensuse
|
freerdp
leap
opensuse
|
FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-4118
|
2024-11-21 10:54 |
2016-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284864
|
- |
|
sap
|
governance_risk_and_compliance
|
Multiple unspecified vulnerabilities in SAP Governance, Risk, and Compliance (GRC) allow remote authenticated users to gain privileges and execute arbitrary programs via a crafted (1) RFC or (2) SOAP…
|
NVD-CWE-noinfo
|
CVE-2013-3678
|
2024-11-21 10:54 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284865
|
- |
|
bestpractical
|
request_tracker
|
The MobileUI (aka RT-Extension-MobileUI) extension before 1.04 in Request Tracker (RT) 4.0.0 before 4.0.13, when using the file-based session store (Apache::Session::File) and certain authentication …
|
CWE-200
Information Exposure
|
CVE-2013-3737
|
2024-11-21 10:54 |
2014-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284866
|
- |
|
qemu
|
qemu
|
The virtio_load function in virtio/virtio.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers an out-of-bounds write.
|
CWE-94
Code Injection
|
CVE-2013-4151
|
2024-11-21 10:54 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284867
|
- |
|
qemu
|
qemu
|
The virtio_net_load function in hw/net/virtio-net.c in QEMU 1.5.0 through 1.7.x before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via vectors in whi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4150
|
2024-11-21 10:54 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284868
|
- |
|
qemu
|
qemu
|
Buffer overflow in virtio_net_load function in net/virtio-net.c in QEMU 1.3.0 through 1.7.x before 1.7.2 might allow remote attackers to execute arbitrary code via a large MAC table.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4149
|
2024-11-21 10:54 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284869
|
- |
|
qemu
|
qemu
|
Integer signedness error in the virtio_net_load function in hw/net/virtio-net.c in QEMU 1.x before 1.7.2 allows remote attackers to execute arbitrary code via a crafted savevm image, which triggers a…
|
CWE-189
Numeric Errors
|
CVE-2013-4148
|
2024-11-21 10:54 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284870
|
- |
|
openmediavault
|
openmediavault
|
The Cron service in rpc.php in OpenMediaVault allows remote authenticated users to execute cron jobs as arbitrary users and execute arbitrary commands via the username parameter.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3632
|
2024-11-21 10:54 |
2014-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
