CVE List - 2014 / April
Showing 501 - 600 of 665 CVEs for April 2014 (Page 6 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-1314 | 2014-04-23 | WindowServer in Apple OS X through 10.9.2 does not prevent... |
| CVE-2014-1315 | 2014-04-23 | Format string vulnerability in CoreServicesUIAgent in Apple OS X 10.9.x... |
| CVE-2014-1316 | 2014-04-23 | Heimdal, as used in Apple OS X through 10.9.2, allows... |
| CVE-2014-1318 | 2014-04-23 | The Intel Graphics Driver in Apple OS X through 10.9.2... |
| CVE-2014-1319 | 2014-04-23 | Buffer overflow in ImageIO in Apple OS X 10.9.x through... |
| CVE-2014-1320 | 2014-04-23 | IOKit in Apple iOS before 7.1.1, Apple OS X through... |
| CVE-2014-1321 | 2014-04-23 | Power Management in Apple OS X 10.9.x through 10.9.2 allows... |
| CVE-2014-1322 | 2014-04-23 | The kernel in Apple OS X through 10.9.2 places a... |
| CVE-2014-1648 | 2014-04-23 | Cross-site scripting (XSS) vulnerability in brightmail/setting/compliance/DlpConnectFlow$view.flo in the management console... |
| CVE-2014-2154 | 2014-04-23 | Memory leak in the SIP inspection engine in Cisco Adaptive... |
| CVE-2014-0472 | 2014-04-23 | The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6,... |
| CVE-2014-0473 | 2014-04-23 | The caching framework in Django before 1.4.11, 1.5.x before 1.5.6,... |
| CVE-2014-0474 | 2014-04-23 | The (1) FilePathField, (2) GenericIPAddressField, and (3) IPAddressField model field... |
| CVE-2014-2327 | 2014-04-23 | Cross-site request forgery (CSRF) vulnerability in Cacti 0.8.7g, 0.8.8b, and... |
| CVE-2014-2328 | 2014-04-23 | lib/graph_export.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote authenticated... |
| CVE-2014-2554 | 2014-04-23 | OTRS 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before... |
| CVE-2014-2709 | 2014-04-23 | lib/rrd.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers... |
| CVE-2014-2855 | 2014-04-23 | The check_secret function in authenticate.c in rsync 3.1.0 and earlier... |
| CVE-2014-2888 | 2014-04-23 | lib/sfpagent/bsig.rb in the sfpagent gem before 0.4.15 for Ruby allows... |
| CVE-2014-2893 | 2014-04-23 | The GetHTMLRunDir function in the scan-build utility in Clang 3.5... |
| CVE-2014-2894 | 2014-04-23 | Off-by-one error in the cmd_smart function in the smart self... |
| CVE-2014-2976 | 2014-04-23 | Directory traversal vulnerability in Sixnet SixView Manager 2.4.1 allows remote... |
| CVE-2014-2983 | 2014-04-23 | Drupal 6.x before 6.31 and 7.x before 7.27 does not... |
| CVE-2014-0892 | 2014-04-23 | IBM Notes and Domino 8.5.x before 8.5.3 FP6 IF3 and... |
| CVE-2014-1646 | 2014-04-23 | Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional... |
| CVE-2014-1647 | 2014-04-23 | Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional... |
| CVE-2011-5279 | 2014-04-23 | CRLF injection vulnerability in the CGI implementation in Microsoft Internet... |
| CVE-2012-3946 | 2014-04-24 | Cisco IOS before 15.3(2)S allows remote attackers to bypass interface... |
| CVE-2012-5723 | 2014-04-24 | Cisco ASR 1000 devices with software before 3.8S, when BDI... |
| CVE-2013-6738 | 2014-04-24 | Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis... |
| CVE-2014-2907 | 2014-04-24 | The srtp_add_address function in epan/dissectors/packet-rtp.c in the RTP dissector in... |
| CVE-2014-0188 | 2014-04-24 | The openshift-origin-broker in Red Hat OpenShift Enterprise 2.0.5, 1.2.7, and... |
| CVE-2014-2736 | 2014-04-24 | Multiple SQL injection vulnerabilities in MODX Revolution before 2.2.14 allow... |
| CVE-2014-2915 | 2014-04-24 | Xen 4.4.x, when running on ARM systems, does not properly... |
