| Page(s) : 1 ... 220 221 222 223 224 225 226 227 228 229 [230] 231 232 233 234 235 236 237 238 239 240 ... | Result(s) : 8823 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2014-05-08 | CVE-2013-6372 | cve | The Subversion plugin before 1.54 for Jenkins stores credentials using base64 encoding, which allows local users to obtain passwords and SSH private keys by reading a subversion... |
| 2.6 | 2014-05-08 | CVE-2013-3571 | cve | socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of servi... |
| 2.1 | 2014-05-08 | CVE-2013-0345 | cve | varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by... |
| 3.6 | 2014-05-08 | CVE-2012-5477 | cve | The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors. |
| 2.1 | 2014-05-08 | CVE-2014-3426 | cve | NCSA Mosaic 2.1 through 2.7b5 allows local users to cause a denial of service ("remote control" outage) by creating a /tmp/Mosaic.pid file for every possible PID. |
| 2.1 | 2014-05-08 | CVE-2014-3425 | cve | NCSA Mosaic 2.0 and earlier allows local users to cause a denial of service ("remote control" outage) by creating a /tmp/xmosaic.pid file for every possible PID. |
| 3.3 | 2014-05-08 | CVE-2014-3424 | cve | lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file. |
| 3.3 | 2014-05-08 | CVE-2014-3423 | cve | lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/Mosaic.##### temporary file. |
| 3.3 | 2014-05-08 | CVE-2014-3422 | cve | lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a temporary file under /tmp/esrc/. |
| 3.3 | 2014-05-08 | CVE-2014-3421 | cve | lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary file. |
| 2.6 | 2014-05-08 | CVE-2014-0595 | cve | /opt/novell/ncl/bin/nwrights in Novell Client for Linux in Novell Open Enterprise Server (OES) 11 Linux SP2 does not properly manage a certain array, which allows local users to... |
| 1.9 | 2014-05-07 | CVE-2013-7336 | cve | The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows ... |
| 3.5 | 2014-05-07 | CVE-2013-6726 | cve | Multiple cross-site scripting (XSS) vulnerabilities in WebProcess.srv in IBM TRIRIGA Application Platform 3.2.x and 3.3.x before 3.3.1.2 allow remote authenticated users to inje... |
| 3.5 | 2014-05-06 | CVE-2014-2347 | cve | Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request. |
| 2.1 | 2014-05-05 | CVE-2014-0164 | cve | openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which a... |
| 2.1 | 2014-05-02 | CVE-2014-0189 | cve | virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file. |
| 3.5 | 2014-05-02 | CVE-2014-1988 | cve | The Phone Messages feature in Cybozu Garoon 2.0.0 through 3.7 SP2 allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors. |
| 3.5 | 2014-05-01 | CVE-2014-0942 | cve | Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject... |
| 3.5 | 2014-05-01 | CVE-2014-0941 | cve | Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject... |
| 3.5 | 2014-05-01 | CVE-2013-6323 | cve | Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.33, 8.x before 8.0.0.9, and 8.5.x before 8.5.5.... |
| Page(s) : 1 ... 220 221 222 223 224 225 226 227 228 229 [230] 231 232 233 234 235 236 237 238 239 240 ... | Result(s) : 8823 |
