|
278811
|
5.5 |
MEDIUM
Local
|
linux
canonical
opensuse
novell
suse
oracle
|
linux_kernel
ubuntu_linux
evergreen
suse_linux_enterprise_server
linux_enterprise_real_time_extension
suse_linux_enterprise_desktop
linux_enterprise_workstation_extension
opensus…
|
The d_walk function in fs/dcache.c in the Linux kernel through 3.17.2 does not properly maintain the semantics of rename_lock, which allows local users to cause a denial of service (deadlock and syst…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2014-8559
|
2024-11-21 11:19 |
2014-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278812
|
- |
|
linux
|
linux_kernel
|
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 does not properly handle invalid instructions, which allows guest OS users to cause a denial…
|
CWE-399
Resource Management Errors
|
CVE-2014-8481
|
2024-11-21 11:19 |
2014-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278813
|
- |
|
linux
|
linux_kernel
|
The instruction decoder in arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel before 3.18-rc2 lacks intended decoder-table flags for certain RIP-relative instructions, which allows guest…
|
CWE-399
Resource Management Errors
|
CVE-2014-8480
|
2024-11-21 11:19 |
2014-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278814
|
- |
|
citrix
|
netscaler_application_delivery_controller_firmware
netscaler_gateway_firmware
|
Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5.50.10 before 10.5-52.11, 10.1.122.17 before 10.1-129.11, and 10.1-120.1316.e before 10.1-129.1105.e, when using unspecified…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8580
|
2024-11-21 11:19 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278815
|
- |
|
trendmicro
|
interscan_web_security_virtual_appliance
|
The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration inp…
|
CWE-20
Improper Input Validation
|
CVE-2014-8510
|
2024-11-21 11:19 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278816
|
- |
|
rewardingyourself
|
rewardingyourself
|
Cross-site scripting (XSS) vulnerability in the RewardingYourself application for Android and BlackBerry OS allows remote attackers to inject arbitrary web script or HTML via a crafted QR code.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8672
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278817
|
- |
|
gwt_mobile_phonegap_showcase_project
|
gwt_mobile_phonegap_showcase
|
Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for Android allows remote attackers to inject arbitrary web script or HTML via a crafted Bluetooth Device Name…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8671
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278818
|
- |
|
vbulletin
|
vbulletin
|
Open redirect vulnerability in go.php in vBulletin 4.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
|
NVD-CWE-Other
|
CVE-2014-8670
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278819
|
- |
|
sap
|
customer_relationship_management
|
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2014-8669
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278820
|
- |
|
sap
|
contract_accounting
|
SQL injection vulnerability in SAP Contract Accounting allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-8668
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