| CVE-2014-2601 | 2014-04-24 | The server in HP Integrated Lights-Out 2 (aka iLO 2)... |
| CVE-2014-2734 | 2014-04-24 | The openssl extension in Ruby 2.x does not properly maintain... |
| CVE-2014-0760 | 2014-04-25 | The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1... |
| CVE-2014-0769 | 2014-04-25 | The Festo CECX-X-C1 Modular Master Controller with CoDeSys and CECX-X-M1... |
| CVE-2014-2908 | 2014-04-25 | Cross-site scripting (XSS) vulnerability in the integrated web server on... |
| CVE-2014-2909 | 2014-04-25 | CRLF injection vulnerability in the integrated web server on Siemens... |
| CVE-2014-0780 | 2014-04-25 | Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1... |
| CVE-2012-4230 | 2014-04-25 | The bbcode plugin in TinyMCE 3.5.8 does not properly enforce... |
| CVE-2013-5954 | 2014-04-25 | Multiple cross-site request forgery (CSRF) vulnerabilities in OpenX 2.8.11 and... |
| CVE-2013-5956 | 2014-04-25 | Cross-site scripting (XSS) vulnerability in includes/flvthumbnail.php in the Youtube Gallery... |
| CVE-2014-2729 | 2014-04-25 | Cross-site scripting (XSS) vulnerability in content.aspx in Ektron CMS 8.7... |
| CVE-2013-2025 | 2014-04-25 | Cross-site scripting (XSS) vulnerability in Ushahidi Platform 2.5.x through 2.6.1... |
| CVE-2013-3069 | 2014-04-25 | Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware... |
| CVE-2013-4565 | 2014-04-25 | Heap-based buffer overflow in the __OLEdecode function in ppthtml 0.5.1... |
| CVE-2013-4722 | 2014-04-25 | Multiple cross-site scripting (XSS) vulnerabilities in Admin/login/default.asp in DDSN Interactive... |
| CVE-2013-4723 | 2014-04-25 | Open redirect vulnerability in DDSN Interactive cm3 Acora CMS 6.0.6/1a,... |
| CVE-2013-4726 | 2014-04-25 | Cross-site request forgery (CSRF) vulnerability in DDSN Interactive cm3 Acora... |
| CVE-2013-5660 | 2014-04-25 | Buffer overflow in Power Software WinArchiver 3.2 allows remote attackers... |
| CVE-2014-2579 | 2014-04-25 | Multiple cross-site request forgery (CSRF) vulnerabilities in XCloner Standalone 3.5... |
| CVE-2014-2996 | 2014-04-25 | XCloner Standalone 3.5 and earlier, when enable_db_backup and sql_mem are... |
| CVE-2014-0350 | 2014-04-26 | The Poco::Net::X509Certificate::verify method in the NetSSL library in POCO C++... |
| CVE-2014-2992 | 2014-04-26 | The Misli.com application for Android does not verify X.509 certificates... |
| CVE-2014-2993 | 2014-04-26 | The Birebin.com application for Android does not verify X.509 certificates... |
| CVE-2014-1730 | 2014-04-26 | Google V8, as used in Google Chrome before 34.0.1847.131 on... |
| CVE-2014-1731 | 2014-04-26 | core/html/HTMLSelectElement.cpp in the DOM implementation in Blink, as used in... |
| CVE-2014-1732 | 2014-04-26 | Use-after-free vulnerability in browser/ui/views/speech_recognition_bubble_views.cc in Google Chrome before 34.0.1847.131 on... |
| CVE-2014-1733 | 2014-04-26 | The PointerCompare function in codegen.cc in Seccomp-BPF, as used in... |
| CVE-2014-1734 | 2014-04-26 | Multiple unspecified vulnerabilities in Google Chrome before 34.0.1847.131 on Windows... |
| CVE-2014-1735 | 2014-04-26 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.33, as used... |
| CVE-2014-2889 | 2014-04-27 | Off-by-one error in the bpf_jit_compile function in arch/x86/net/bpf_jit_comp.c in the... |
| CVE-2014-0181 | 2014-04-27 | The Netlink implementation in the Linux kernel through 3.14.1 does... |
| CVE-2014-2994 | 2014-04-27 | Stack-based buffer overflow in Acunetix Web Vulnerability Scanner (WVS) 8... |
