CVE List - 2014 / April
Showing 101 - 200 of 665 CVEs for April 2014 (Page 2 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-2541 | 2014-04-08 | The Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure... |
| CVE-2014-2542 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in the Rendezvous Daemon (rvd), Rendezvous... |
| CVE-2014-2543 | 2014-04-08 | Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon... |
| CVE-2014-0315 | 2014-04-08 | Untrusted search path vulnerability in Microsoft Windows XP SP2 and... |
| CVE-2014-0507 | 2014-04-08 | Buffer overflow in Adobe Flash Player before 11.7.700.275 and 11.8.x... |
| CVE-2014-0508 | 2014-04-08 | Adobe Flash Player before 11.7.700.275 and 11.8.x through 13.0.x before... |
| CVE-2014-0509 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 11.7.700.275... |
| CVE-2014-1751 | 2014-04-08 | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary... |
| CVE-2014-1752 | 2014-04-08 | Microsoft Internet Explorer 6 and 7 allows remote attackers to... |
| CVE-2014-1753 | 2014-04-08 | Microsoft Internet Explorer 6 through 9 allows remote attackers to... |
| CVE-2014-1755 | 2014-04-08 | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary... |
| CVE-2014-1757 | 2014-04-08 | Microsoft Word 2007 SP3 and 2010 SP1 and SP2, and... |
| CVE-2014-1758 | 2014-04-08 | Stack-based buffer overflow in Microsoft Word 2003 SP3 allows remote... |
| CVE-2014-1759 | 2014-04-08 | pubconv.dll in Microsoft Publisher 2003 SP3 and 2007 SP3 allows... |
| CVE-2014-1760 | 2014-04-08 | Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary... |
| CVE-2014-1716 | 2014-04-09 | Cross-site scripting (XSS) vulnerability in the Runtime_SetPrototype function in runtime.cc... |
| CVE-2014-1717 | 2014-04-09 | Google V8, as used in Google Chrome before 34.0.1847.116, does... |
| CVE-2014-1718 | 2014-04-09 | Integer overflow in the SoftwareFrameManager::SwapToNewFrame function in content/browser/renderer_host/software_frame_manager.cc in the... |
| CVE-2014-1719 | 2014-04-09 | Use-after-free vulnerability in the WebSharedWorkerStub::OnTerminateWorkerContext function in content/worker/websharedworker_stub.cc in the... |
| CVE-2014-1720 | 2014-04-09 | Use-after-free vulnerability in the HTMLBodyElement::insertedInto function in core/html/HTMLBodyElement.cpp in Blink,... |
| CVE-2014-1721 | 2014-04-09 | Google V8, as used in Google Chrome before 34.0.1847.116, does... |
| CVE-2014-1722 | 2014-04-09 | Use-after-free vulnerability in the RenderBlock::addChildIgnoringAnonymousColumnBlocks function in core/rendering/RenderBlock.cpp in Blink,... |
| CVE-2014-1723 | 2014-04-09 | The UnescapeURLWithOffsetsImpl function in net/base/escape.cc in Google Chrome before 34.0.1847.116... |
| CVE-2014-1724 | 2014-04-09 | Use-after-free vulnerability in Free(b)soft Laboratory Speech Dispatcher 0.7.1, as used... |
| CVE-2014-1725 | 2014-04-09 | The base64DecodeInternal function in wtf/text/Base64.cpp in Blink, as used in... |
| CVE-2014-1726 | 2014-04-09 | The drag implementation in Google Chrome before 34.0.1847.116 allows user-assisted... |
| CVE-2014-1727 | 2014-04-09 | Use-after-free vulnerability in content/renderer/renderer_webcolorchooser_impl.h in Google Chrome before 34.0.1847.116 allows... |
| CVE-2014-1728 | 2014-04-09 | Multiple unspecified vulnerabilities in Google Chrome before 34.0.1847.116 allow attackers... |
| CVE-2014-1729 | 2014-04-09 | Multiple unspecified vulnerabilities in Google V8 before 3.24.35.22, as used... |
| CVE-2014-0165 | 2014-04-09 | WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated... |
| CVE-2014-0166 | 2014-04-09 | The wp_validate_auth_cookie function in wp-includes/pluggable.php in WordPress before 3.7.2 and... |
