CVE List - 2014 / September
Showing 1 - 100 of 1146 CVEs for September 2014 (Page 1 of 12)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-3601 | 2014-09-01 | The kvm_iommu_map_pages function in virt/kvm/iommu.c in the Linux kernel through... |
| CVE-2014-5471 | 2014-09-01 | Stack consumption vulnerability in the parse_rock_ridge_inode_internal function in fs/isofs/rock.c in... |
| CVE-2014-5472 | 2014-09-01 | The parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel through... |
| CVE-2014-3861 | 2014-09-02 | Cross-site scripting (XSS) vulnerability in CDA.xsl in HL7 C-CDA 1.1... |
| CVE-2014-3862 | 2014-09-02 | CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers... |
| CVE-2014-5076 | 2014-09-02 | The La Banque Postale application before 3.2.6 for Android does... |
| CVE-2014-5452 | 2014-09-02 | CDA.xsl in HL7 C-CDA 1.1 and earlier does not anticipate... |
| CVE-2014-6041 | 2014-09-02 | The Android WebView in Android before 4.4 allows remote attackers... |
| CVE-2014-0485 | 2014-09-02 | S3QL 1.18.1 and earlier uses the pickle Python module unsafely,... |
| CVE-2014-5136 | 2014-09-02 | Cross-site scripting (XSS) vulnerability in Innovative Interfaces Sierra Library Services... |
| CVE-2014-5137 | 2014-09-02 | Innovative Interfaces Sierra Library Services Platform 1.2_3 provides different responses... |
| CVE-2014-5339 | 2014-09-02 | Check_MK before 1.2.4p4 and 1.2.5 before 1.2.5i4 allows remote authenticated... |
| CVE-2014-5340 | 2014-09-02 | The wato component in Check_MK before 1.2.4p4 and 1.2.5 before... |
| CVE-2014-5521 | 2014-09-02 | plugins/useradmin/fingeruser.php in XRMS CRM, possibly 1.99.2, allows remote authenticated users... |
| CVE-2014-6064 | 2014-09-02 | The Accounts tab in the administrative user interface in McAfee... |
| CVE-2014-1553 | 2014-09-03 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2014-1554 | 2014-09-03 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2014-1562 | 2014-09-03 | Unspecified vulnerability in the browser engine in Mozilla Firefox before... |
| CVE-2014-1563 | 2014-09-03 | Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before... |
| CVE-2014-1564 | 2014-09-03 | Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and... |
| CVE-2014-1565 | 2014-09-03 | The mozilla::dom::AudioEventTimeline function in the Web Audio API implementation in... |
| CVE-2014-1566 | 2014-09-03 | Mozilla Firefox before 31.1 on Android does not properly restrict... |
| CVE-2014-1567 | 2014-09-03 | Use-after-free vulnerability in DirectionalityUtils.cpp in Mozilla Firefox before 32.0, Firefox... |
| CVE-2012-4226 | 2014-09-03 | Multiple cross-site scripting (XSS) vulnerabilities in Quick Post Widget plugin... |
| CVE-2014-5465 | 2014-09-03 | Directory traversal vulnerability in force-download.php in the Download Shortcode plugin... |
| CVE-2014-5461 | 2014-09-04 | Buffer overflow in the vararg functions in ldo.c in Lua... |
| CVE-2014-3075 | 2014-09-04 | Cross-site scripting (XSS) vulnerability in IBM Business Process Manager (BPM)... |
| CVE-2014-3094 | 2014-09-04 | Stack-based buffer overflow in IBM DB2 9.7 through FP9a, 9.8... |
| CVE-2014-3095 | 2014-09-04 | The SQL engine in IBM DB2 9.5 through FP10, 9.7... |
| CVE-2014-3353 | 2014-09-04 | Cisco IOS XR 4.3(.2) and earlier, as used in Cisco... |
| CVE-2014-4758 | 2014-09-04 | IBM Business Process Manager (BPM) 7.5.x through 8.5.5 and WebSphere... |
| CVE-2014-4759 | 2014-09-04 | An unspecified Ajax service in the Content Management toolkit in... |
| CVE-2014-4805 | 2014-09-04 | IBM DB2 10.5 before FP4 on Linux and AIX creates... |
| CVE-2014-5285 | 2014-09-04 | Unspecified vulnerability in the Authentication Module in TIBCO Spotfire Server... |
