# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
43801 |
CVE-2014-0061 |
264 |
|
+Priv |
2014-03-31 |
2017-12-15 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
The validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a function that is (1) defined in another language or (2) not allowed to be directly called by the user due to permissions. |
43802 |
CVE-2014-0060 |
264 |
|
|
2014-03-31 |
2017-12-15 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or remove arbitrary users to that role by calling the SET ROLE command before the associated GRANT command. |
43803 |
CVE-2014-0059 |
200 |
|
+Info |
2014-11-17 |
2016-09-30 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
JBoss SX and PicketBox, as used in Red Hat JBoss Enterprise Application Platform (EAP) before 6.2.3, use world-readable permissions on audit.log, which allows local users to obtain sensitive information by reading this file. |
43804 |
CVE-2014-0058 |
310 |
|
|
2014-02-26 |
2017-01-06 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
The security audit functionality in Red Hat JBoss Enterprise Application Platform (EAP) 6.x before 6.2.1 logs request parameters in plaintext, which might allow local users to obtain passwords by reading the log files. |
43805 |
CVE-2014-0056 |
287 |
|
|
2014-05-08 |
2014-06-05 |
2.1 |
None |
Remote |
High |
Single system |
Partial |
None |
None |
The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not check the tenant id when creating ports, which allows remote authenticated users to plug ports into the routers of arbitrary tenants via the device id in a port-create command. |
43806 |
CVE-2014-0055 |
|
|
DoS |
2014-03-26 |
2019-04-22 |
5.5 |
None |
Local Network |
Low |
Single system |
None |
None |
Complete |
The get_rx_bufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly handle vhost_get_vq_desc errors, which allows guest OS users to cause a denial of service (host OS crash) via unspecified vectors. |
43807 |
CVE-2014-0054 |
352 |
|
DoS CSRF |
2014-04-17 |
2018-04-19 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The Jaxb2RootElementHttpMessageConverter in Spring MVC in Spring Framework before 3.2.8 and 4.0.0 before 4.0.2 does not disable external entity resolution, which allows remote attackers to read arbitrary files, cause a denial of service, and conduct CSRF attacks via crafted XML, aka an XML External Entity (XXE) issue. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4152, CVE-2013-7315, and CVE-2013-6429. |
43808 |
CVE-2014-0053 |
264 |
|
Dir. Trav. +Info |
2014-04-15 |
2018-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
The default configuration of the Resources plugin 1.0.0 before 1.2.6 for Pivotal Grails 2.0.0 before 2.3.6 does not properly restrict access to files in the WEB-INF directory, which allows remote attackers to obtain sensitive information via a direct request. NOTE: this identifier has been SPLIT due to different researchers and different vulnerability types. See CVE-2014-2857 for the META-INF variant and CVE-2014-2858 for the directory traversal. |
43809 |
CVE-2014-0047 |
|
|
|
2017-10-06 |
2017-10-13 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
Docker before 1.5 allows local users to have unspecified impact via vectors involving unsafe /tmp usage. |
43810 |
CVE-2014-0046 |
79 |
|
XSS |
2014-02-27 |
2018-08-13 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
Cross-site scripting (XSS) vulnerability in the link-to helper in Ember.js 1.2.x before 1.2.2, 1.3.x before 1.3.2, and 1.4.x before 1.4.0-beta.6, when used in non-block form, allows remote attackers to inject arbitrary web script or HTML via the title attribute. |
43811 |
CVE-2014-0044 |
119 |
|
DoS Overflow |
2014-02-07 |
2014-03-05 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The opus_packet_get_samples_per_frame function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service (crash) via a crafted length prefix value, which triggers a NULL pointer dereference or a heap-based buffer over-read (aka "out-of-bounds array access"). |
43812 |
CVE-2014-0043 |
200 |
|
+Info |
2017-10-02 |
2017-10-11 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
In Apache Wicket 1.5.10 or 6.13.0, by issuing requests to special urls handled by Wicket, it is possible to check for the existence of particular classes in the classpath and thus check whether a third party library with a known security vulnerability is in use. |
43813 |
CVE-2014-0042 |
310 |
|
|
2014-06-02 |
2014-06-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets gpgcheck to 0 for certain templates, which disables GPG signature checking on downloaded packages and allows man-in-the-middle attackers to install arbitrary packages via unspecified vectors. |
43814 |
CVE-2014-0041 |
310 |
|
|
2014-06-02 |
2014-06-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, sets sslverify to false for certain Yum repositories, which disables SSL protection and allows man-in-the-middle attackers to prevent updates via unspecified vectors. |
43815 |
CVE-2014-0040 |
|
|
|