| CVE-2014-2544 | 2014-04-09 | Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and... |
| CVE-2014-2126 | 2014-04-10 | Cisco Adaptive Security Appliance (ASA) Software 8.2 before 8.2(5.47), 8.4... |
| CVE-2014-2127 | 2014-04-10 | Cisco Adaptive Security Appliance (ASA) Software 8.x before 8.2(5.48), 8.3... |
| CVE-2014-2128 | 2014-04-10 | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA)... |
| CVE-2014-2129 | 2014-04-10 | The SIP inspection engine in Cisco Adaptive Security Appliance (ASA)... |
| CVE-2014-2141 | 2014-04-10 | The session-termination functionality on Cisco ONS 15454 controller cards with... |
| CVE-2012-4921 | 2014-04-10 | Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom... |
| CVE-2013-2033 | 2014-04-10 | Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before... |
| CVE-2013-2693 | 2014-04-10 | Cross-site request forgery (CSRF) vulnerability in the Options in the... |
| CVE-2013-2699 | 2014-04-10 | Cross-site request forgery (CSRF) vulnerability in the underConstruction plugin before... |
| CVE-2013-3251 | 2014-04-10 | Cross-site request forgery (CSRF) vulnerability in the qTranslate plugin 2.5.34... |
| CVE-2013-3252 | 2014-04-10 | Cross-site request forgery (CSRF) vulnerability in the options admin page... |
| CVE-2013-6468 | 2014-04-10 | JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red... |
| CVE-2014-0331 | 2014-04-10 | Cross-site scripting (XSS) vulnerability in the web administration interface in... |
| CVE-2014-1455 | 2014-04-10 | SQL injection vulnerability in the password reset functionality in Pearson... |
| CVE-2014-2583 | 2014-04-10 | Multiple directory traversal vulnerabilities in pam_timestamp.c in the pam_timestamp module... |
| CVE-2014-2708 | 2014-04-10 | Multiple SQL injection vulnerabilities in graph_xport.php in Cacti 0.8.7g, 0.8.8b,... |
| CVE-2013-7365 | 2014-04-10 | Cross-site scripting (XSS) vulnerability in SAP Enterprise Portal allows remote... |
| CVE-2014-2748 | 2014-04-10 | The Security Audit Log facility in SAP Enhancement Package (EHP)... |
| CVE-2014-2749 | 2014-04-10 | The HANA ICM process in SAP HANA allows remote attackers... |
| CVE-2014-2751 | 2014-04-10 | SAP Print and Output Management has hardcoded credentials, which makes... |
| CVE-2014-2752 | 2014-04-10 | SAP Business Object Processing Framework (BOPF) for ABAP has hardcoded... |
| CVE-2013-7355 | 2014-04-10 | SQL injection vulnerability in SAP BI Universal Data Integration allows... |
| CVE-2013-7356 | 2014-04-10 | Unspecified vulnerability in the SAP CCMS / Database Monitors for... |
| CVE-2013-7357 | 2014-04-10 | Unspecified vulnerability in the configuration service in SAP J2EE Engine... |
| CVE-2013-7358 | 2014-04-10 | Unspecified vulnerability in SAP Guided Procedures Archive Monitor allows remote... |
| CVE-2013-7359 | 2014-04-10 | Unspecified vulnerability in SAP Mobile Infrastructure allows remote attackers to... |
| CVE-2013-7360 | 2014-04-10 | Unspecified vulnerability in SAP adminadapter allows remote attackers to read... |
| CVE-2013-7361 | 2014-04-10 | Directory traversal vulnerability in SAP CMS and CM Services allows... |
| CVE-2013-7362 | 2014-04-10 | An unspecified RFC function in SAP CCMS Agent allows remote... |
| CVE-2013-7363 | 2014-04-10 | Unspecified vulnerability in the Diagnostics (SMD) agent in SAP Solution... |
| CVE-2013-7364 | 2014-04-10 | An unspecified J2EE core service in the J2EE Engine in... |
| CVE-2013-7366 | 2014-04-10 | The SAP Software Deployment Manager (SDM), in certain unspecified conditions,... |
| CVE-2013-7367 | 2014-04-10 | SAP Enterprise Portal does not properly restrict access to the... |
| CVE-2012-6132 | 2014-04-10 | Cross-site scripting (XSS) vulnerability in Roundup before 1.4.20 allows remote... |