| CVE-2012-4234 | 2014-09-04 | Cross-site scripting (XSS) vulnerability in the group moderation screen in... |
| CVE-2012-4768 | 2014-09-04 | Cross-site scripting (XSS) vulnerability in the Download Monitor plugin before... |
| CVE-2012-6153 | 2014-09-04 | http/conn/ssl/AbstractVerifier.java in Apache Commons HttpClient before 4.2.3 does not properly... |
| CVE-2014-2685 | 2014-09-04 | The GenericConsumer class in the Consumer component in ZendOpenId before... |
| CVE-2014-2957 | 2014-09-04 | The dmarc_process function in dmarc.c in Exim before 4.82.1, when... |
| CVE-2014-2972 | 2014-09-04 | expand.c in Exim before 4.83 expands mathematical comparisons twice, which... |
| CVE-2014-3529 | 2014-09-04 | The OPC SAX setup in Apache POI before 3.10.1 allows... |
| CVE-2014-3574 | 2014-09-04 | Apache POI before 3.10.1 and 3.11.x before 3.11-beta2 allows remote... |
| CVE-2014-5269 | 2014-09-04 | Plack::App::File in Plack before 1.0031 removes trailing slash characters from... |
| CVE-2014-5377 | 2014-09-04 | ReadUsersFromMasterServlet in ManageEngine DeviceExpert before 5.9 build 5981 allows remote... |
| CVE-2014-5504 | 2014-09-04 | SolarWinds Log and Event Manager before 6.0 uses "static" credentials,... |
| CVE-2014-5505 | 2014-09-04 | Stack-based buffer overflow in SAP Crystal Reports allows remote attackers... |
| CVE-2014-5506 | 2014-09-04 | Double free vulnerability in SAP Crystal Reports allows remote attackers... |
| CVE-2014-6060 | 2014-09-04 | The get_option function in dhcpcd 4.0.0 through 6.x before 6.4.3... |
| CVE-2014-0610 | 2014-09-05 | The client in Novell GroupWise before 8.0.3 HP4, 2012 before... |
| CVE-2014-0863 | 2014-09-05 | The client in IBM Cognos TM1 9.5.2.3 before IF5, 10.1.1.2... |
| CVE-2014-5036 | 2014-09-05 | The Storage Controller (SC) component in Eucalyptus 3.4.2 through 4.0.x... |
| CVE-2014-5508 | 2014-09-05 | Multiple integer overflows in the HelpServ module (mod-helpserv.c) in srvx... |
| CVE-2014-6028 | 2014-09-05 | TorrentFlux 2.4 allows remote authenticated users to obtain other users'... |
| CVE-2014-6029 | 2014-09-05 | TorrentFlux 2.4 allows remote authenticated users to delete or modify... |
| CVE-2014-6252 | 2014-09-05 | Buffer overflow in disp+work.exe 7000.52.12.34966 and 7200.117.19.50294 in the Dispatcher... |
| CVE-2014-0877 | 2014-09-05 | IBM Cognos TM1 10.2.0.2 before IF1 and 10.2.2.0 before IF1... |
| CVE-2014-2378 | 2014-09-05 | Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and... |
| CVE-2014-2379 | 2014-09-05 | Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and... |
| CVE-2014-3909 | 2014-09-05 | Session fixation vulnerability in Falcon WisePoint 4.1.19.7 and earlier allows... |
| CVE-2014-3910 | 2014-09-05 | Emurasoft EmFTP allows local users to gain privileges via a... |
| CVE-2014-4862 | 2014-09-05 | The Netmaster CBW700N cable modem with software 81.447.392110.729.024 has an... |
| CVE-2014-4863 | 2014-09-05 | The Arris Touchstone DG950A cable modem with software 7.10.131 has... |
| CVE-2014-5256 | 2014-09-05 | Node.js 0.8 before 0.8.28 and 0.10 before 0.10.30 does not... |
| CVE-2014-0152 | 2014-09-08 | Session fixation vulnerability in the web admin interface in oVirt... |
| CVE-2014-0153 | 2014-09-08 | The REST API in oVirt 3.4.0 and earlier stores session... |
| CVE-2014-3618 | 2014-09-08 | Heap-based buffer overflow in formisc.c in formail in procmail 3.22... |
| CVE-2014-5369 | 2014-09-08 | Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption... |
| CVE-2014-5464 | 2014-09-08 | Cross-site scripting (XSS) vulnerability in the nDPI traffic classification library... |
| CVE-2014-5524 | 2014-09-09 | The Adcolony library for Android does not verify X.509 certificates... |
| CVE-2014-5525 | 2014-09-09 | The MoMinis library for Android does not verify X.509 certificates... |
