|
280041
|
- |
|
hp
|
tcp_ip_services_openvms
|
Multiple unspecified vulnerabilities in the POP implementation in HP OpenVMS TCP/IP 5.7 before ECO5 allow remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-7880
|
2024-11-21 11:18 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280042
|
- |
|
linux
|
linux_kernel
|
arch/x86/kernel/tls.c in the Thread Local Storage (TLS) implementation in the Linux kernel through 3.18.1 allows local users to bypass the espfix protection mechanism, and consequently makes it easie…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8133
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280043
|
- |
|
cisco
|
isb8320-e_high-definition_ip-only_dvr
|
The Disaster Recovery (DRA) feature on the Cisco ISB8320-E High-Definition IP-Only DVR allows remote attackers to bypass authentication by establishing a TELNET session during a recovery boot, aka Bu…
|
CWE-287
Improper Authentication
|
CVE-2014-8006
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280044
|
- |
|
broadcom
|
release_automation
|
SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.
|
CWE-89
SQL Injection
|
CVE-2014-8248
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280045
|
- |
|
broadcom
|
release_automation
|
Cross-site scripting (XSS) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to inject arbitrary web script or HTML via unspecif…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8247
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280046
|
- |
|
broadcom
|
release_automation
|
Cross-site request forgery (CSRF) vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote attackers to hijack the authentication of unspecified …
|
CWE-352
Origin Validation Error
|
CVE-2014-8246
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280047
|
- |
|
zoneo-soft
|
phptraffica
|
SQL injection vulnerability in Php/Functions/log_function.php in phpTrafficA 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via a User-Agent HTTP header.
|
CWE-89
SQL Injection
|
CVE-2014-8340
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280048
|
- |
|
rpm
|
rpm
|
Integer overflow in RPM 4.12 and earlier allows remote attackers to execute arbitrary code via a crafted CPIO header in the payload section of an RPM file, which triggers a stack-based buffer overflo…
|
CWE-189
Numeric Errors
|
CVE-2014-8118
|
2024-11-21 11:18 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280049
|
- |
|
google
|
android
|
luni/src/main/java/java/io/ObjectInputStream.java in the java.io.ObjectInputStream implementation in Android before 5.0.0 does not verify that deserialization will result in an object that met the re…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-7911
|
2024-11-21 11:18 |
2014-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280050
|
- |
|
honeywell
|
opos_suite
|
Multiple stack-based buffer overflows in (1) HWOPOSScale.ocx and (2) HWOPOSSCANNER.ocx in Honeywell OPOS Suite before 1.13.4.15 allow remote attackers to execute arbitrary code via a crafted file tha…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8269
|
2024-11-21 11:18 |
2014-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
