CVE List - 2014 / April
Showing 401 - 500 of 665 CVEs for April 2014 (Page 5 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-0036 | 2014-04-17 | The rbovirt gem before 0.0.24 for Ruby uses the rest-client... |
| CVE-2014-0054 | 2014-04-17 | The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8... |
| CVE-2014-0071 | 2014-04-17 | PackStack in Red Hat OpenStack 4.0 does not enforce the... |
| CVE-2014-0085 | 2014-04-17 | JBoss Fuse did not enable encrypted passwords by default in... |
| CVE-2014-0111 | 2014-04-17 | Apache Syncope 1.0.0 before 1.0.9 and 1.1.0 before 1.1.7 allows... |
| CVE-2014-0984 | 2014-04-17 | The passwordCheck function in SAP Router 721 patch 117, 720... |
| CVE-2014-1932 | 2014-04-17 | The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in... |
| CVE-2014-1933 | 2014-04-17 | The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python Image... |
| CVE-2014-2310 | 2014-04-17 | The AgentX subagent in Net-SNMP before 5.4.4 allows remote attackers... |
| CVE-2014-2469 | 2014-04-17 | Unspecified vulnerability in lighttpd in Oracle Solaris 11.1 allows attackers... |
| CVE-2014-2707 | 2014-04-17 | cups-browsed in cups-filters 1.0.41 before 1.0.51 allows remote IPP printers... |
| CVE-2014-2879 | 2014-04-17 | Multiple cross-site scripting (XSS) vulnerabilities in Dell SonicWALL Email Security... |
| CVE-2014-2880 | 2014-04-17 | Open redirect vulnerability in the Oracle Identity Manager component in... |
| CVE-2014-2391 | 2014-04-17 | The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1... |
| CVE-2014-2392 | 2014-04-17 | The E-Mail autoconfiguration feature in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1... |
| CVE-2014-2393 | 2014-04-17 | Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite 7.4.1 before 7.4.1-rev11... |
| CVE-2012-0871 | 2014-04-18 | The session_link_x11_socket function in login/logind-session.c in systemd-logind in systemd, possibly... |
| CVE-2013-4289 | 2014-04-18 | Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow... |
| CVE-2013-4290 | 2014-04-18 | Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers... |
| CVE-2014-0150 | 2014-04-18 | Integer overflow in the virtio_net_handle_mac function in hw/net/virtio-net.c in QEMU... |
| CVE-2014-2844 | 2014-04-18 | Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure Gateway 7.5.0... |
| CVE-2014-2856 | 2014-04-18 | Cross-site scripting (XSS) vulnerability in scheduler/client.c in Common Unix Printing... |
| CVE-2012-6646 | 2014-04-18 | F-Secure Anti-Virus, Safe Anywhere, and PSB Workstation Security before 11500... |
| CVE-2013-7369 | 2014-04-18 | SQL injection vulnerability in an unspecified DLL in the FSDBCom... |
| CVE-2013-4279 | 2014-04-18 | imapsync 1.564 and earlier performs a release check by default,... |
| CVE-2013-7195 | 2014-04-18 | PHPFox 3.7.3 and 3.7.4 allows remote authenticated users to bypass... |
| CVE-2013-7196 | 2014-04-18 | static/ajax.php in PHPFox 3.7.3, 3.7.4, and 3.7.5 allows remote authenticated... |
| CVE-2014-2014 | 2014-04-18 | imapsync before 1.584, when running with the --tls option, attempts... |
| CVE-2014-2286 | 2014-04-18 | main/http.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before... |
| CVE-2014-2287 | 2014-04-18 | channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.26.1, 11.8.x before... |
| CVE-2014-2288 | 2014-04-18 | The PJSIP channel driver in Asterisk Open Source 12.x before... |
| CVE-2014-2289 | 2014-04-18 | res/res_pjsip_exten_state.c in the PJSIP channel driver in Asterisk Open Source... |
