| Page(s) : 1 ... 237 238 239 240 241 242 243 244 245 246 [247] 248 249 250 251 252 253 254 255 256 257 ... | Result(s) : 9846 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.6 | 2014-05-08 | CVE-2012-5477 | cve | The smart proxy in Foreman before 1.1 uses a umask set to 0, which allows local users to modify files created by the daemon via unspecified vectors. |
| 2.1 | 2014-05-08 | CVE-2013-0345 | cve | varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and the log files in the directory, which allows local users to obtain sensitive information by... |
| 2.6 | 2014-05-08 | CVE-2013-3571 | cve | socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used for a listen type address and the fork option is enabled, allows remote attackers to cause a denial of servi... |
| 2.1 | 2014-05-08 | CVE-2013-6372 | cve | The Subversion plugin before 1.54 for Jenkins stores credentials using base64 encoding, which allows local users to obtain passwords and SSH private keys by reading a subversion... |
| 2.1 | 2014-05-08 | CVE-2014-0056 | cve | The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers... |
| 3.5 | 2014-05-08 | CVE-2014-0134 | cve | The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse before 2014.1, when using libvirt to spawn images and use_cow_images is set to false, al... |
| 1.9 | 2014-05-08 | CVE-2014-0135 | cve | Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other se... |
| 3.3 | 2014-05-08 | CVE-2014-1934 | cve | tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for Python allows local users to modify arbitrary files via a symlink attack on a temporary file. |
| 2.1 | 2014-05-08 | CVE-2014-3123 | cve | Cross-site scripting (XSS) vulnerability in admin/manage-images.php in the NextCellent Gallery plugin before 1.19.18 for WordPress allows remote authenticated users with the Nex... |
| 3.5 | 2014-05-07 | CVE-2013-6726 | cve | Multiple cross-site scripting (XSS) vulnerabilities in WebProcess.srv in IBM TRIRIGA Application Platform 3.2.x and 3.3.x before 3.3.1.2 allow remote authenticated users to inje... |
| 1.9 | 2014-05-07 | CVE-2013-7336 | cve | The qemuMigrationWaitForSpice function in qemu/qemu_migration.c in libvirt before 1.1.3 does not properly enter a monitor when performing seamless SPICE migration, which allows ... |
| 3.5 | 2014-05-06 | CVE-2014-2347 | cve | Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request. |
| 2.1 | 2014-05-05 | CVE-2014-0164 | cve | openshift-origin-broker-util, as used in Red Hat OpenShift Enterprise 1.2.7 and 2.0.5, uses world-readable permissions for the mcollective client.cfg configuration file, which a... |
| 2.1 | 2014-05-05 | USN-2194-1 | Ubuntu | OpenStack Neutron vulnerability |
| 2.6 | 2014-05-03 | GLSA-201405-02 | Gentoo | libSRTP: Denial of Service |
| 3.5 | 2014-05-02 | CVE-2014-1988 | cve | The Phone Messages feature in Cybozu Garoon 2.0.0 through 3.7 SP2 allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors. |
| 2.1 | 2014-05-02 | CVE-2014-0189 | cve | virt-who uses world-readable permissions for /etc/sysconfig/virt-who, which allows local users to obtain password for hypervisors by reading the file. |
| 3.5 | 2014-05-01 | CVE-2013-6323 | cve | Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.33, 8.x before 8.0.0.9, and 8.5.x before 8.5.5.... |
| 3.5 | 2014-05-01 | CVE-2014-0941 | cve | Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject... |
| 3.5 | 2014-05-01 | CVE-2014-0942 | cve | Cross-site scripting (XSS) vulnerability in webtop/eventviewer/eventViewer.jsp in the Web GUI in IBM Netcool/OMNIbus 7.4.0 before FP2 allows remote authenticated users to inject... |
| Page(s) : 1 ... 237 238 239 240 241 242 243 244 245 246 [247] 248 249 250 251 252 253 254 255 256 257 ... | Result(s) : 9846 |
