CVE List - 2014 / February
Showing 201 - 300 of 442 CVEs for February 2014 (Page 3 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-0724 | 2014-02-13 | The bulk administration interface in Cisco Unified Communications Manager (UCM)... |
| CVE-2014-0725 | 2014-02-13 | Cisco Unified Communications Manager (UCM) does not require authentication for... |
| CVE-2014-0726 | 2014-02-13 | SQL injection vulnerability in the IP Manager Assistant (IPMA) interface... |
| CVE-2014-0727 | 2014-02-13 | SQL injection vulnerability in the CallManager Interactive Voice Response (CMIVR)... |
| CVE-2014-0728 | 2014-02-13 | SQL injection vulnerability in the Java database interface in Cisco... |
| CVE-2014-0729 | 2014-02-13 | SQL injection vulnerability in the Enterprise Mobility Application (EMApp) interface... |
| CVE-2013-2829 | 2014-02-13 | MatrikonOPC SCADA DNP3 OPC Server 1.2.2.0 and earlier allows remote... |
| CVE-2013-3978 | 2014-02-13 | The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and... |
| CVE-2013-3983 | 2014-02-13 | The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and... |
| CVE-2013-3988 | 2014-02-13 | The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and... |
| CVE-2013-6742 | 2014-02-13 | The Meeting Server in IBM Sametime 8.5.2 through 8.5.2.1 and... |
| CVE-2013-6743 | 2014-02-13 | Cross-site scripting (XSS) vulnerability in the Meeting Server in IBM... |
| CVE-2014-1219 | 2014-02-13 | CA 2E Web Option r8.1.2 accepts a predictable substring of... |
| CVE-2014-1253 | 2014-02-13 | AppleMNT.sys in Apple Boot Camp 5 before 5.1 allows local... |
| CVE-2013-5014 | 2014-02-14 | The management console in Symantec Endpoint Protection Manager (SEPM) 11.0... |
| CVE-2013-5015 | 2014-02-14 | SQL injection vulnerability in the management console in Symantec Endpoint... |
| CVE-2013-5400 | 2014-02-14 | An unspecified servlet in IBM Platform Symphony Developer Edition (DE)... |
| CVE-2013-6722 | 2014-02-14 | Unrestricted file upload vulnerability in the Registration/Edit My Profile portlet... |
| CVE-2013-6728 | 2014-02-14 | The charting component in IBM WebSphere Dashboard Framework (WDF) 6.1.5... |
| CVE-2014-0855 | 2014-02-14 | Multiple cross-site scripting (XSS) vulnerabilities in IBM Connections Portlets 4.x... |
| CVE-2014-1467 | 2014-02-14 | BlackBerry Enterprise Service 10 before 10.2.1, Universal Device Service 6,... |
| CVE-2014-1680 | 2014-02-14 | Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows... |
| CVE-2012-0052 | 2014-02-14 | Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x... |
| CVE-2012-0062 | 2014-02-14 | Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x... |
| CVE-2012-1100 | 2014-02-14 | Red Hat JBoss Operations Network (JON) 3.0.x before 3.0.1, 2.4.2,... |
| CVE-2012-6149 | 2014-02-14 | Multiple cross-site scripting (XSS) vulnerabilities in systems/sdc/notes.jsp in Spacewalk and... |
| CVE-2013-1871 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in account/EditAddress.do in Spacewalk and Red... |
| CVE-2013-4415 | 2014-02-14 | Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk and Red Hat... |
| CVE-2013-6440 | 2014-02-14 | The (1) BasicParserPool, (2) StaticBasicParserPool, (3) XML Decrypter, and (4)... |
| CVE-2013-6441 | 2014-02-14 | The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write... |
| CVE-2013-6492 | 2014-02-14 | The Piranha Configuration Tool in Piranha 0.8.6 does not properly... |
| CVE-2014-0018 | 2014-02-14 | Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss... |
| CVE-2014-0032 | 2014-02-14 | The get_resource function in repos.c in the mod_dav_svn module in... |
| CVE-2014-1921 | 2014-02-14 | parcimonie before 0.8.1, when using a large keyring, sleeps for... |
| CVE-2014-1948 | 2014-02-14 | OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1... |
| CVE-2014-1950 | 2014-02-14 | Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through... |
| CVE-2014-1960 | 2014-02-14 | The Solution Manager in SAP NetWeaver does not properly restrict... |
| CVE-2014-1961 | 2014-02-14 | Unspecified vulnerability in the Portal WebDynPro in SAP NetWeaver allows... |
| CVE-2014-1962 | 2014-02-14 | Gwsync in SAP CRM 7.02 EHP 2 allows remote attackers... |
| CVE-2014-1963 | 2014-02-14 | Unspecified vulnerability in Message Server in SAP NetWeaver 7.20 allows... |
| CVE-2014-1964 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in the Integration Repository in the... |
| CVE-2014-1965 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in ISpeakAdapter in the Integration Repository... |
| CVE-2014-0332 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in mainPage in Dell SonicWALL GMS... |
| CVE-2014-0813 | 2014-02-14 | Cross-site request forgery (CSRF) vulnerability in phpMyFAQ before 2.8.6 allows... |
| CVE-2014-0814 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.8.6 allows remote... |
| CVE-2014-0322 | 2014-02-14 | Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows... |
| CVE-2013-4499 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in the Bean module 7.x-1.x before... |
| CVE-2013-5351 | 2014-02-14 | Heap-based buffer overflow in IrfanView before 4.37 allows remote attackers... |
| CVE-2013-7032 | 2014-02-14 | Multiple cross-site scripting (XSS) vulnerabilities in the web based operator... |
