|
278621
|
7.8 |
HIGH
Local
|
sniffit_project
debian
|
sniffit
debian_linux
|
Multiple Stack-based Buffer Overflow vulnerabilities exists in Sniffit prior to 0.3.7 via a crafted configuration file that will bypass Non-eXecutable bit NX, stack smashing protector SSP, and addres…
|
CWE-787
Out-of-bounds Write
|
CVE-2014-5439
|
2024-11-21 11:12 |
2019-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278622
|
7.5 |
HIGH
Network
|
honeywell
|
experion_process_knowledge_system
|
A directory traversal vulnerability exists in the confd.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, which could lead to possible information d…
|
CWE-22
Path Traversal
|
CVE-2014-5436
|
2024-11-21 11:12 |
2019-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278623
|
9.8 |
CRITICAL
Network
|
honeywell
|
experion_process_knowledge_system
|
An arbitrary memory write vulnerability exists in the dual_onsrv.exe module in Honeywell Experion PKS R40x before R400.6, R41x before R410.6, and R43x before R430.2, that could lead to possible remot…
|
CWE-787
Out-of-bounds Write
|
CVE-2014-5435
|
2024-11-21 11:12 |
2019-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278624
|
9.8 |
CRITICAL
Network
|
baxter
|
sigma_spectrum_infusion_system_firmware
|
An unauthenticated remote attacker may be able to execute commands to view wireless account credentials that are stored in cleartext on Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700…
|
CWE-255
Credentials Management
|
CVE-2014-5433
|
2024-11-21 11:12 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278625
|
9.8 |
CRITICAL
Network
|
baxter
|
sigma_spectrum_infusion_system_firmware
|
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 is remotely accessible via Port 22/SSH without authentication. A remote attacker may …
|
CWE-287
Improper Authentication
|
CVE-2014-5432
|
2024-11-21 11:12 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278626
|
6.8 |
MEDIUM
Physics
|
baxter
|
sigma_spectrum_infusion_system_firmware
|
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 contains a hard-coded password, which provides access to basic biomedical information…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2014-5431
|
2024-11-21 11:12 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278627
|
9.8 |
CRITICAL
Network
|
baxter
|
sigma_spectrum_infusion_system_firmware
|
Baxter SIGMA Spectrum Infusion System version 6.05 (model 35700BAX) with wireless battery module (WBM) version 16 has a default account with hard-coded credentials used with the FTP protocol. Baxter …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2014-5434
|
2024-11-21 11:12 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278628
|
5.5 |
MEDIUM
Local
|
zarafa
|
zarafa_collaboration_platform
|
Zarafa Collaboration Platform 4.1 uses world-readable permissions for /etc/zarafa/license, which allows local users to obtain sensitive information by reading license files.
|
CWE-200
Information Exposure
|
CVE-2014-5450
|
2024-11-21 11:12 |
2018-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278629
|
7.8 |
HIGH
Local
|
seafile
|
seafile_server
|
Seafile Server before 3.1.2 and Server Professional Edition before 3.1.0 allow local users to gain privileges via vectors related to ccnet handling user accounts.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-5443
|
2024-11-21 11:12 |
2018-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278630
|
5.5 |
MEDIUM
Local
|
clipboard_project
|
clipboard
|
clipedit in the Clipboard module for Perl allows local users to delete arbitrary files via a symlink attack on /tmp/clipedit$$.
|
CWE-59
Link Following
|
CVE-2014-5509
|
2024-11-21 11:12 |
2018-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