2014-06-02 |
2014-06-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
OpenStack Heat Templates (heat-templates), as used in Red Hat Enterprise Linux OpenStack Platform 4.0, uses an HTTP connection to download (1) packages and (2) signing keys from Yum repositories, which allows man-in-the-middle attackers to prevent updates via unspecified vectors. |
43816 |
CVE-2014-0039 |
|
|
Exec Code |
2014-02-07 |
2014-02-21 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory. |
43817 |
CVE-2014-0038 |
20 |
2
|
+Priv |
2014-02-06 |
2018-01-02 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter. |
43818 |
CVE-2014-0037 |
20 |
|
DoS |
2014-04-28 |
2014-04-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The ValidateUserLogon function in provider/libserver/ECSession.cpp in Zarafa 5.00 before 7.1.8 beta2 allows remote attackers to cause a denial of service (crash) via vectors related to "a NULL pointer of the username." |
43819 |
CVE-2014-0036 |
310 |
|
|
2014-04-17 |
2014-04-18 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors. |
43820 |
CVE-2014-0035 |
310 |
|
+Info |
2014-07-07 |
2015-04-22 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The SymmetricBinding in Apache CXF before 2.6.13 and 2.7.x before 2.7.10, when EncryptBeforeSigning is enabled and the UsernameToken policy is set to an EncryptedSupportingToken, transmits the UsernameToken in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network. |
43821 |
CVE-2014-0034 |
20 |
|
|
2014-07-07 |
2015-04-22 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The SecurityTokenService (STS) in Apache CXF before 2.6.12 and 2.7.x before 2.7.9 does not properly validate SAML tokens when caching is enabled, which allows remote attackers to gain access via an invalid SAML token. |
43822 |
CVE-2014-0033 |
20 |
|
|
2014-02-26 |
2019-04-15 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
org/apache/catalina/connector/CoyoteAdapter.java in Apache Tomcat 6.0.33 through 6.0.37 does not consider the disableURLRewriting setting when handling a session ID in a URL, which allows remote attackers to conduct session fixation attacks via a crafted URL. |
43823 |
CVE-2014-0032 |
20 |
|
DoS |
2014-02-14 |
2017-08-28 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the server root and request methods other than GET, as demonstrated by the "svn ls http://svn.example.com" command. |
43824 |
CVE-2014-0031 |
264 |
|
|
2014-01-15 |
2014-02-25 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
The (1) ListNetworkACL and (2) listNetworkACLLists APIs in Apache CloudStack before 4.2.1 allow remote authenticated users to list network ACLS for other users via a crafted request. |
43825 |
CVE-2014-0029 |
79 |
|
XSS |
2017-10-16 |
2017-11-07 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Multiple cross-site scripting (XSS) vulnerabilities in the SAM web application in Red Hat katello-headpin allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. |
43826 |
CVE-2014-0028 |
264 |
|
Bypass +Info |
2014-01-24 |
2015-01-02 |
4.3 |
None |
Local Network |
Medium |
Not required |
Partial |
None |
Partial |
libvirt 1.1.1 through 1.2.0 allows context-dependent attackers to bypass the domain:getattr and connect:search_domains restrictions in ACLs and obtain sensitive domain object information via a request to the (1) virConnectDomainEventRegister and (2) virConnectDomainEventRegisterAny functions in the event registration API. |
43827 |
CVE-2014-0027 |
59 |
|
|
2014-01-25 |
2014-02-21 |
3.3 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
None |
The play_wave_from_socket function in audio/auserver.c in Flite 1.4 allows local users to modify arbitrary files via a symlink attack on /tmp/awb.wav. NOTE: some of these details are obtained from third party information. |
43828 |
CVE-2014-0022 |
20 |
|
Bypass |
2014-01-26 |
2014-01-27 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
The installUpdates function in yum-cron/yum-cron.py in yum 3.4.3 and earlier does not properly check the return value of the sigCheckPkg function, which allows remote attackers to bypass the RMP package signing restriction via an unsigned package. |
43829 |
CVE-2014-0020 |
20 |
|
DoS |
2014-02-06 |
2014-03-16 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The IRC protocol plugin in libpurple in Pidgin before 2.10.8 does not validate argument counts, which allows remote IRC servers to cause a denial of service (application crash) via a crafted message. |
43830 |
CVE-2014-0019 |
119 |
|
DoS Overflow |
2014-02-04 |
2018-10-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CONNECT address in the command line. |
43831 |
CVE-2014-0018 |
264 |
|
|
2014-02-14 |
2017-01-06 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.0 and JBoss WildFly Application Server, when run under a security manager, do not properly restrict access to the Modular Service Container (MSC) service registry, which allows local users to modify the server via a crafted deployment. |
43832 |
CVE-2014-0017 |
310 |
|
+Info |
2014-03-14 |
