|
276711
|
- |
|
cisco
|
adaptive_security_appliance_software
|
Cross-site scripting (XSS) vulnerability in the WebVPN Portal Login page in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to inject arbitrary web script or HTML via crafted…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8012
|
2024-11-21 11:18 |
2014-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276712
|
- |
|
thermostat_project
|
thermostat
|
The agent in Thermostat before 1.0.6, when using unspecified configurations, allows local users to obtain the JMX management URLs of all local Java virtual machines and gain privileges via unknown ve…
|
NVD-CWE-noinfo
|
CVE-2014-8120
|
2024-11-21 11:18 |
2014-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276713
|
- |
|
redhat
apache
apple
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
subversion
xcode
|
The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.7.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) v…
|
NVD-CWE-Other
|
CVE-2014-8108
|
2024-11-21 11:18 |
2014-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276714
|
- |
|
file_project
freebsd
mageia
canonical
|
file
freebsd
mageia
ubuntu_linux
|
softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-8117
|
2024-11-21 11:18 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276715
|
- |
|
freebsd
file_project
mageia
canonical
|
freebsd
file
mageia
ubuntu_linux
|
The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid …
|
CWE-399
Resource Management Errors
|
CVE-2014-8116
|
2024-11-21 11:18 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276716
|
- |
|
hp
|
tcp_ip_services_openvms
|
Multiple unspecified vulnerabilities in the POP implementation in HP OpenVMS TCP/IP 5.7 before ECO5 allow remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-7880
|
2024-11-21 11:18 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276717
|
- |
|
linux
|
linux_kernel
|
arch/x86/kernel/tls.c in the Thread Local Storage (TLS) implementation in the Linux kernel through 3.18.1 allows local users to bypass the espfix protection mechanism, and consequently makes it easie…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8133
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276718
|
- |
|
cisco
|
isb8320-e_high-definition_ip-only_dvr
|
The Disaster Recovery (DRA) feature on the Cisco ISB8320-E High-Definition IP-Only DVR allows remote attackers to bypass authentication by establishing a TELNET session during a recovery boot, aka Bu…
|
CWE-287
Improper Authentication
|
CVE-2014-8006
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276719
|
- |
|
broadcom
|
release_automation
|
SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.
|
CWE-89
SQL Injection
|
CVE-2014-8248
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276720
|
- |
|
broadcom
|
release_automation
|
Cross-site scripting (XSS) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to inject arbitrary web script or HTML via unspecif…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8247
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
