| Page(s) : 1 ... 219 220 221 222 223 224 225 226 227 228 [229] 230 231 232 233 234 235 236 237 238 239 ... | Result(s) : 8823 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2014-05-19 | CVE-2014-3717 | cve | Xen 4.4.x does not properly validate the load address for 64-bit ARM guest kernels, which allows local users to read system memory or cause a denial of service (crash) via a cra... |
| 1.9 | 2014-05-19 | CVE-2014-3716 | cve | Xen 4.4.x does not properly check alignment, which allows local users to cause a denial of service (crash) via an unspecified field in a DTB header in a 32-bit guest kernel. |
| 3.3 | 2014-05-19 | CVE-2014-3715 | cve | Buffer overflow in Xen 4.4.x allows local users to read system memory or cause a denial of service (crash) via a crafted 32-bit guest kernel, related to searching for an appende... |
| 3.3 | 2014-05-19 | CVE-2014-3714 | cve | The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service (crash) vi... |
| 2.1 | 2014-05-19 | CVE-2013-4427 | cve | pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate att... |
| 3.6 | 2014-05-19 | CVE-2013-4426 | cve | pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which tr... |
| 2.1 | 2014-05-17 | CVE-2013-4498 | cve | The Spaces OG submodule in the Spaces module 6.x-3.x before 6.x-3.7 for Drupal does not properly delete organic group group spaces content when using the option to move to a new... |
| 2.1 | 2014-05-15 | CVE-2013-1810 | cve | Multiple cross-site scripting (XSS) vulnerabilities in core/summary_api.php in MantisBT 1.2.12 allow remote authenticated users with manager or administrator permissions to inje... |
| 2.1 | 2014-05-14 | CVE-2013-4455 | cve | Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain th... |
| 2.6 | 2014-05-13 | CVE-2013-4504 | cve | The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers to read arbitrary node comments via a crafted URL. |
| 2.1 | 2014-05-13 | CVE-2013-4503 | cve | Cross-site scripting (XSS) vulnerability in the Feed Element Mapper module for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbit... |
| 2.1 | 2014-05-12 | CVE-2013-4577 | cve | A certain Debian patch for GNU GRUB uses world-readable permissions for grub.cfg, which allows local users to obtain password hashes, as demonstrated by reading the password_pbk... |
| 2.1 | 2014-05-11 | CVE-2014-1738 | cve | The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ... |
| 1.7 | 2014-05-09 | CVE-2014-2603 | cve | Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain ... |
| 3.5 | 2014-05-09 | CVE-2014-0945 | cve | Cross-site scripting (XSS) vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before ... |
| 2.1 | 2014-05-08 | CVE-2014-3123 | cve | Cross-site scripting (XSS) vulnerability in admin/manage-images.php in the NextCellent Gallery plugin before 1.19.18 for WordPress allows remote authenticated users with the Nex... |
| 3.3 | 2014-05-08 | CVE-2014-1934 | cve | tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file. |
| 1.9 | 2014-05-08 | CVE-2014-0135 | cve | Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other se... |
| 3.5 | 2014-05-08 | CVE-2014-0134 | cve | The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, al... |
| 2.1 | 2014-05-08 | CVE-2014-0056 | cve | The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers... |
| Page(s) : 1 ... 219 220 221 222 223 224 225 226 227 228 [229] 230 231 232 233 234 235 236 237 238 239 ... | Result(s) : 8823 |
