|
286111
|
8.6 |
HIGH
Local
|
qemu
redhat
|
qemu
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
virtualization
enterprise_linux_eus
…
|
QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2 and various other image formats are vulnerable to potential memory corruptions, integer/buffer overflows or crash caused by missing input va…
|
CWE-20
Improper Input Validation
|
CVE-2014-0144
|
2024-11-21 11:01 |
2022-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286112
|
9.8 |
CRITICAL
Network
|
manageiq
|
awesomespawn
|
Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Awesome spawn as arguments. If untrusted input was included in command arguments, at…
|
CWE-78
OS Command
|
CVE-2014-0156
|
2024-11-21 11:01 |
2022-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286113
|
5.5 |
MEDIUM
Local
|
redhat
|
openshift-origin-node-util
|
It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2014-0068
|
2024-11-21 11:01 |
2022-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286114
|
5.3 |
MEDIUM
Network
|
perl
|
dbi
|
An issue was discovered in the DBI module before 1.628 for Perl. Stack corruption occurs when a user-defined function requires a non-trivial amount of memory and the Perl stack gets reallocated.
|
CWE-787
Out-of-bounds Write
|
CVE-2013-7491
|
2024-11-21 11:01 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286115
|
5.3 |
MEDIUM
Network
|
perl
canonical
|
dbi
ubuntu_linux
|
An issue was discovered in the DBI module before 1.632 for Perl. Using many arguments to methods for Callbacks may lead to memory corruption.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7490
|
2024-11-21 11:01 |
2020-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286116
|
6.8 |
MEDIUM
Adjacent
|
beakerbrowser
|
beaker
|
The Beaker library through 1.11.0 for Python is affected by deserialization of untrusted data, which could lead to arbitrary code execution.
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2013-7489
|
2024-11-21 11:01 |
2020-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286117
|
7.5 |
HIGH
Network
|
convert\
fedoraproject
|
\
fedora
|
perl-Convert-ASN1 (aka the Convert::ASN1 module for Perl) through 0.27 allows remote attackers to cause an infinite loop via unexpected input.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2013-7488
|
2024-11-21 11:01 |
2020-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286118
|
9.8 |
CRITICAL
Network
|
swann
|
dvr04b_firmware
dvr08b_firmware
dvr-16cif_firmware
dvr16b_firmware
|
On Swann DVR04B, DVR08B, DVR-16CIF, and DVR16B devices, raysharpdvr application has a vulnerable call to “system”, which allows remote attackers to execute arbitrary code via TCP port 9000.
|
CWE-74
Injection
|
CVE-2013-7487
|
2024-11-21 11:01 |
2020-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286119
|
9.8 |
CRITICAL
Network
|
redhat
|
openshift
|
The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing t…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2014-0234
|
2024-11-21 11:01 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286120
|
5.9 |
MEDIUM
Network
|
redhat
|
jboss_portal
|
It was found that the implementation of the GTNSubjectCreatingInterceptor class in gatein-wsrp was not thread safe. For a specific WSRP endpoint, under high-concurrency scenarios or scenarios where S…
|
CWE-362
Race Condition
|
CVE-2014-0245
|
2024-11-21 11:01 |
2020-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
