VULNMAP - Security Vulnerabilities

CVE List - 2014 / December

Showing 401 - 500 of 614 CVEs for December 2014 (Page 5 of 7)

CVE ID Date Title
CVE-2014-6086 2014-12-18 IBM Security Access Manager for Mobile 8.x before 8.0.1 and...
CVE-2014-6087 2014-12-18 IBM Security Access Manager for Mobile 8.x before 8.0.1 and...
CVE-2014-6088 2014-12-18 IBM Security Access Manager for Mobile 8.x before 8.0.1 and...
CVE-2014-6089 2014-12-18 IBM Security Access Manager for Mobile 8.x before 8.0.1 and...
CVE-2014-6164 2014-12-18 IBM WebSphere Application Server 8.0.x before 8.0.0.10 and 8.5.x before...
CVE-2014-6166 2014-12-18 The Communications Enabled Applications (CEA) service in IBM WebSphere Application...
CVE-2014-6167 2014-12-18 Cross-site scripting (XSS) vulnerability in the URL rewriting feature in...
CVE-2014-6174 2014-12-18 IBM WebSphere Application Server 7.x before 7.0.0.37, 8.0.x before 8.0.0.10,...
CVE-2014-8012 2014-12-18 Cross-site scripting (XSS) vulnerability in the WebVPN Portal Login page...
CVE-2014-8014 2014-12-18 Cisco IOS XR allows remote attackers to cause a denial...
CVE-2014-8890 2014-12-18 IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows...
CVE-2014-8901 2014-12-18 IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through...
CVE-2014-4801 2014-12-19 Cross-site scripting (XSS) vulnerability in IBM Rational Quality Manager 2.x...
CVE-2014-6171 2014-12-19 Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through...
CVE-2014-6173 2014-12-19 Cross-site scripting (XSS) vulnerability in the Process Inspector in IBM...
CVE-2014-6193 2014-12-19 IBM WebSphere Portal 8.0.0 through 8.0.0.1 CF14 and 8.5.0 before...
CVE-2014-8016 2014-12-19 The Cisco IronPort Email Security Appliance (ESA) allows remote attackers...
CVE-2014-8902 2014-12-19 Cross-site scripting (XSS) vulnerability in the Blog Portlet in IBM...
CVE-2014-7241 2014-12-19 The TSUTAYA application 5.3 and earlier for Android allows remote...
CVE-2014-7249 2014-12-19 Buffer overflow on the Allied Telesis AR440S, AR441S, AR442S, AR745,...
CVE-2014-7267 2014-12-19 Cross-site scripting (XSS) vulnerability in the output-page generator in the...
CVE-2014-7268 2014-12-19 Cross-site scripting (XSS) vulnerability in the data-export feature in the...
CVE-2014-8272 2014-12-19 The IPMI 1.5 functionality in Dell iDRAC6 modular before 3.65,...
CVE-2013-4440 2014-12-19 Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords,...
CVE-2013-4442 2014-12-19 Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated...
CVE-2014-2026 2014-12-19 Cross-site scripting (XSS) vulnerability in the search functionality in United...
CVE-2014-2716 2014-12-19 Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time...
CVE-2014-6395 2014-12-19 Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in...
CVE-2014-6396 2014-12-19 The dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows...
CVE-2014-7208 2014-12-19 GParted before 0.15.0 allows local users to execute arbitrary commands...
CVE-2014-8135 2014-12-19 The storageVolUpload function in storage/storage_driver.c in libvirt before 1.2.11 does...
CVE-2014-8136 2014-12-19 The (1) qemuDomainMigratePerform and (2) qemuDomainMigrateFinish2 functions in qemu/qemu_driver.c in...
CVE-2014-8724 2014-12-19 Cross-site scripting (XSS) vulnerability in the W3 Total Cache plugin...
CVE-2014-8793 2014-12-19 Cross-site scripting (XSS) vulnerability in lib/max/Admin/UI/Field/PublisherIdField.php in Revive Adserver before...
CVE-2014-8875 2014-12-19 The XML_RPC_cd function in lib/pear/XML/RPC.php in Revive Adserver before 3.0.6...
CVE-2014-9135 2014-12-19 The PackageInstaller module in Huawei P7-L10 smartphones before V100R001C00B136 allows...
CVE-2014-9185 2014-12-19 Static code injection vulnerability in install.php in Morfy CMS 1.05...
CVE-2014-9258 2014-12-19 SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows...
CVE-2014-9324 2014-12-19 The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x...
CVE-2014-9335 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the DandyID Services...
CVE-2014-9336 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the iTwitter plugin...
CVE-2014-9337 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the Mikiurl Wordpress...
CVE-2014-9338 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the O2Tweet plugin...
CVE-2014-9339 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the SPNbabble plugin...
CVE-2014-9340 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the wpCommentTwit plugin...
CVE-2014-9341 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in the yURL ReTwitt...
CVE-2014-9355 2014-12-19 Puppet Enterprise before 3.7.1 allows remote authenticated users to obtain...
CVE-2014-9368 2014-12-19 Cross-site request forgery (CSRF) vulnerability in the twitterDash plugin 2.1...
CVE-2014-9376 2014-12-19 Integer underflow in Ettercap 0.8.1 allows remote attackers to cause...
CVE-2014-9377 2014-12-19 Heap-based buffer overflow in the nbns_spoof function in plug-ins/nbns_spoof/nbns_spoof.c in...
CVE-2014-9378 2014-12-19 Ettercap 0.8.1 does not validate certain return values, which allows...
CVE-2014-9379 2014-12-19 The radius_get_attribute function in dissectors/ec_radius.c in Ettercap 0.8.1 performs an...
CVE-2014-9380 2014-12-19 The dissector_cvs function in dissectors/ec_cvs.c in Ettercap 0.8.1 allows remote...
CVE-2014-9381 2014-12-19 Integer signedness error in the dissector_cvs function in dissectors/ec_cvs.c in...
CVE-2014-9403 2014-12-19 The CWebAdminMod::ChanPage function in modules/webadmin.cpp in ZNC before 1.4 allows...
CVE-2014-9408 2014-12-19 Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time...
CVE-2014-9407 2014-12-19 Multiple cross-site request forgery (CSRF) vulnerabilities in Revive Adserver before...
CVE-2014-5212 2014-12-19 Cross-site scripting (XSS) vulnerability in nds/search/data in iMonitor in Novell...
CVE-2014-5213 2014-12-19 nds/files/opt/novell/eDirectory/lib64/ndsimon/public/images in iMonitor in Novell eDirectory before 8.8 SP8 Patch...
CVE-2013-7401 2014-12-19 The parse_request function in request.c in c-icap 0.2.x allows remote...
CVE-2014-3410 2014-12-20 The syslog-management subsystem in Cisco Adaptive Security Appliance (ASA) Software...
CVE-2014-8007 2014-12-20 Cisco Prime Infrastructure allows remote authenticated users to read device-discovery...
CVE-2014-8019 2014-12-20 Directory traversal vulnerability in Cisco Enterprise Content Delivery System (ECDS)...
CVE-2014-9193 2014-12-20 Innominate mGuard with firmware before 7.6.6 and 8.x before 8.1.4...
CVE-2014-9293 2014-12-20 The config_auth function in ntpd in NTP before 4.2.7p11, when...
CVE-2014-9294 2014-12-20 util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak...
CVE-2014-9295 2014-12-20 Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8...
CVE-2014-9296 2014-12-20 The receive function in ntp_proto.c in ntpd in NTP before...
CVE-2014-8142 2014-12-20 Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP...
CVE-2014-7286 2014-12-22 Buffer overflow in AClient in Symantec Deployment Solution 6.9 and...
CVE-2014-8896 2014-12-22 The Collaboration Server in IBM InfoSphere Master Data Management Server...
CVE-2014-8897 2014-12-22 Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM...
CVE-2014-8898 2014-12-22 Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM...
CVE-2014-8899 2014-12-22 Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM...
CVE-2014-5208 2014-12-22 BKBCopyD.exe in the Batch Management Packages in Yokogawa CENTUM CS...
CVE-2014-8015 2014-12-22 The Sponsor Portal in Cisco Identity Services Engine (ISE) allows...
CVE-2014-8017 2014-12-22 The periodic-backup feature in Cisco Identity Services Engine (ISE) allows...
CVE-2014-8018 2014-12-22 Multiple cross-site scripting (XSS) vulnerabilities in Business Voice Services Manager...
CVE-2014-8992 2014-12-22 Cross-site scripting (XSS) vulnerability in manager/assets/fileapi/FileAPI.flash.image.swf in MODX Revolution 2.3.2-pl...
CVE-2014-6119 2014-12-23 IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6...
CVE-2014-6121 2014-12-23 Cross-site scripting (XSS) vulnerability in IBM Security AppScan Enterprise 8.5...
CVE-2014-6122 2014-12-23 IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6...
CVE-2014-6135 2014-12-23 IBM Security AppScan Enterprise 8.5 before 8.5 IFix 002, 8.6...
CVE-2014-8024 2014-12-23 The API in the Guest Server in Cisco Jabber, when...
CVE-2014-8025 2014-12-23 The API in the Guest Server in Cisco Jabber, when...
CVE-2014-8026 2014-12-23 Cross-site scripting (XSS) vulnerability in the Guest Server in Cisco...
CVE-2014-5214 2014-12-23 nps/servlet/webacc in iManager in the Administration Console server in NetIQ...
CVE-2014-5215 2014-12-23 NetIQ Access Manager (NAM) 4.x before 4.0.1 HF3 allows remote...
CVE-2014-5216 2014-12-23 Multiple cross-site scripting (XSS) vulnerabilities in NetIQ Access Manager (NAM)...
CVE-2014-5217 2014-12-23 Cross-site request forgery (CSRF) vulnerability in nps/servlet/webacc in the Administration...
CVE-2014-9115 2014-12-23 SQL injection vulnerability in the rate_picture function in include/functions_rate.inc.php in...
CVE-2014-9412 2014-12-23 Multiple cross-site scripting (XSS) vulnerabilities in NetIQ Access Manager (NAM)...
CVE-2014-7993 2014-12-24 Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24...
CVE-2014-7994 2014-12-24 Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24...
CVE-2014-7995 2014-12-24 Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24...
CVE-2014-7999 2014-12-24 Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24...
CVE-2014-3569 2014-12-24 The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and...
CVE-2014-6132 2014-12-24 Cross-site scripting (XSS) vulnerability in the Web UI in IBM...
CVE-2014-6153 2014-12-24 The Web UI in IBM WebSphere Service Registry and Repository...
CVE-2014-6155 2014-12-24 Multiple directory traversal vulnerabilities in the ServiceRegistry UI in IBM...