| CVE-2013-0740 | 2014-04-10 | Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before... |
| CVE-2014-0908 | 2014-04-10 | The User Attribute implementation in IBM Business Process Manager (BPM)... |
| CVE-2014-0920 | 2014-04-10 | IBM SPSS Analytic Server 1.0 before IF002 and 1.0.1 before... |
| CVE-2014-2741 | 2014-04-11 | nio/XMLLightweightParser.java in Ignite Realtime Openfire before 3.9.2 does not properly... |
| CVE-2014-2742 | 2014-04-11 | Isode M-Link before 16.0v7 does not properly restrict the processing... |
| CVE-2014-2743 | 2014-04-11 | plugins/mod_compression.lua in Lightwitch Metronome through 3.4 does not properly restrict... |
| CVE-2014-2744 | 2014-04-11 | plugins/mod_compression.lua in (1) Prosody before 0.9.4 and (2) Lightwitch Metronome... |
| CVE-2014-2745 | 2014-04-11 | Prosody before 0.9.4 does not properly restrict the processing of... |
| CVE-2014-2746 | 2014-04-11 | net/IOService.java in Tigase before 5.2.1 does not properly restrict the... |
| CVE-2014-2829 | 2014-04-11 | Erlang Solutions MongooseIM through 1.3.1 rev. 2 does not properly... |
| CVE-2013-2706 | 2014-04-11 | Cross-site request forgery (CSRF) vulnerability in the Stream Video Player... |
| CVE-2013-2708 | 2014-04-11 | Cross-site request forgery (CSRF) vulnerability in the Content Slide plugin... |
| CVE-2013-4795 | 2014-04-11 | Cross-site scripting (XSS) vulnerability in the Submitters list in Review... |
| CVE-2013-6369 | 2014-04-11 | Stack-based buffer overflow in the jbg_dec_in function in libjbig/jbig.c in... |
| CVE-2014-1985 | 2014-04-11 | Open redirect vulnerability in the redirect_back_or_default function in app/controllers/application_controller.rb in... |
| CVE-2014-2333 | 2014-04-11 | Cross-site scripting (XSS) vulnerability in the Lazyest Gallery plugin before... |
| CVE-2014-2540 | 2014-04-11 | SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before... |
| CVE-2012-6130 | 2014-04-11 | Cross-site scripting (XSS) vulnerability in the history display in Roundup... |
| CVE-2012-6131 | 2014-04-11 | Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.20... |
| CVE-2014-0172 | 2014-04-11 | Integer overflow in the check_section function in dwarf_begin_elf.c in the... |
| CVE-2014-2847 | 2014-04-11 | SQL injection vulnerability in default.asp in CIS Manager CMS allows... |
| CVE-2014-2848 | 2014-04-11 | A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for... |
| CVE-2014-2849 | 2014-04-11 | The Change Password dialog box (change_password) in Sophos Web Appliance... |
| CVE-2014-2850 | 2014-04-11 | The network interface configuration page (netinterface) in Sophos Web Appliance... |
| CVE-2014-0777 | 2014-04-11 | The Modbus slave/outstation driver in the OPC Drivers 1.0.20 and... |
| CVE-2014-1969 | 2014-04-11 | Directory traversal vulnerability in the apps4u@android SD Card Manager application... |
| CVE-2014-0636 | 2014-04-11 | EMC RSA BSAFE Micro Edition Suite (MES) 3.2.x before 3.2.6... |
| CVE-2014-1209 | 2014-04-11 | VMware vSphere Client 4.0, 4.1, 5.0 before Update 3, and... |
| CVE-2014-1210 | 2014-04-11 | VMware vSphere Client 5.0 before Update 3 and 5.1 before... |
| CVE-2013-2809 | 2014-04-12 | The DNP Master Driver in the OSIsoft PI Interface before... |
| CVE-2013-2828 | 2014-04-12 | The DNP Master Driver in the OSIsoft PI Interface before... |
| CVE-2013-6216 | 2014-04-12 | Unspecified vulnerability in HP Array Configuration Utility, Array Diagnostics Utility,... |
| CVE-2014-0347 | 2014-04-12 | The Settings module in Websense Triton Unified Security Center 7.7.3... |
| CVE-2014-0349 | 2014-04-12 | Multiple unspecified vulnerabilities in J2k-Codec allow remote attackers to execute... |