|
286271
|
- |
|
redhat
|
openstack
|
OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets sslverify to false for certain Yum repositories, which disables SSL protection and allows m…
|
CWE-310
Cryptographic Issues
|
CVE-2014-0041
|
2024-11-21 11:01 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286272
|
- |
|
redhat
|
openstack
|
OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, uses an HTTP connection to download (1) packages and (2) signing keys from Yum repositories, whi…
|
NVD-CWE-noinfo
|
CVE-2014-0040
|
2024-11-21 11:01 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286273
|
- |
|
php
debian
|
php
debian_linux
|
The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bound…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0238
|
2024-11-21 11:01 |
2014-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286274
|
- |
|
php
debian
|
php
debian_linux
|
The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (performance degradation) by …
|
CWE-399
Resource Management Errors
|
CVE-2014-0237
|
2024-11-21 11:01 |
2014-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286275
|
- |
|
apache
|
tomcat
|
Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attack…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0119
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286276
|
- |
|
apache
|
tomcat
|
Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers t…
|
CWE-189
Numeric Errors
|
CVE-2014-0099
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286277
|
- |
|
apache
|
tomcat
|
java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0096
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286278
|
- |
|
apache
|
tomcat
|
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP req…
|
CWE-20
Improper Input Validation
|
CVE-2014-0095
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286279
|
- |
|
apache
|
tomcat
|
Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remot…
|
CWE-189
Numeric Errors
|
CVE-2014-0075
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286280
|
- |
|
redhat
|
rhevm-dwh
|
The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse (rhevm-dwh) package before 3.3.3, stores the history database password in cleartext, whic…
|
CWE-255
Credentials Management
|
CVE-2014-0202
|
2024-11-21 11:01 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
