Skip to main content
CVE-2014-3883 MEDIUM This Month

Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Command Injection Usermin
NVD
CVSS 2.0
6.8
EPSS
0.5%
CVE-2014-4509 MEDIUM PATCH This Month

The MKDQUOTESAFE function in the Fan-out driver scripts in Fan-Out Platform Services in Novell Identity Manager (aka IDM) 4.0.2 allows local users to execute arbitrary commands by leveraging. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity.

Information Disclosure Identity Manager
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2014-3431 MEDIUM This Month

Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x before 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended. Rated medium severity (CVSS 4.3), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Encryption Desktop Pgp Desktop
NVD
CVSS 2.0
4.3
EPSS
0.0%
CVE-2013-6737 MEDIUM This Month

IBM System Storage Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.0 does not properly restrict the content of a dump file upon encountering a 1691 hardware fault, which allows remote. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Privilege Escalation Storwize Unified V7000 Software Storwize Unified V7000
NVD
CVSS 2.0
4.0
EPSS
0.3%
CVE-2014-3296 MEDIUM This Month

The XML programmatic interface (XML PI) in Cisco WebEx Meeting Server 1.5(.1.131) and earlier allows remote authenticated users to obtain sensitive meeting information via a crafted URL, aka Bug ID. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Information Disclosure Webex Meetings Server
NVD
CVSS 2.0
4.0
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy