Skip to main content
CVE-2014-0128 MEDIUM This Month

Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 55.0% and no vendor patch available.

Denial Of Service Squid Opensuse
NVD VulDB
CVSS 2.0
5.0
EPSS
55.0%
CVE-2014-2851 MEDIUM POC PATCH This Month

Integer overflow in the ping_init_sock function in net/ipv4/ping.c in the Linux kernel through 3.14.1 allows local users to cause a denial of service (use-after-free and system crash) or possibly. Rated medium severity (CVSS 6.9). Public exploit code available.

Denial Of Service Memory Corruption Linux Use After Free Linux Kernel +1
NVD Exploit-DB VulDB
CVSS 2.0
6.9
EPSS
0.2%
CVE-2014-0155 MEDIUM POC PATCH This Month

The ioapic_deliver function in virt/kvm/ioapic.c in the Linux kernel through 3.14.1 does not properly validate the kvm_irq_delivery_to_apic return value, which allows guest OS users to cause a denial. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Denial Of Service Linux Linux Kernel
NVD VulDB
CVSS 2.0
5.5
EPSS
0.1%
CVE-2014-2739 MEDIUM POC PATCH This Month

The cma_req_handler function in drivers/infiniband/core/cma.c in the Linux kernel 3.14.x through 3.14.1 attempts to resolve an RDMA over Converged Ethernet (aka RoCE) address that is properly. Rated medium severity (CVSS 4.6). Public exploit code available.

Denial Of Service Linux Linux Kernel
NVD GitHub VulDB
CVSS 2.0
4.6
EPSS
0.4%
CVE-2014-0077 MEDIUM PATCH This Month

drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service. Rated medium severity (CVSS 5.5). This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Denial Of Service Memory Corruption Linux Buffer Overflow Linux Kernel
NVD GitHub VulDB
CVSS 2.0
5.5
EPSS
0.2%
CVE-2014-0159 MEDIUM This Month

Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Openafs Debian Linux
NVD VulDB
CVSS 2.0
5.0
EPSS
1.4%
CVE-2014-0612 MEDIUM This Month

Unspecified vulnerability in Juniper Junos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Juniper Denial Of Service Junos Srx100 Srx110 +5
NVD VulDB
CVSS 2.0
5.0
EPSS
0.6%
CVE-2014-2852 MEDIUM This Month

OpenAFS before 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote attackers to cause a denial of service (performance degradation) via an invalid packet. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Openafs
NVD VulDB
CVSS 2.0
5.0
EPSS
0.5%
CVE-2014-2713 MEDIUM This Month

Juniper Junos before 11.4R11, 12.1 before 12.1R9, 12.2 before 12.2R7, 12.3R4 before 12.3R4-S3, 13.1 before 13.1R4, 13.2 before 13.2R2, and 13.3 before 13.3R1, as used in MX Series and T4000 routers,. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Juniper Denial Of Service Junos
NVD VulDB
CVSS 2.0
5.0
EPSS
0.5%
CVE-2014-2711 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 11.4R11, 11.4X27 before 11.4X27.62 (BBE), 12.1 before 12.1R9, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Juniper XSS Junos
NVD VulDB
CVSS 2.0
4.3
EPSS
0.4%
CVE-2014-2712 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10.4R10, 11.4 before 11.4R11, 12.1 before 12.1R9, 12.1X44 before 12.1X44-D30, 12.1X45 before. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Juniper XSS PHP Junos
NVD VulDB
CVSS 2.0
4.3
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy