CVE List - 2014 / October
Showing 101 - 200 of 1413 CVEs for October 2014 (Page 2 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-6914 | 2014-10-04 | The Houcine El Jasmi (aka com.devkhr31.houcineeljasmi) application 1.0 for Android... |
| CVE-2014-6916 | 2014-10-04 | The mama.cn (aka cn.ziipin.mama.ui) application 1.02 for Android does not... |
| CVE-2014-6917 | 2014-10-04 | The www.knote.kr Smart (aka kr.or.knote.android) application 1.0.3 for Android does... |
| CVE-2014-6918 | 2014-10-04 | The Bikers Underground (aka hr.ap.n66871172) application 4.5.10 for Android does... |
| CVE-2014-6919 | 2014-10-04 | The Metalcasting Newsstand (aka air.com.yudu.ReaderAIR3017071) application 3.12.0 for Android does... |
| CVE-2014-6920 | 2014-10-04 | The Canal 44 (aka com.canal.canal44) application 1.0 for Android does... |
| CVE-2014-6921 | 2014-10-04 | The Buckhorn Grill (aka com.orderingapps.buckhorn) application 2.8 for Android does... |
| CVE-2014-6922 | 2014-10-04 | The KFAI Community Radio (aka com.skyblue.pra.kfai) application 2.0.4 for Android... |
| CVE-2014-6923 | 2014-10-04 | The Dubrovnik Guided Walking Tours (aka com.mytoursapp.android.app351) application 1.3.2 for... |
| CVE-2014-6924 | 2014-10-04 | The Metro News (aka com.netpia.ha.metro) application 1.6.5 for Android does... |
| CVE-2014-6925 | 2014-10-04 | The Steyr Forum (aka com.tapatalk.steyrclubcomvb) application 3.9.12 for Android does... |
| CVE-2014-6926 | 2014-10-04 | The Allt om Brollop (aka com.paperton.wl.alltombrollop) application 1.53 for Android... |
| CVE-2014-6927 | 2014-10-04 | The Myanmar Housing : mmHome (aka com.mmhome3) application 1.3 for... |
| CVE-2014-6928 | 2014-10-04 | The Rastreador de Celulares (aka com.mobincube.android.sc_9KTH8) application 5.0.0 for Android... |
| CVE-2014-6929 | 2014-10-04 | The AIHce 2014 (aka com.coreapps.android.followme.aihce2014) application 6.1.0.0 for Android does... |
| CVE-2014-6930 | 2014-10-04 | The Abram Radio Groove! (aka com.nobexinc.wls_79226887.rc) application 3.2.3 for Android... |
| CVE-2014-6931 | 2014-10-04 | The Treves Dance Center (aka com.myapphone.android.myapptrvesdancecenter) application 1.0 for Android... |
| CVE-2014-6932 | 2014-10-04 | The All Navalny (aka com.all.navalny) application 1.10 for Android does... |
| CVE-2014-6933 | 2014-10-04 | The Toraware Takojyou (aka ltd.pte.wavea.torawaretakojyou) application 1.3 for Android does... |
| CVE-2014-7277 | 2014-10-04 | Cross-site scripting (XSS) vulnerability in the login page on the... |
| CVE-2014-7278 | 2014-10-04 | The login page on the ZyXEL SBG-3300 Security Gateway with... |
| CVE-2014-2643 | 2014-10-05 | Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.4... |
| CVE-2014-2645 | 2014-10-05 | HP Systems Insight Manager (SIM) before 7.4 allows remote attackers... |
| CVE-2014-3396 | 2014-10-05 | Cisco IOS XR on ASR 9000 devices does not properly... |
| CVE-2014-3398 | 2014-10-05 | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA)... |
| CVE-2014-3400 | 2014-10-05 | Cisco WebEx Meetings Server allows remote authenticated users to obtain... |
| CVE-2014-7861 | 2014-10-05 | The IOHIDSecurePromptClient function in Apple OS X does not properly... |
| CVE-2013-2645 | 2014-10-06 | Multiple cross-site request forgery (CSRF) vulnerabilities on the TP-LINK WR1043N... |
| CVE-2014-2644 | 2014-10-06 | Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM)... |
| CVE-2013-6496 | 2014-10-06 | Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive... |
| CVE-2014-0074 | 2014-10-06 | Apache Shiro 1.x before 1.2.3, when using an LDAP server... |
| CVE-2014-0140 | 2014-10-06 | Red Hat CloudForms 3.1 Management Engine (CFME) before 5.3 allows... |
| CVE-2014-0168 | 2014-10-06 | Cross-site request forgery (CSRF) vulnerability in Jolokia before 1.2.1 allows... |
| CVE-2014-0994 | 2014-10-06 | Heap-based buffer overflow in the ReadDIB function in the Vcl.Graphics.TPicture.Bitmap... |
| CVE-2014-3521 | 2014-10-06 | The component in (1) /luci/homebase and (2) /luci/cluster menu in... |
| CVE-2014-3608 | 2014-10-06 | The VMWare driver in OpenStack Compute (Nova) before 2014.1.3 allows... |
| CVE-2014-3633 | 2014-10-06 | The qemuDomainGetBlockIoTune function in qemu/qemu_driver.c in libvirt before 1.2.9, when... |
| CVE-2014-3642 | 2014-10-06 | vmdb/app/controllers/application_controller/performance.rb in Red Hat CloudForms 3.1 Management Engine (CFME) before... |
| CVE-2014-3657 | 2014-10-06 | The virDomainListPopulate function in conf/domain_conf.c in libvirt before 1.2.9 does... |
| CVE-2014-5389 | 2014-10-06 | SQL injection vulnerability in content-audit-schedule.php in the Content Audit plugin... |
| CVE-2014-6054 | 2014-10-06 | The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier... |
| CVE-2014-7869 | 2014-10-06 | Cross-site scripting (XSS) vulnerability in the configuration UI in the... |
| CVE-2014-7870 | 2014-10-06 | Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x... |
| CVE-2013-1436 | 2014-10-06 | The XMonad.Hooks.DynamicLog module in xmonad-contrib before 0.11.2 allows remote attackers... |
| CVE-2013-7329 | 2014-10-06 | The CGI::Application module before 4.50_50 and 4.50_51 for Perl, when... |
| CVE-2014-0397 | 2014-10-06 | Multiple unspecified vulnerabilities in libXtsol in Oracle Solaris 10 and... |
| CVE-2014-1224 | 2014-10-06 | Incomplete blacklist vulnerability in the user registration feature in rexx... |
| CVE-2014-1868 | 2014-10-06 | Restlet Framework 2.1.x before 2.1.7 and 2.x.x before 2.2 RC1,... |
| CVE-2014-1875 | 2014-10-06 | The Capture::Tiny module before 0.24 for Perl allows local users... |
| CVE-2014-2044 | 2014-10-06 | Incomplete blacklist vulnerability in ajax/upload.php in ownCloud before 5.0, when... |
| CVE-2014-4043 | 2014-10-06 | The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy... |
| CVE-2014-4510 | 2014-10-06 | Cross-site scripting (XSS) vulnerability in job.cc in apt-cacher-ng 0.7.26 allows... |
| CVE-2014-6389 | 2014-10-06 | backup.php in PHPCompta/NOALYSS before 6.7.2 allows remote attackers to execute... |
| CVE-2014-6409 | 2014-10-06 | Cross-site request forgery (CSRF) vulnerability in M/Monit 3.3.2 and earlier... |
| CVE-2014-6607 | 2014-10-06 | M/Monit 3.3.2 and earlier does not verify the original password... |
| CVE-2014-0940 | 2014-10-07 | Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Service Automation... |
| CVE-2014-3399 | 2014-10-07 | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA)... |
| CVE-2014-4802 | 2014-10-07 | The Saved Search Admin component in the Process Admin Console... |
| CVE-2014-4868 | 2014-10-07 | The management console on the Brocade Vyatta 5400 vRouter 6.4R(x),... |
| CVE-2014-4869 | 2014-10-07 | The Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows... |
| CVE-2014-4870 | 2014-10-07 | /opt/vyatta/bin/sudo-users/vyatta-clear-dhcp-lease.pl on the Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and... |
| CVE-2014-4871 | 2014-10-07 | Cross-site scripting (XSS) vulnerability in wlsecurity.html on NetCommWireless NB604N routers... |
| CVE-2014-6287 | 2014-10-07 | The findMacroMarker function in parserLib.pas in Rejetto HTTP File Server... |
| CVE-2014-3565 | 2014-10-07 | snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option... |
| CVE-2014-3632 | 2014-10-07 | The default configuration in a sudoers file in the Red... |
| CVE-2014-5501 | 2014-10-07 | Stack-based buffer overflow in the diagnose service in the Sophos... |
| CVE-2014-5502 | 2014-10-07 | The Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows... |
| CVE-2014-5503 | 2014-10-07 | SQL injection vulnerability in the Guest Login Portal in the... |
| CVE-2014-6433 | 2014-10-07 | gpExec in GoPro HERO 3+ allows remote attackers to execute... |
| CVE-2014-6434 | 2014-10-07 | gpExec in GoPro HERO 3+ allows remote attackers to execute... |
| CVE-2014-6603 | 2014-10-07 | The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before... |
| CVE-2014-7189 | 2014-10-07 | crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled,... |
| CVE-2014-7204 | 2014-10-07 | jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause... |
| CVE-2014-7235 | 2014-10-07 | htdocs_ari/includes/login.php in the ARI Framework module/Asterisk Recording Interface (ARI) in... |
| CVE-2014-7295 | 2014-10-07 | The (1) Special:Preferences and (2) Special:UserLogin pages in MediaWiki before... |
| CVE-2014-7273 | 2014-10-08 | The IMAP-over-SSL implementation in getmail 4.0.0 through 4.43.0 does not... |
| CVE-2014-7274 | 2014-10-08 | The IMAP-over-SSL implementation in getmail 4.44.0 does not verify that... |
| CVE-2014-7275 | 2014-10-08 | The POP3-over-SSL implementation in getmail 4.0.0 through 4.44.0 does not... |
| CVE-2014-7299 | 2014-10-08 | Unspecified vulnerability in administrative interfaces in ArubaOS 6.3.1.11, 6.3.1.11-FIPS, 6.4.2.1,... |
| CVE-2014-3187 | 2014-10-08 | Google Chrome before 37.0.2062.60 and 38.x before 38.0.2125.59 on iOS... |
| CVE-2014-3188 | 2014-10-08 | Google Chrome before 38.0.2125.101 and Chrome OS before 38.0.2125.101 do... |
| CVE-2014-3189 | 2014-10-08 | The chrome_pdf::CopyImage function in pdf/draw_utils.cc in the PDFium component in... |
| CVE-2014-3190 | 2014-10-08 | Use-after-free vulnerability in the Event::currentTarget function in core/events/Event.cpp in Blink,... |
| CVE-2014-3191 | 2014-10-08 | Use-after-free vulnerability in Blink, as used in Google Chrome before... |
| CVE-2014-3192 | 2014-10-08 | Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the... |
| CVE-2014-3193 | 2014-10-08 | The SessionService::GetLastSession function in browser/sessions/session_service.cc in Google Chrome before 38.0.2125.101... |
| CVE-2014-3194 | 2014-10-08 | Use-after-free vulnerability in the Web Workers implementation in Google Chrome... |
| CVE-2014-3195 | 2014-10-08 | Google V8, as used in Google Chrome before 38.0.2125.101, does... |
| CVE-2014-3196 | 2014-10-08 | base/memory/shared_memory_win.cc in Google Chrome before 38.0.2125.101 on Windows does not... |
| CVE-2014-3197 | 2014-10-08 | The NavigationScheduler::schedulePageBlock function in core/loader/NavigationScheduler.cpp in Blink, as used in... |
| CVE-2014-3198 | 2014-10-08 | The Instance::HandleInputEvent function in pdf/instance.cc in the PDFium component in... |
| CVE-2014-3199 | 2014-10-08 | The wrap function in bindings/core/v8/custom/V8EventCustom.cpp in the V8 bindings in... |
| CVE-2014-3200 | 2014-10-08 | Multiple unspecified vulnerabilities in Google Chrome before 38.0.2125.101 allow attackers... |
| CVE-2014-7967 | 2014-10-08 | Multiple unspecified vulnerabilities in Google V8 before 3.28.71.15, as used... |
| CVE-2014-5308 | 2014-10-08 | Multiple SQL injection vulnerabilities in TestLink 1.9.11 allow remote authenticated... |
| CVE-2014-6394 | 2014-10-08 | visionmedia send before 0.8.4 for Node.js uses a partial comparison... |
| CVE-2014-7185 | 2014-10-08 | Integer overflow in bufferobject.c in Python before 2.7.8 allows context-dependent... |
| CVE-2014-7205 | 2014-10-08 | Eval injection vulnerability in the internals.batch function in lib/batch.js in... |
| CVE-2014-7978 | 2014-10-08 | Cross-site scripting (XSS) vulnerability in the BlueMasters theme 7.x-2.x before... |
| CVE-2014-7979 | 2014-10-08 | Cross-site scripting (XSS) vulnerability in the SimpleCorp theme 7.x-1.x before... |