|
281521
|
- |
|
apache
|
couchdb
|
Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via the count parameter to /_uuids.
|
CWE-20
Improper Input Validation
|
CVE-2014-2668
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281522
|
- |
|
xen
|
xen
|
The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service (CPU consumption) by leveragin…
|
CWE-20
Improper Input Validation
|
CVE-2014-2599
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281523
|
- |
|
pyyaml
opensuse
|
libyaml
leap
opensuse
|
Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded cha…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2525
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281524
|
- |
|
fedoraproject
opensuse
cacti
debian
|
fedora
opensuse
cacti
debian_linux
|
Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2326
|
2024-11-21 11:06 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281525
|
- |
|
openbsd
|
openssh
|
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertific…
|
CWE-20
Improper Input Validation
|
CVE-2014-2653
|
2024-11-21 11:06 |
2014-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281526
|
- |
|
joshua_peek
|
rack-ssl
|
Cross-site scripting (XSS) vulnerability in lib/rack/ssl.rb in the rack-ssl gem before 1.4.0 for Ruby allows remote attackers to inject arbitrary web script or HTML via a URI, which might not be prop…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2538
|
2024-11-21 11:06 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281527
|
6.1 |
MEDIUM
Network
|
barracudadrive
|
barracudadrive
|
Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive before 6.7 allow remote attackers to inject arbitrary web script or HTML via the (1) sForumName or (2) sDescription parameter to …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2526
|
2024-11-21 11:06 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281528
|
- |
|
openstack
|
compute
|
The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denia…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2573
|
2024-11-21 11:06 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281529
|
- |
|
opensuse
icinga
|
opensuse
icinga
|
Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service (crash) via unspecified vectors to the (1) display_nav_table, (2) print_export_l…
|
CWE-189
Numeric Errors
|
CVE-2014-2386
|
2024-11-21 11:06 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281530
|
- |
|
net-snmp
|
net-snmp
|
The Linux implementation of the ICMP-MIB in Net-SNMP 5.5 before 5.5.2.1, 5.6.x before 5.6.2.1, and 5.7.x before 5.7.2.1 does not properly validate input, which allows remote attackers to cause a deni…
|
CWE-20
Improper Input Validation
|
CVE-2014-2284
|
2024-11-21 11:06 |
2014-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