| CVE-2014-1762 | 2014-04-27 | Unspecified vulnerability in Microsoft Internet Explorer 6 through 11 allows... |
| CVE-2014-1763 | 2014-04-27 | Use-after-free vulnerability in Microsoft Internet Explorer 9 through 11 allows... |
| CVE-2014-1764 | 2014-04-27 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2014-1765 | 2014-04-27 | Multiple use-after-free vulnerabilities in Microsoft Internet Explorer 6 through 11... |
| CVE-2014-1766 | 2014-04-27 | Microsoft Internet Explorer 9 through 11 allows remote attackers to... |
| CVE-2014-1776 | 2014-04-27 | Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows... |
| CVE-2010-5105 | 2014-04-27 | The undo save quit routine in the kernel in Blender... |
| CVE-2011-3152 | 2014-04-27 | DistUpgrade/DistUpgradeFetcherCore.py in Update Manager before 1:0.87.31.1, 1:0.134.x before 1:0.134.11.1, 1:0.142.x... |
| CVE-2013-6887 | 2014-04-27 | OpenJPEG 1.5.1 allows remote attackers to cause a denial of... |
| CVE-2014-0162 | 2014-04-27 | The Sheepdog backend in OpenStack Image Registry and Delivery Service... |
| CVE-2014-3007 | 2014-04-27 | Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3... |
| CVE-2011-3602 | 2014-04-27 | Directory traversal vulnerability in device-linux.c in the router advertisement daemon... |
| CVE-2011-3603 | 2014-04-27 | The router advertisement daemon (radvd) before 1.8.2 does not properly... |
| CVE-2013-0296 | 2014-04-27 | Race condition in pigz before 2.2.5 uses permissions derived from... |
| CVE-2013-6053 | 2014-04-27 | OpenJPEG 1.5.1 allows remote attackers to obtain sensitive information via... |
| CVE-2014-2285 | 2014-04-27 | The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier,... |
| CVE-2014-2383 | 2014-04-28 | dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows... |
| CVE-2013-4285 | 2014-04-28 | A certain Gentoo patch for the PAM S/Key module does... |
| CVE-2014-0037 | 2014-04-28 | The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8... |
| CVE-2014-0079 | 2014-04-28 | The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 7.1.8, 6.20.0, and... |
| CVE-2014-0187 | 2014-04-28 | The openvswitch-agent process in OpenStack Neutron 2013.1 before 2013.2.4 and... |
| CVE-2014-1217 | 2014-04-28 | Livetecs Timelive before 6.2.8 does not properly restrict access to... |
| CVE-2014-2042 | 2014-04-28 | Unrestricted file upload vulnerability in the Manage Project functionality in... |
| CVE-2014-2657 | 2014-04-28 | Unspecified vulnerability in the print release functionality in PaperCut MF... |
| CVE-2014-2658 | 2014-04-28 | Unspecified vulnerability in Papercut MF and NG before 14.1 (Build... |
| CVE-2014-2715 | 2014-04-28 | Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper... |
| CVE-2014-2846 | 2014-04-28 | Directory traversal vulnerability in opt/arkeia/wui/htdocs/index.php in the WD Arkeia virtual... |
| CVE-2014-2980 | 2014-04-28 | Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when... |
| CVE-2014-2986 | 2014-04-28 | The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC)... |
| CVE-2014-3008 | 2014-04-28 | Unitrends Enterprise Backup 7.3.0 allows remote authenticated users to execute... |
| CVE-2014-0112 | 2014-04-29 | ParametersInterceptor in Apache Struts before 2.3.20 does not properly restrict... |
| CVE-2014-0113 | 2014-04-29 | CookieInterceptor in Apache Struts before 2.3.20, when a wildcard cookiesName... |
| CVE-2014-0515 | 2014-04-29 | Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x... |
| CVE-2014-1841 | 2014-04-29 | Directory traversal vulnerability in the web interface in Titan FTP... |