| Page(s) : 1 [2] | Result(s) : 35 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5 | 2014-11-24 | CVE-2014-8415 | cve | Race condition in the chan_pjsip channel driver in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 allows remote attackers to cause a denial of service (assertion... |
| 5 | 2014-11-24 | CVE-2014-8416 | cve | Use-after-free vulnerability in the PJSIP channel driver in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1, when using the res_pjsip_refer module, allows remote ... |
| 5 | 2014-11-24 | CVE-2014-8627 | cve | PolarSSL 1.3.8 does not properly negotiate the signature algorithm to use, which allows remote attackers to conduct downgrade attacks via unspecified vectors. |
| 5 | 2014-11-24 | CVE-2014-9016 | cve | The password hashing API in Drupal 7.x before 7.34 and the Secure Password Hashes (aka phpass) module 6.x-2.x before 6.x-2.1 for Drupal allows remote attackers to cause a denial... |
| 5.5 | 2014-11-24 | CVE-2014-7837 | cve | mod/wiki/admin.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allows remote authenticated users to remove wiki pages by leveraging ... |
| 6.1 | 2014-11-24 | CVE-2010-5312 | cve | Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML vi... |
| 6.4 | 2014-11-24 | CVE-2014-1424 | cve | apparmor_parser in the apparmor package before 2.8.95~2430-0ubuntu5.1 in Ubuntu 14.04 allows attackers to bypass AppArmor policies via unspecified vectors, related to a "miscomp... |
| 6.5 | 2014-11-24 | CVE-2014-8417 | cve | ConfBridge in Asterisk 11.x before 11.14.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 11.6 before 11.6-cert8 allows remote authenticated users to (1) gai... |
| 6.8 | 2014-11-24 | CVE-2014-7836 | cve | Multiple cross-site request forgery (CSRF) vulnerabilities in the LTI module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allow remot... |
| 6.8 | 2014-11-24 | CVE-2014-7838 | cve | Multiple cross-site request forgery (CSRF) vulnerabilities in the Forum module in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 allow rem... |
| 6.8 | 2014-11-24 | CVE-2014-9015 | cve | Drupal 6.x before 6.34 and 7.x before 7.34 allows remote attackers to hijack sessions via a crafted request, as demonstrated by a crafted request to a server that supports both ... |
| 7.1 | 2014-11-24 | CVE-2014-9030 | cve | The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leve... |
| 7.5 | 2014-11-24 | CVE-2014-7845 | cve | The generate_password function in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before 2.6.6, and 2.7.x before 2.7.3 does not provide a sufficient number of possible temporar... |
| 7.5 | 2014-11-24 | CVE-2014-8413 | cve | The res_pjsip_acl module in Asterisk Open Source 12.x before 12.7.1 and 13.x before 13.0.1 does not properly create and load ACLs defined in pjsip.conf at startup, which allows ... |
| 9 | 2014-11-24 | CVE-2014-8418 | cve | The DB dialplan function in Asterisk Open Source 1.8.x before 1.8.32, 11.x before 11.1.4.1, 12.x before 12.7.1, and 13.x before 13.0.1 and Certified Asterisk 1.8 before 1.8.28-c... |
| Page(s) : 1 [2] | Result(s) : 35 |
