CVE List - 2013 / November
Showing 201 - 300 of 394 CVEs for November 2013 (Page 3 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-3407 | 2013-11-16 | The web interface in Cisco Server Provisioner 6.4.0 Patch 5-1301292331... |
| CVE-2013-3694 | 2013-11-16 | BlackBerry Link before 1.2.1.31 on Windows and before 1.1.1 build... |
| CVE-2013-3876 | 2013-11-16 | DirectAccess in Microsoft Windows XP SP2 and SP3, Windows Server... |
| CVE-2013-4842 | 2013-11-16 | Cross-site scripting (XSS) vulnerability in HP Integrated Lights-Out 4 (iLO4)... |
| CVE-2013-4843 | 2013-11-16 | Unspecified vulnerability in HP Integrated Lights-Out 4 (iLO4) with firmware... |
| CVE-2013-5556 | 2013-11-16 | The license-installation module on the Cisco Nexus 1000V switch 4.2(1)SV1(5.2b)... |
| CVE-2013-6686 | 2013-11-16 | The SSL VPN implementation in Cisco IOS 15.3(1)T2 and earlier... |
| CVE-2013-6688 | 2013-11-16 | Directory traversal vulnerability in the license-upload interface in the Enterprise... |
| CVE-2013-6689 | 2013-11-16 | Cisco Unified Communications Manager (Unified CM) 9.1(1) and earlier allows... |
| CVE-2013-6798 | 2013-11-16 | BlackBerry Link before 1.2.1.31 on Windows and before 1.1.1 build... |
| CVE-2013-6800 | 2013-11-16 | An unspecified third-party database module for the Key Distribution Center... |
| CVE-2013-5193 | 2013-11-16 | The App Store component in Apple iOS before 7.0.4 does... |
| CVE-2013-6799 | 2013-11-16 | Apple Mac OS X 10.9 allows local users to cause... |
| CVE-2013-1741 | 2013-11-16 | Integer overflow in Mozilla Network Security Services (NSS) 3.15 before... |
| CVE-2013-4006 | 2013-11-16 | IBM WebSphere Application Server (WAS) Liberty Profile 8.5 before 8.5.5.1... |
| CVE-2013-5414 | 2013-11-16 | The migration functionality in IBM WebSphere Application Server (WAS) 7.0... |
| CVE-2013-5417 | 2013-11-16 | Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS)... |
| CVE-2013-5418 | 2013-11-16 | Cross-site scripting (XSS) vulnerability in the Administrative console in IBM... |
| CVE-2013-5605 | 2013-11-16 | Mozilla Network Security Services (NSS) 3.14 before 3.14.5 and 3.15... |
| CVE-2013-5606 | 2013-11-16 | The CERT_VerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services... |
| CVE-2013-6632 | 2013-11-16 | Integer overflow in Google Chrome before 31.0.1650.57 allows remote attackers... |
| CVE-2013-6802 | 2013-11-16 | Google Chrome before 31.0.1650.57 allows remote attackers to bypass intended... |
| CVE-2013-5972 | 2013-11-16 | VMware Workstation 9.x before 9.0.3 and VMware Player 5.x before... |
| CVE-2013-6801 | 2013-11-16 | Microsoft Word 2003 SP2 and SP3 on Windows XP SP3... |
| CVE-2013-4563 | 2013-11-19 | The udp6_ufo_fragment function in net/ipv6/udp_offload.c in the Linux kernel through... |
| CVE-2013-4579 | 2013-11-19 | The ath9k_htc_set_bssid_mask function in drivers/net/wireless/ath/ath9k/htc_drv_main.c in the Linux kernel through... |
| CVE-2013-4588 | 2013-11-19 | Multiple stack-based buffer overflows in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel... |
| CVE-2013-4591 | 2013-11-19 | Buffer overflow in the __nfs4_get_acl_uncached function in fs/nfs/nfs4proc.c in the... |
| CVE-2013-4592 | 2013-11-19 | Memory leak in the __kvm_set_memory_region function in virt/kvm/kvm_main.c in the... |
| CVE-2013-5215 | 2013-11-19 | Cross-site scripting (XSS) vulnerability in the web interface "WiFi scan"... |
| CVE-2013-5730 | 2013-11-19 | Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DSL-2740B Gateway... |
| CVE-2013-6074 | 2013-11-19 | Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite 7.2.x before... |
| CVE-2013-6282 | 2013-11-19 | The (1) get_user and (2) put_user API functions in the... |
| CVE-2013-3095 | 2013-11-19 | Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR865L router... |
| CVE-2013-4507 | 2013-11-19 | Cross-site scripting (XSS) vulnerability in CollectiveAccess Providence and Pawtucket before... |
| CVE-2013-5966 | 2013-11-19 | Cross-site scripting (XSS) vulnerability in ZK Framework before 5.0.13 allows... |
| CVE-2013-4386 | 2013-11-19 | Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3... |
| CVE-2013-4495 | 2013-11-19 | The send_the_mail function in server/svr_mail.c in Terascale Open-Source Resource and... |
| CVE-2013-4559 | 2013-11-19 | lighttpd before 1.4.33 does not check the return value of... |
| CVE-2013-4560 | 2013-11-19 | Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to... |
| CVE-2013-6814 | 2013-11-19 | The J2EE Engine in SAP NetWeaver 6.40, 7.02, and earlier... |
| CVE-2013-6815 | 2013-11-19 | The SHSTI_UPLOAD_XML function in the Application Server for ABAP (AS... |
| CVE-2013-6816 | 2013-11-19 | Multiple cross-site scripting (XSS) vulnerabilities in the (1) JavaDumpService and... |
| CVE-2013-6817 | 2013-11-19 | Heap-based buffer overflow in SAP Network Interface Router (SAProuter) 7.30... |
| CVE-2013-6818 | 2013-11-19 | SAP NetWeaver Logviewer 6.30, when running on Windows, allows remote... |
| CVE-2013-6819 | 2013-11-19 | Cross-site scripting (XSS) vulnerability in Performance Provider in SAP NetWeaver... |
| CVE-2013-6820 | 2013-11-19 | Unrestricted file upload vulnerability in the SAP NetWeaver Development Infrastructure... |
| CVE-2013-6821 | 2013-11-19 | Directory traversal vulnerability in the Exportability Check Service in SAP... |
| CVE-2013-6822 | 2013-11-19 | GRMGApp in SAP NetWeaver allows remote attackers to have unspecified... |
| CVE-2013-6823 | 2013-11-19 | GRMGApp in SAP NetWeaver allows remote attackers to bypass intended... |
| CVE-2013-4466 | 2013-11-19 | Buffer overflow in the dane_query_tlsa function in the DANE library... |
| CVE-2013-4487 | 2013-11-19 | Off-by-one error in the dane_raw_tlsa in the DANE library (libdane)... |
| CVE-2013-6826 | 2013-11-19 | cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet FortiAnalyzer before 5.0.5 does not properly validate... |
| CVE-2013-1417 | 2013-11-20 | do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos... |
| CVE-2013-5607 | 2013-11-20 | Integer overflow in the PL_ArenaAllocate function in Mozilla Netscape Portable... |
| CVE-2013-6827 | 2013-11-20 | Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows... |
| CVE-2013-6828 | 2013-11-20 | admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication... |
| CVE-2013-6829 | 2013-11-20 | admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary... |
| CVE-2013-6830 | 2013-11-20 | admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and... |
| CVE-2013-6831 | 2013-11-20 | PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms... |
| CVE-2013-5991 | 2013-11-21 | The displaySystemError function in html/handle_error.php in LOCKON EC-CUBE 2.11.0 through... |
| CVE-2013-5992 | 2013-11-21 | Cross-site scripting (XSS) vulnerability in the displaySystemError function in html/handle_error.php... |
| CVE-2013-5993 | 2013-11-21 | Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE 2.11.0 through... |
| CVE-2013-5994 | 2013-11-21 | data/class/pages/mypage/LC_Page_Mypage_DeliveryAddr.php in LOCKON EC-CUBE 2.11.2 through 2.13.0 allows remote attackers... |
| CVE-2013-5995 | 2013-11-21 | data/class/helper/SC_Helper_Address.php in the front-features implementation in LOCKON EC-CUBE 2.12.3 through... |
