|
280681
|
7.5 |
HIGH
Network
|
google
|
android
|
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write…
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-3164
|
2024-11-21 11:07 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280682
|
5.9 |
MEDIUM
Network
|
wolfssl
|
wolfssl
|
CyaSSL does not check the key usage extension in leaf certificates, which allows remote attackers to spoof servers via a crafted server certificate not authorized for use in an SSL/TLS handshake.
|
CWE-310
Cryptographic Issues
|
CVE-2014-2903
|
2024-11-21 11:07 |
2017-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280683
|
7.5 |
HIGH
Network
|
visioncritical
|
vision_critical
|
Vision Critical before 2014-05-30 allows attackers to read arbitrary files via unspecified vectors, as demonstrated by image files and configuration files.
|
CWE-200
Information Exposure
|
CVE-2014-2960
|
2024-11-21 11:07 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280684
|
7.5 |
HIGH
Network
|
huawei
|
s9300_firmware
s3300_firmware
s2300_firmware
s5300_firmware
s6300_firmware
|
Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special packe…
|
CWE-19
Data Processing Errors
|
CVE-2014-3223
|
2024-11-21 11:07 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280685
|
7.0 |
HIGH
Local
|
huawei
|
espace_meeting
|
In Huawei eSpace Meeting with software V100R001C03SPC201 and the earlier versions, attackers that obtain the permissions assigned to common users can elevate privileges to access and set specific key…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3222
|
2024-11-21 11:07 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280686
|
7.5 |
HIGH
Network
|
huawei
|
quidway_s5300_firmware
quidway_s5700_firmware
quidway_s6300_firmware
quidway_s6700_firmware
quidway_s7700_firmware
quidway_s9300_firmware
quidway_s9700_firmware
|
Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700 V200R003C00SP…
|
CWE-399
Resource Management Errors
|
CVE-2014-3224
|
2024-11-21 11:07 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280687
|
7.5 |
HIGH
Network
|
huawei
|
eudemon8000e_firmware
|
Huawei Eudemon8000E firewall with software V200R001C01SPC800 and earlier versions allows users to log in to the device using Telnet or SSH. When an attacker sends to the device a mass of TCP packets …
|
CWE-399
Resource Management Errors
|
CVE-2014-3221
|
2024-11-21 11:07 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280688
|
7.5 |
HIGH
Adjacent
|
pacom
|
1000_ccu_gms
rtu_gms
|
Pacom 1000 CCU and RTU GMS devices allow remote attackers to spoof the controller-to-base data stream by leveraging improper use of cryptography.
|
CWE-310
Cryptographic Issues
|
CVE-2014-3260
|
2024-11-21 11:07 |
2015-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280689
|
- |
|
ok_web_server_project
|
ok_web_server
|
Cross-site scripting (XSS) vulnerability in libahttp/err.c in OkCupid OKWS (OK Web Server) allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to a non-existent page, whi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3148
|
2024-11-21 11:07 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280690
|
- |
|
debian
|
cifs-utils
|
Stack-based buffer overflow in cifskey.c or cifscreds.c in cifs-utils before 6.4, as used in pam_cifscreds, allows remote attackers to have unspecified impact via unknown vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2830
|
2024-11-21 11:07 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
