Skip to main content
CVE-2014-2935 CRITICAL Act Now

costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows remote attackers to execute arbitrary commands via shell metacharacters in a methodCall element in a PHP XMLRPC request. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection PHP Caldera
NVD
CVSS 2.0
10.0
EPSS
1.5%
CVE-2014-2136 CRITICAL Act Now

Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Buffer Overflow RCE Webex Advanced Recording Format Player +1
NVD
CVSS 2.0
9.3
EPSS
4.3%
CVE-2014-2135 CRITICAL Act Now

Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Buffer Overflow RCE Webex Advanced Recording Format Player +1
NVD
CVSS 2.0
9.3
EPSS
4.3%
CVE-2014-2133 CRITICAL Act Now

Buffer overflow in Cisco Advanced Recording Format (ARF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a denial of. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Buffer Overflow RCE Webex Advanced Recording Format Player +1
NVD
CVSS 2.0
9.3
EPSS
4.3%
CVE-2014-2134 CRITICAL Act Now

Heap-based buffer overflow in Cisco WebEx Recording Format (WRF) player T27 LD before SP32 EP16, T28 before T28.12, and T29 before T29.2 allows remote attackers to execute arbitrary code or cause a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Cisco Buffer Overflow RCE Webex Advanced Recording Format Player +1
NVD
CVSS 2.0
9.3
EPSS
2.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy