| Page(s) : 1 ... 236 237 238 239 240 241 242 243 244 245 [246] 247 248 249 250 251 252 253 254 255 256 ... | Result(s) : 9846 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.3 | 2014-05-19 | CVE-2014-3714 | cve | The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service (crash) vi... |
| 2.1 | 2014-05-19 | CVE-2013-4427 | cve | pyxtrlock before 0.2 does not properly check the return values of the (1) xcb_grab_pointer and (2) xcb_grab_keyboard XCB library functions, which allows physically proximate att... |
| 3.6 | 2014-05-19 | CVE-2013-4426 | cve | pyxtrlock before 0.1 uses an incorrect variable name, which allows physically proximate attackers to bypass the lock screen via multiple failed authentication attempts, which tr... |
| 2.1 | 2014-05-17 | CVE-2013-4498 | cve | The Spaces OG submodule in the Spaces module 6.x-3.x before 6.x-3.7 for Drupal does not properly delete organic group group spaces content when using the option to move to a new... |
| 2.1 | 2014-05-15 | CVE-2013-1810 | cve | Multiple cross-site scripting (XSS) vulnerabilities in core/summary_api.php in MantisBT 1.2.12 allow remote authenticated users with manager or administrator permissions to inje... |
| 2.1 | 2014-05-14 | CVE-2013-4455 | cve | Katello Installer before 0.0.18 uses world-readable permissions for /etc/pki/tls/private/katello-node.key when deploying a child Pulp node, which allows local users to obtain th... |
| 2.6 | 2014-05-13 | CVE-2013-4504 | cve | The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers to read arbitrary node comments via a crafted URL. |
| 2.1 | 2014-05-13 | CVE-2013-4503 | cve | Cross-site scripting (XSS) vulnerability in the Feed Element Mapper module for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbit... |
| 2.1 | 2014-05-12 | CVE-2013-4577 | cve | A certain Debian patch for GNU GRUB uses world-readable permissions for grub.cfg, which allows local users to obtain password hashes, as demonstrated by reading the password_pbk... |
| 2.1 | 2014-05-12 | MDVSA-2014:085 | Mandriva | Updated ldns packages fix security vulnerability: ldns-keygen creates a private key with the default permissions according to the users umask, which in most cases will cause ... |
| 2.1 | 2014-05-11 | CVE-2014-1738 | cve | The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing of an FDRAWCMD ... |
| 1.7 | 2014-05-09 | CVE-2014-2603 | cve | Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain ... |
| 3.5 | 2014-05-09 | CVE-2014-0945 | cve | Cross-site scripting (XSS) vulnerability in the RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before ... |
| 3.6 | 2014-05-08 | CVE-2012-5477 | cve | The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors. |
| 2.1 | 2014-05-08 | CVE-2013-0345 | cve | varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by... |
| 2.6 | 2014-05-08 | CVE-2013-3571 | cve | socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of servi... |
| 2.1 | 2014-05-08 | CVE-2013-6372 | cve | The Subversion plugin before 1.54 for Jenkins stores credentials using base64 encoding, which allows local users to obtain passwords and SSH private keys by reading a subversion... |
| 2.1 | 2014-05-08 | CVE-2014-0056 | cve | The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers... |
| 3.3 | 2014-05-08 | CVE-2014-1934 | cve | tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file. |
| 2.1 | 2014-05-08 | CVE-2014-3426 | cve | NCSA Mosaic 2.1 through 2.7b5 allows local users to cause a denial of service ("remote control" outage) by creating a /tmp/Mosaic.pid file for every possible PID. |
| Page(s) : 1 ... 236 237 238 239 240 241 242 243 244 245 [246] 247 248 249 250 251 252 253 254 255 256 ... | Result(s) : 9846 |