| CVE-2014-2522 | 2014-04-18 | curl and libcurl 7.27.0 through 7.35.0, when running on Windows... |
| CVE-2014-2597 | 2014-04-18 | PCNetSoftware RAC Server 4.0.4 and 4.0.5 allows local users to... |
| CVE-2013-6213 | 2014-04-19 | Unspecified vulnerability in Virtual User Generator in HP LoadRunner before... |
| CVE-2013-6214 | 2014-04-19 | Unspecified vulnerability in the Integration Service in HP Universal Configuration... |
| CVE-2014-0778 | 2014-04-19 | The TCPUploader module in Progea Movicon 11.4 before 11.4.1150 allows... |
| CVE-2014-1974 | 2014-04-19 | Directory traversal vulnerability in the LYSESOFT AndExplorer application before 20140403... |
| CVE-2014-1983 | 2014-04-19 | Unspecified vulnerability in Cybozu Remote Service Manager through 2.3.0 and... |
| CVE-2014-1984 | 2014-04-19 | Session fixation vulnerability in the management screen in Cybozu Remote... |
| CVE-2014-1990 | 2014-04-19 | Cross-site request forgery (CSRF) vulnerability in TopAccess (aka the web-based... |
| CVE-2014-2731 | 2014-04-19 | Multiple unspecified vulnerabilities in the integrated web server in Siemens... |
| CVE-2014-2732 | 2014-04-19 | Multiple directory traversal vulnerabilities in the integrated web server in... |
| CVE-2014-2733 | 2014-04-19 | Siemens SINEMA Server before 12 SP1 allows remote attackers to... |
| CVE-2013-6212 | 2014-04-19 | Unspecified vulnerability in HP Database and Middleware Automation 10.0, 10.01,... |
| CVE-2013-6215 | 2014-04-19 | Unspecified vulnerability in the Integration Service in HP Universal Configuration... |
| CVE-2013-6218 | 2014-04-19 | Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x,... |
| CVE-2013-6219 | 2014-04-19 | Unspecified vulnerability in HP HP-UX Whitelisting (aka WLI) before A.01.02.02... |
| CVE-2014-2155 | 2014-04-19 | The DHCPv6 server module in Cisco CNS Network Registrar 7.1... |
| CVE-2014-1517 | 2014-04-20 | The login form in Bugzilla 2.x, 3.x, 4.x before 4.4.3,... |
| CVE-2014-2665 | 2014-04-20 | includes/specials/SpecialChangePassword.php in MediaWiki before 1.19.14, 1.20.x and 1.21.x before 1.21.8,... |
| CVE-2013-5948 | 2014-04-21 | The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and... |
| CVE-2013-6370 | 2014-04-21 | Buffer overflow in the printbuf APIs in json-c before 0.12... |
| CVE-2013-6371 | 2014-04-21 | The hash functionality in json-c before 0.12 allows context-dependent attackers... |
| CVE-2013-6469 | 2014-04-21 | JBoss Overlord Run Time Governance (RTGov) 1.0 for JBossAS allows... |
| CVE-2014-0173 | 2014-04-21 | The Jetpack plugin before 1.9 before 1.9.4, 2.0.x before 2.0.9,... |
| CVE-2014-1216 | 2014-04-21 | FitNesse Wiki 20131110, 20140201, and earlier allows remote attackers to... |
| CVE-2014-2269 | 2014-04-21 | modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote... |
| CVE-2014-2341 | 2014-04-21 | Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers... |
| CVE-2014-2719 | 2014-04-21 | Advanced_System_Content.asp in the ASUS RT series routers with firmware before... |
| CVE-2014-2735 | 2014-04-21 | WinSCP before 5.5.3, when FTP with TLS is used, does... |
| CVE-2014-2925 | 2014-04-21 | Cross-site scripting (XSS) vulnerability in Advanced_Wireless_Content.asp in ASUS RT-AC68U and... |
| CVE-2013-5459 | 2014-04-21 | Unspecified vulnerability in IBM Rational Software Architect (RSA) Design Manager... |
| CVE-2014-0361 | 2014-04-21 | The default configuration of IBM 4690 OS, as used in... |
| CVE-2014-0932 | 2014-04-21 | Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.5... |