| CVE-2013-5996 | 2013-11-21 | Multiple cross-site scripting (XSS) vulnerabilities in shopping/payment.tpl components in LOCKON... |
| CVE-2013-6173 | 2013-11-21 | Multiple cross-site request forgery (CSRF) vulnerabilities in EMC Document Sciences... |
| CVE-2013-6174 | 2013-11-21 | Multiple open redirect vulnerabilities in xAdmin in EMC Document Sciences... |
| CVE-2013-6175 | 2013-11-21 | Multiple cross-site scripting (XSS) vulnerabilities in EMC Document Sciences xPression... |
| CVE-2013-6176 | 2013-11-21 | Multiple SQL injection vulnerabilities in EMC Document Sciences xPression 4.1... |
| CVE-2013-6177 | 2013-11-21 | Directory traversal vulnerability in EMC Document Sciences xPression 4.1 SP1... |
| CVE-2013-6832 | 2013-11-21 | The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver in... |
| CVE-2013-6833 | 2013-11-21 | The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in FreeBSD... |
| CVE-2013-6834 | 2013-11-21 | The ql_eioctl function in sys/dev/qlxgbe/ql_ioctl.c in the kernel in FreeBSD... |
| CVE-2013-2811 | 2013-11-22 | The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the... |
| CVE-2013-2823 | 2013-11-22 | The (1) Catapult DNP3 I/O driver before 7.2.0.60 and the... |
| CVE-2013-6692 | 2013-11-22 | Cisco IOS XE 3.8S(.2) and earlier does not properly use... |
| CVE-2013-6693 | 2013-11-22 | The MLDP implementation in Cisco IOS 15.3(3)S and earlier on... |
| CVE-2013-6852 | 2013-11-22 | Cross-site request forgery (CSRF) vulnerability in html/json.html on HP 2620... |
| CVE-2013-6342 | 2013-11-22 | Cross-site scripting (XSS) vulnerability in the Tweet Blender plugin before... |
| CVE-2013-3288 | 2013-11-22 | Cross-site scripting (XSS) vulnerability on the EMC RSA Data Protection... |
| CVE-2013-5997 | 2013-11-22 | Unspecified vulnerability in the SSH implementation on D-Link Japan DES-3800... |
| CVE-2013-5998 | 2013-11-22 | Unspecified vulnerability in the Web manager implementation on D-Link Japan... |
| CVE-2013-5999 | 2013-11-22 | Kingsoft KDrive Personal before 1.21.0.1880 on Windows does not verify... |
| CVE-2013-6312 | 2013-11-22 | Unspecified vulnerability in IBM Rational Service Tester 8.3.x and 8.5.x... |
| CVE-2013-6694 | 2013-11-22 | The IPSec implementation in Cisco IOS allows remote attackers to... |
| CVE-2013-6698 | 2013-11-22 | The web interface on Cisco Wireless LAN Controller (WLC) devices... |
| CVE-2013-6699 | 2013-11-22 | The Control and Provisioning of Wireless Access Points (CAPWAP) protocol... |
| CVE-2013-4407 | 2013-11-23 | HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22,... |
| CVE-2010-3443 | 2013-11-23 | ctcphandler.cpp in Quassel before 0.6.3 and 0.7.x before 0.7.1 allows... |
| CVE-2013-0281 | 2013-11-23 | Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or... |
| CVE-2013-1813 | 2013-11-23 | util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent... |
| CVE-2013-4473 | 2013-11-23 | Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in... |
| CVE-2013-4474 | 2013-11-23 | Format string vulnerability in the extractPages function in utils/pdfseparate.cc in... |
| CVE-2013-4481 | 2013-11-23 | Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions... |
| CVE-2013-4482 | 2013-11-23 | Untrusted search path vulnerability in python-paste-script (aka paster) in Luci... |
| CVE-2013-4485 | 2013-11-23 | 389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before... |
| CVE-2013-4545 | 2013-11-23 | cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL,... |
| CVE-2013-4589 | 2013-11-23 | The ExportAlphaQuantumType function in export.c in GraphicsMagick before 1.3.18 might... |
| CVE-2013-6375 | 2013-11-23 | Xen 4.2.x and 4.3.x, when using Intel VT-d for PCI... |