| CVE-2013-7326 | 2014-02-14 | Cross-site scripting (XSS) vulnerability in vTiger CRM 5.4.0 allows remote... |
| CVE-2013-0346 | 2014-02-15 | Apache Tomcat 7.x uses world-readable permissions for the log directory... |
| CVE-2011-1831 | 2014-02-15 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint... |
| CVE-2011-1832 | 2014-02-15 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint... |
| CVE-2011-1834 | 2014-02-15 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the... |
| CVE-2011-1835 | 2014-02-15 | The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before... |
| CVE-2011-1836 | 2014-02-15 | utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory... |
| CVE-2011-1837 | 2014-02-15 | The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows... |
| CVE-2011-2500 | 2014-02-15 | The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does... |
| CVE-2011-2909 | 2014-02-15 | The do_devinfo_ioctl function in drivers/staging/comedi/comedi_fops.c in the Linux kernel before... |
| CVE-2011-3588 | 2014-02-15 | The SSH configuration in the Red Hat mkdumprd script for... |
| CVE-2011-3589 | 2014-02-15 | The Red Hat mkdumprd script for kexec-tools, as distributed in... |
| CVE-2011-3590 | 2014-02-15 | The Red Hat mkdumprd script for kexec-tools, as distributed in... |
| CVE-2012-1088 | 2014-02-15 | iproute2 before 3.3.0 allows local users to overwrite arbitrary files... |
| CVE-2012-1171 | 2014-02-15 | The libxml RSHUTDOWN function in PHP 5.x allows remote attackers... |
| CVE-2012-2663 | 2014-02-15 | extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN... |
| CVE-2012-6108 | 2014-02-15 | HP Linux Imaging and Printing (HPLIP) before 3.13.2 uses world-writable... |
| CVE-2013-4737 | 2014-02-15 | The CONFIG_STRICT_MEMORY_RWX implementation for the Linux kernel 3.x, as used... |
| CVE-2013-6166 | 2014-02-15 | Google Chrome before 29 sends HTTP Cookie headers without first... |
| CVE-2013-6167 | 2014-02-15 | Mozilla Firefox through 27 sends HTTP Cookie headers without first... |
| CVE-2012-6638 | 2014-02-15 | The tcp_rcv_state_process function in net/ipv4/tcp_input.c in the Linux kernel before... |
| CVE-2011-0528 | 2014-02-17 | Puppet 2.6.0 through 2.6.3 does not properly restrict access to... |
| CVE-2011-3601 | 2014-02-17 | Buffer overflow in the process_ra function in the router advertisement... |
| CVE-2011-3604 | 2014-02-17 | The process_ra function in the router advertisement daemon (radvd) before... |
| CVE-2011-3605 | 2014-02-17 | The process_rs function in the router advertisement daemon (radvd) before... |
| CVE-2011-4083 | 2014-02-17 | The sosreport utility in the Red Hat sos package before... |
| CVE-2012-0270 | 2014-02-17 | Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote... |
| CVE-2013-1069 | 2014-02-17 | Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 uses... |
| CVE-2013-1070 | 2014-02-17 | Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal... |
| CVE-2013-6674 | 2014-02-17 | Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8,... |
| CVE-2014-2018 | 2014-02-17 | Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8,... |
| CVE-2014-0625 | 2014-02-18 | The SSLSocket implementation in the (1) JSAFE and (2) JSSE... |
| CVE-2014-0626 | 2014-02-18 | The (1) JSAFE and (2) JSSE APIs in EMC RSA... |
| CVE-2014-0627 | 2014-02-18 | The SSLEngine API implementation in EMC RSA BSAFE SSL-J 5.x... |
| CVE-2013-7226 | 2014-02-18 | Integer overflow in the gdImageCrop function in ext/gd/gd.c in PHP... |
| CVE-2013-7327 | 2014-02-18 | The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9... |
| CVE-2013-7328 | 2014-02-18 | Multiple integer signedness errors in the gdImageCrop function in ext/gd/gd.c... |
| CVE-2014-1861 | 2014-02-18 | The client in Jetro COCKPIT Secure Browsing (JCSB) 4.3.1 and... |
| CVE-2014-1903 | 2014-02-18 | admin/libraries/view.functions.php in FreePBX 2.9 before 2.9.0.14, 2.10 before 2.10.1.15, 2.11... |
| CVE-2014-2019 | 2014-02-18 | The iCloud subsystem in Apple iOS before 7.1 allows physically... |
| CVE-2014-2020 | 2014-02-18 | ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data... |
| CVE-2013-6396 | 2014-02-18 | The OpenStack Python client library for Swift (python-swiftclient) 1.0 through... |
| CVE-2014-1943 | 2014-02-18 | Fine Free file before 5.17 allows context-dependent attackers to cause... |
| CVE-2014-0732 | 2014-02-20 | The Real Time Monitoring Tool (RTMT) web application in Cisco... |
| CVE-2014-0734 | 2014-02-20 | SQL injection vulnerability in the Certificate Authority Proxy Function (CAPF)... |
| CVE-2014-0735 | 2014-02-20 | Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA)... |
| CVE-2014-0736 | 2014-02-20 | Cross-site request forgery (CSRF) vulnerability in the Call Detail Records... |
| CVE-2014-0080 | 2014-02-20 | SQL injection vulnerability in activerecord/lib/active_record/connection_adapters/postgresql/cast.rb in Active Record in Ruby... |
| CVE-2014-0081 | 2014-02-20 | Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb in Ruby on... |
| CVE-2014-0082 | 2014-02-20 | actionpack/lib/action_view/template/text.rb in Action View in Ruby on Rails 3.x before... |
| CVE-2014-0733 | 2014-02-20 | The Enterprise License Manager (ELM) component in Cisco Unified Communications... |