|
281631
|
- |
|
huawei
|
p2-6011_firmware
|
The hx170dec device driver in Huawei P2-6011 before V100R001C00B043 allows local users to read and write to arbitrary memory locations via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2273
|
2024-11-21 11:05 |
2014-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281632
|
- |
|
infoware
|
mapsuite
|
Server-side request forgery (SSRF) vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to trigger requests to intranet servers via unspecifi…
|
NVD-CWE-Other
|
CVE-2014-2233
|
2024-11-21 11:05 |
2014-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281633
|
- |
|
infoware
|
mapsuite
|
Absolute path traversal vulnerability in the MapAPI in Infoware MapSuite before 1.0.36 and 1.1.x before 1.1.49 allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-21
Pathname Traversal and Equivalence Errors
|
CVE-2014-2232
|
2024-11-21 11:05 |
2014-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281634
|
- |
|
xelerance
|
openswan
|
Openswan 2.6.40 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon restart) via IKEv2 packets that lack expected payloads. NOTE: this vulnerability exists …
|
CWE-20
Improper Input Validation
|
CVE-2014-2037
|
2024-11-21 11:05 |
2014-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281635
|
- |
|
vtiger
|
vtiger_crm
|
views/Index.php in the Install module in vTiger 6.0 before Security Patch 2 does not properly restrict access, which allows remote attackers to re-install the application via a request that sets the …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2268
|
2024-11-21 11:05 |
2014-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281636
|
- |
|
cisco
|
rv180_firmware
rv180
rv180w
rv120w_firmware
rv120w
rv220w_firmware
rv220w
|
The Cisco RV router firmware on RV220W devices, before 1.0.5.9 on RV120W devices, and before 1.0.4.14 on RV180 and RV180W devices allows remote attackers to upload files to arbitrary locations via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-2179
|
2024-11-21 11:05 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281637
|
- |
|
cisco
|
rv180_firmware
rv180
rv180w
rv220w_firmware
rv220w
rv120w_firmware
rv120w
|
Cross-site request forgery (CSRF) vulnerability in the administrative web interface in the Cisco RV router firmware on RV220W devices, before 1.0.5.9 on RV120W devices, and before 1.0.4.14 on RV180 a…
|
CWE-352
Origin Validation Error
|
CVE-2014-2178
|
2024-11-21 11:05 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281638
|
- |
|
cisco
|
rv120w_firmware
rv120w
rv220w_firmware
rv220w
rv180_firmware
rv180
rv180w
|
The network-diagnostics administration interface in the Cisco RV router firmware on RV220W devices, before 1.0.5.9 on RV120W devices, and before 1.0.4.14 on RV180 and RV180W devices allows remote aut…
|
CWE-94
Code Injection
|
CVE-2014-2177
|
2024-11-21 11:05 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281639
|
- |
|
freeradius
|
freeradius
|
Stack-based buffer overflow in the normify function in the rlm_pap module (modules/rlm_pap/rlm_pap.c) in FreeRADIUS 2.x, possibly 2.2.3 and earlier, and 3.x, possibly 3.0.1 and earlier, might allow a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2015
|
2024-11-21 11:05 |
2014-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281640
|
- |
|
python-gnupg_project
|
python-gnupg
|
python-gnupg 0.3.5 and 0.3.6 allows context-dependent attackers to have an unspecified impact via vectors related to "option injection through positional arguments." NOTE: this vulnerability exists b…
|
CWE-20
Improper Input Validation
|
CVE-2014-1929
|
2024-11-21 11:05 |
2014-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
