| Page(s) : 1 ... 214 215 216 217 218 219 220 221 222 223 [224] 225 226 227 228 229 230 231 232 233 234 ... | Result(s) : 9841 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2014-12-15 | CVE-2014-9252 | cve | Zenoss Core through 5 Beta 3 stores cleartext passwords in the session database, which might allow local users to obtain sensitive information by reading database entries, aka Z... |
| 3.3 | 2014-12-15 | CVE-2014-8610 | cve | AndroidManifest.xml in Android before 5.0.0 does not require the SEND_SMS permission for the SmsReceiver receiver, which allows attackers to send stored SMS messages, and conseq... |
| 3.3 | 2014-12-12 | CVE-2014-8134 | cve | The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier ... |
| 2.9 | 2014-12-12 | CVE-2014-6381 | cve | Juniper WLC devices with WLAN Software releases 8.0.x before 8.0.4, 9.0.x before 9.0.2.11, 9.0.3.x before 9.0.3.5, and 9.1.x before 9.1.1, when "Proxy ARP" or "No Broadcast" fea... |
| 3.5 | 2014-12-12 | CVE-2014-6145 | cve | Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence 10.1 before IF10, 10.1.1 before IF9, 10.2 before IF11, 10.2.1 before IF8, and 10.2.1.1... |
| 2.1 | 2014-12-11 | CVE-2014-6143 | cve | The IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows local users to obtain sensitive information by reading a response. |
| 2.1 | 2014-12-11 | CVE-2014-1595 | cve | Mozilla Firefox before 34.0, Firefox ESR 31.x before 31.3, and Thunderbird before 31.3 on Apple OS X 10.10 omit a CoreGraphics disable-logging action that is needed by jemalloc-... |
| 3.5 | 2014-12-11 | CVE-2014-6163 | cve | Cross-site scripting (XSS) vulnerability on the IBM WebSphere DataPower XC10 appliance 2.1 and 2.5 before FP4 allows remote authenticated users to inject arbitrary web script or... |
| 3.5 | 2014-12-11 | CVE-2014-6215 | cve | Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 before 7.0.0.2 CF29, 8.0.0 through 8.0.0.1 CF14, a... |
| 2.1 | 2014-12-11 | DSA-3099 | Debian | dbus security update |
| 3.5 | 2014-12-11 | CVE-2014-7264 | cve | Multiple cross-site scripting (XSS) vulnerabilities in admin/themes/default/pages/manage_users.twig in the Users Management feature in the admin component in Chyrp before 2.5.1 ... |
| 3.5 | 2014-12-10 | CVE-2014-6336 | cve | Outlook Web App (OWA) in Microsoft Exchange Server 2013 SP1 and Cumulative Update 6 does not properly validate redirection tokens, which allows remote attackers to redirect user... |
| 3.5 | 2014-12-10 | CVE-2014-9362 | cve | Cross-site scripting (XSS) vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated user... |
| 3.6 | 2014-12-09 | CVE-2014-8737 | cve | Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a .. (dot dot) or full path name in an archive to (... |
| 3.2 | 2014-12-08 | GLSA-201412-02 | Gentoo | nfs-utils: Information disclosure |
| 3.5 | 2014-12-08 | CVE-2014-9346 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Hierarchical Select module 6.x-3.x before 6.x-3.9 for Drupal allow remote authenticated users with certain permissions... |
| 2.1 | 2014-12-06 | CVE-2014-3099 | cve | Unspecified vulnerability in the Security component in IBM Systems Director 6.3.0 through 6.3.5 allows local users to obtain sensitive information via unknown vectors. |
| 3.2 | 2014-12-06 | CVE-2014-7251 | cve | XML external entity (XXE) vulnerability in the WebHMI server in Yokogawa Electric Corporation FAST/TOOLS before R9.05-SP2 allows local users to cause a denial of service (CPU or... |
| 2.1 | 2014-12-05 | CVE-2014-3561 | cve | The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local use... |
| 2.1 | 2014-12-05 | CVE-2014-4701 | cve | The check_dhcp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnera... |
| Page(s) : 1 ... 214 215 216 217 218 219 220 221 222 223 [224] 225 226 227 228 229 230 231 232 233 234 ... | Result(s) : 9841 |