| CVE-2014-2921 | 2014-04-21 | The getObjectByToken function in Newsletter.php in the Pimcore_Tool_Newsletter module in... |
| CVE-2014-2922 | 2014-04-21 | The getObjectByToken function in Newsletter.php in the Pimcore_Tool_Newsletter module in... |
| CVE-2013-1421 | 2014-04-22 | Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar before 1.2.5,... |
| CVE-2013-2105 | 2014-04-22 | The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows... |
| CVE-2013-2187 | 2014-04-22 | Cross-site scripting (XSS) vulnerability in Apache Archiva 1.2 through 1.2.2... |
| CVE-2013-4116 | 2014-04-22 | lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local... |
| CVE-2013-4472 | 2014-04-22 | The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3... |
| CVE-2013-7338 | 2014-04-22 | Python before 3.3.4 RC1 allows remote attackers to cause a... |
| CVE-2014-1615 | 2014-04-22 | Multiple cross-site request forgery (CSRF) vulnerabilities in Carbon Black before... |
| CVE-2014-2654 | 2014-04-22 | Multiple SQL injection vulnerabilities in MobFox mAdserve 2.0 and earlier... |
| CVE-2014-2659 | 2014-04-22 | Cross-site request forgery (CSRF) vulnerability in the admin UI in... |
| CVE-2014-2737 | 2014-04-22 | SQL injection vulnerability in the get_active_session function in the KTAPI_UserSession... |
| CVE-2014-2890 | 2014-04-22 | Cross-site scripting (XSS) vulnerability in the wrap_html function in MyID.php... |
| CVE-2014-2892 | 2014-04-22 | Heap-based buffer overflow in the get_answer function in mmsh.c in... |
| CVE-2014-2899 | 2014-04-22 | wolfSSL CyaSSL before 2.9.4 allows remote attackers to cause a... |
| CVE-2014-2900 | 2014-04-22 | wolfSSL CyaSSL before 2.9.4 does not properly validate X.509 certificates... |
| CVE-2012-0360 | 2014-04-23 | Memory leak in Cisco IOS before 15.1(1)SY, when IKEv2 debugging... |
| CVE-2012-1317 | 2014-04-23 | The multicast implementation in Cisco IOS before 15.1(1)SY allows remote... |
| CVE-2012-1366 | 2014-04-23 | Cisco IOS before 15.1(1)SY on ASR 1000 devices, when Multicast... |
| CVE-2012-3062 | 2014-04-23 | Cisco IOS before 15.1(1)SY, when Multicast Listener Discovery (MLD) snooping... |
| CVE-2012-3918 | 2014-04-23 | Cisco IOS before 15.3(1)T on Cisco 2900 devices, when a... |
| CVE-2012-4638 | 2014-04-23 | Cisco IOS before 15.1(1)SY allows local users to cause a... |
| CVE-2012-4651 | 2014-04-23 | Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote... |
| CVE-2012-4658 | 2014-04-23 | The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote... |
| CVE-2012-5014 | 2014-04-23 | Cisco IOS before 15.1(2)SY allows remote authenticated users to cause... |
| CVE-2012-5017 | 2014-04-23 | Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause... |
| CVE-2012-5032 | 2014-04-23 | The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco... |
| CVE-2012-5036 | 2014-04-23 | Cisco IOS before 12.2(50)SY1 allows remote authenticated users to cause... |
| CVE-2012-5037 | 2014-04-23 | The ACL implementation in Cisco IOS before 15.1(1)SY on Catalyst... |
| CVE-2012-5039 | 2014-04-23 | The BGP Router process in Cisco IOS before 12.2(50)SY1 allows... |
| CVE-2012-5044 | 2014-04-23 | Cisco IOS before 15.3(1)T, when media flow-around is not used,... |
| CVE-2012-5422 | 2014-04-23 | Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices... |
| CVE-2012-5427 | 2014-04-23 | Cisco IOS Unified Border Element (CUBE) in Cisco IOS before... |
| CVE-2014-1295 | 2014-04-23 | Secure Transport in Apple iOS before 7.1.1, Apple OS X... |
| CVE-2014-1296 | 2014-04-23 | CFNetwork in Apple iOS before 7.1.1, Apple OS X through... |