|
280821
|
- |
|
openelectrical
|
open_electrical_webser
|
The Open Electrical Webser (aka com.wOpenElectricalWeb) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and …
|
CWE-310
Cryptographic Issues
|
CVE-2014-6683
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280822
|
- |
|
w88235ff7bdc2fb574f1789750ea99ed6_project
|
w88235ff7bdc2fb574f1789750ea99ed6
|
The w88235ff7bdc2fb574f1789750ea99ed6 (aka com.w88235ff7bdc2fb574f1789750ea99ed6) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attac…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6682
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280823
|
- |
|
wordbox
|
mahabharata_audiocast
|
The Mahabharata Audiocast (aka com.wordbox.mahabharataAudiocast) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof ser…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6681
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280824
|
- |
|
superheroquiz_project
|
superheroquiz
|
The superheroquiz (aka com.davidhey.superheroquiz) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtai…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6680
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280825
|
- |
|
wepisdparentportal_project
|
wepisdparentportal
|
The wEPISDParentPortal (aka com.dreamstep.wEPISDParentPortal) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6679
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280826
|
- |
|
wordbox
|
algeria_radio
|
The Algeria Radio (aka com.wordbox.algeriaRadio) application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain …
|
CWE-310
Cryptographic Issues
|
CVE-2014-6678
|
2024-11-21 11:15 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280827
|
7.5 |
HIGH
Network
|
zenoss
debian
|
zenoss_core
debian_linux
|
Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core before 4.2.5 and other products, allow remote attackers to execute arbitrary code or cause a denial of s…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2014-6262
|
2024-11-21 11:14 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280828
|
7.1 |
HIGH
Network
|
juniper
|
junos
|
Multiple vulnerabilities exist in Juniper Junos J-Web error handling that may lead to cross site scripting (XSS) issues or crash the J-Web service (DoS). This affects Juniper Junos OS 12.1X44 before …
|
CWE-79
Cross-site Scripting
|
CVE-2014-6447
|
2024-11-21 11:14 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280829
|
6.1 |
MEDIUM
Network
|
watchguard
|
fireware_xtm
|
A Cross-site Scripting (XSS) vulnerability exists in WatchGuard XTM 11.8.3 via the poll_name parameter in the firewall/policy script.
|
CWE-79
Cross-site Scripting
|
CVE-2014-6413
|
2024-11-21 11:14 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280830
|
7.8 |
HIGH
Local
|
juniper
|
junos
|
Juniper Junos OS 13.2 before 13.2R5, 13.2X51, 13.2X52, and 13.3 before 13.3R3 allow local users to bypass intended restrictions and execute arbitrary Python code via vectors involving shell access.
|
CWE-269
Improper Privilege Management
|
CVE-2014-6448
|
2024-11-21 11:14 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
