|
279671
|
- |
|
ibm
|
spss_modeler
|
IBM SPSS Modeler 16.0 before 16.0.0.1 on UNIX does not properly drop group privileges, which allows local users to bypass intended file-access restrictions by leveraging (1) gid 0 or (2) root's group…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3038
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279672
|
- |
|
ibm
|
api_management
|
Unspecified vulnerability in IBM API Management 3.0.0.0, when basic authentication is used for APIs, allows remote attackers to bypass intended restrictions on topology access, and obtain sensitive i…
|
NVD-CWE-noinfo
|
CVE-2014-3036
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279673
|
- |
|
cisco
|
wireless_lan_controller
|
Cisco Wireless LAN Controller (WLC) devices allow remote attackers to cause a denial of service (NULL pointer dereference and device restart) via a zero value in Cisco Discovery Protocol packet data …
|
CWE-20
Improper Input Validation
|
CVE-2014-3291
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279674
|
- |
|
cisco
|
webex_meetings_server
|
The web framework in Cisco WebEx Meeting Server does not properly restrict the content of reply messages, which allows remote attackers to obtain sensitive information via a crafted URL, aka Bug IDs …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3286
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279675
|
- |
|
cisco
|
unified_communications_domain_manager
|
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to obtain potentially sensitive user informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3281
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279676
|
- |
|
cisco
|
unified_communications_domain_manager
|
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) does not properly implement access control, which allows remote attackers to enumerate accounts by visiting an unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3278
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279677
|
- |
|
cisco
|
unified_communications_domain_manager
|
The web framework in VOSS in Cisco Unified Communications Domain Manager (CDM) 9.0(.1) and earlier does not properly implement access control, which allows remote authenticated users to obtain potent…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3280
|
2024-11-21 11:07 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279678
|
- |
|
dell
quantum
|
powervault_ml6000_firmware
powervault_ml6000
scalar_i500_firmware
scalar_i500
|
logViewer.htm on the Dell ML6000 tape backup system with firmware before i8.2.0.2 (641G.GS103) and the Quantum Scalar i500 tape backup system with firmware before i8.2.2.1 (646G.GS002) allows remote …
|
CWE-78
OS Command
|
CVE-2014-2959
|
2024-11-21 11:07 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279679
|
- |
|
huawei
|
webui
e303_modem_firmware
e303_modem
|
Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentic…
|
CWE-352
Origin Validation Error
|
CVE-2014-2946
|
2024-11-21 11:07 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279680
|
- |
|
alfresco
|
alfresco
|
Multiple cross-site scripting (XSS) vulnerabilities in Alfresco Enterprise before 4.1.6.13 allow remote attackers to inject arbitrary web script or HTML via (1) an XHTML document, (2) a <% tag, or (3…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2939
|
2024-11-21 11:07 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