| CVE-2014-5526 | 2014-09-09 | The Inmobi library for Android does not verify X.509 certificates... |
| CVE-2014-5527 | 2014-09-09 | The Tapjoy library for Android does not verify X.509 certificates... |
| CVE-2014-5528 | 2014-09-09 | The Appsflyer library for Android does not verify X.509 certificates... |
| CVE-2014-5529 | 2014-09-09 | The Gameloft library for Android does not verify X.509 certificates... |
| CVE-2014-5531 | 2014-09-09 | The Abode (aka abode.webview) application 1.7 for Android does not... |
| CVE-2014-5532 | 2014-09-09 | The Honolulu (aka adidas.jp.android.running.honolulu) application 2 for Android does not... |
| CVE-2014-5534 | 2014-09-09 | The Princess Shopping (aka air.android.PrincessShopping) application 2 for Android does... |
| CVE-2014-5535 | 2014-09-09 | The Baby Get Up - Kids Care (aka air.brown.jordansa.getup) application... |
| CVE-2014-5536 | 2014-09-09 | The Bingo Bash - Free Bingo Casino (aka air.com.bitrhymes.bingo) application... |
| CVE-2014-5537 | 2014-09-09 | The Abduction Stacker Free (aka air.com.chewygames.abductionstacker2) application 1.0.7 for Android... |
| CVE-2014-5538 | 2014-09-09 | The Westmoreland Water FCU (aka air.com.creditunionhomebanking.mb115) application 1.2.0 for Android... |
| CVE-2014-5539 | 2014-09-09 | The Michael Baker FCU (aka air.com.creditunionhomebanking.mb155) application 1.2.0 for Android... |
| CVE-2014-5540 | 2014-09-09 | The Flick a Trade (aka air.com.cygnecode.fat) application 3.3 for Android... |
| CVE-2014-5541 | 2014-09-09 | The Hidden Memory - Aladdin FREE! (aka air.com.differencegames.hmaladdinfree) application 1.0.31... |
| CVE-2014-5542 | 2014-09-09 | The Hidden Object Mystery (aka air.com.differencegames.hodetectivemysteryfree) application 1.0.65 for Android... |
| CVE-2014-5543 | 2014-09-09 | The Hidden Object - Alice Free (aka air.com.differencegames.hovisionsofalicefree) application 1.0.17... |
| CVE-2014-5544 | 2014-09-09 | The SongPop (aka air.com.freshplanet.games.WaM) application 1.21.2 for Android does not... |
| CVE-2014-5545 | 2014-09-09 | The Sprint jump (aka air.com.ilaz.appilas) application 1 for Android does... |
| CVE-2014-5546 | 2014-09-09 | The Africa Memory (aka air.com.klon4enabor4e.AfricaMemory) application 1.0.1 for Android does... |
| CVE-2014-5547 | 2014-09-09 | The Mahjong Galaxy Space Lite (aka air.com.permadi.mahjongIris) application 2.5 for... |
| CVE-2014-5548 | 2014-09-09 | The Christmas Words (aka air.com.sevenBulls.summerWords) application 1.0.1 for Android does... |
| CVE-2014-5549 | 2014-09-09 | The Puppy Slots (aka air.com.starluxstudios.PuppySlotsFree) application 3 for Android does... |
| CVE-2014-5550 | 2014-09-09 | The Animals! Kids Preschool Games (aka air.com.tribalnova.Animals) application 1.6.1 for... |
| CVE-2014-5551 | 2014-09-09 | The Alphabet & Spelling Kids Games (aka air.com.tribalnova.ilearnwith.ipad.App1En) application 1.4.2... |
| CVE-2014-5552 | 2014-09-09 | The Numbers & Addition! Math games (aka air.com.tribalnova.ilearnwith.ipad.App2En) application 1.4.3... |
| CVE-2014-5553 | 2014-09-09 | The Kids Preschool Learning Games (aka air.com.tribalnova.ilearnwith.ipad.App3En) application 1.3.2 for... |
| CVE-2014-5554 | 2014-09-09 | The Fun Preschool Creativity Game (aka air.com.tribalnova.ilearnwith.ipad.MotherAppEn) application 1.6.2 for... |
| CVE-2014-5555 | 2014-09-09 | The Counting & Addition Kids Games (aka air.com.tribalnova.ilearnwith.ipad.PokoAddEn) application 1.8.1... |
| CVE-2014-5556 | 2014-09-09 | The Fly Fishing & Fly Tying (aka air.com.yudu.ReaderAIR3209899) application 3.21.0... |
| CVE-2014-5557 | 2014-09-09 | The America's Economy for Phone (aka air.gov.census.mobile.phone.americaseconomy) application 1.5.2 for... |