2014-03-26 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared between children processes and allows local users to obtain sensitive information by leveraging a pid collision. |
43833 |
CVE-2014-0016 |
332 |
|
|
2014-03-24 |
2017-01-26 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator (PRNG), which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC (ECDSA) or DSA certificates. |
43834 |
CVE-2014-0015 |
287 |
|
|
2014-02-01 |
2018-10-09 |
4.0 |
None |
Remote |
High |
Not required |
Partial |
Partial |
None |
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via a request. |
43835 |
CVE-2014-0014 |
79 |
|
XSS |
2018-02-15 |
2018-10-16 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
Ember.js 1.0.x before 1.0.1, 1.1.x before 1.1.3, 1.2.x before 1.2.1, 1.3.x before 1.3.1, and 1.4.x before 1.4.0-beta.2 allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging an application using the "{{group}}" Helper and a crafted payload. |
43836 |
CVE-2014-0013 |
79 |
|
XSS |
2018-02-15 |
2018-08-13 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
Ember.js 1.0.x before 1.0.1, 1.1.x before 1.1.3, 1.2.x before 1.2.1, 1.3.x before 1.3.1, and 1.4.x before 1.4.0-beta.2 allows remote attackers to conduct cross-site scripting (XSS) attacks by leveraging an application that contains templates whose context is set to a user-supplied primitive value and also contain the `{{this}}` special Handlebars variable. |
43837 |
CVE-2014-0012 |
264 |
|
+Priv |
2014-05-19 |
2015-12-14 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, which allows local users to gain privileges by pre-creating a temporary directory with a user's uid. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1402. |
43838 |
CVE-2014-0010 |
352 |
|
CSRF |
2014-01-20 |
2016-04-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Multiple cross-site request forgery (CSRF) vulnerabilities in user/profile/index.php in Moodle through 2.2.11, 2.3.x before 2.3.11, 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 allow remote attackers to hijack the authentication of administrators for requests that delete (1) categories or (2) fields. |
43839 |
CVE-2014-0009 |
264 |
|
|
2014-01-20 |
2014-02-21 |
5.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
None |
course/loginas.php in Moodle through 2.2.11, 2.3.x before 2.3.11, 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 does not enforce the moodle/site:accessallgroups capability requirement for outside-group users in a SEPARATEGROUPS configuration, which allows remote authenticated users to perform "login as" actions via a direct request. |
43840 |
CVE-2014-0008 |
255 |
|
+Info |
2014-01-20 |
2014-02-21 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
lib/adminlib.php in Moodle through 2.3.11, 2.4.x before 2.4.8, 2.5.x before 2.5.4, and 2.6.x before 2.6.1 logs cleartext passwords, which allows remote authenticated administrators to obtain sensitive information by reading the Config Changes Report. |
43841 |
CVE-2014-0006 |
200 |
|
+Info |
2014-01-22 |
2014-03-08 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The TempURL middleware in OpenStack Object Storage (Swift) 1.4.6 through 1.8.0, 1.9.0 through 1.10.0, and 1.11.0 allows remote attackers to obtain secret URLs by leveraging an object name and a timing side-channel attack. |
43842 |
CVE-2014-0005 |
264 |
|
|
2015-02-20 |
2015-03-27 |
3.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
None |
PicketBox and JBossSX, as used in Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2 and JBoss BRMS before 6.0.3 roll up patch 2, allows remote authenticated users to read and modify the application sever configuration and state by deploying a crafted application. |
43843 |
CVE-2014-0004 |
119 |
|
DoS Exec Code Overflow |
2014-03-11 |
2016-12-30 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Stack-based buffer overflow in udisks before 1.0.5 and 2.x before 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point. |
43844 |
CVE-2013-7482 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The reflex-gallery plugin before 1.4.3 for WordPress has XSS. |
43845 |
CVE-2013-7481 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The contact-form-plugin plugin before 3.3.5 for WordPress has XSS. |
43846 |
CVE-2013-7480 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The events-manager plugin before 5.3.6.1 for WordPress has XSS via the booking form and admin areas. |
43847 |
CVE-2013-7479 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field. |
43848 |
CVE-2013-7478 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The events-manager plugin before 5.5 for WordPress has XSS via EM_Ticket::get_post. |
43849 |
CVE-2013-7477 |
79 |
|
XSS |
2019-08-22 |
2019-08-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The events-manager plugin before 5.5.2 for WordPress has XSS in the booking form. |
43850 |
CVE-2013-7476 |
352 |
|
CSRF |
2019-08-14 |
2019-08-20 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The simple-fields plugin before 1.2 for WordPress has CSRF in the admin interface. |