Skip to main content
CVE-2014-0948 MEDIUM This Month

Unspecified vulnerability in IBM Rational Software Architect Design Manager and Rational Rhapsody Design Manager 3.x and 4.x before 4.0.7 allows remote authenticated users to execute arbitrary code. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

IBM RCE Rhapsody Design Manager Rational Software Architect Design Manager
NVD
CVSS 2.0
6.0
EPSS
2.5%
CVE-2014-0947 MEDIUM This Month

Unspecified vulnerability in the server in IBM Rational Software Architect Design Manager 4.0.6 allows remote authenticated users to execute arbitrary code via a crafted update site. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

IBM RCE Rational Software Architect Design Manager
NVD
CVSS 2.0
6.0
EPSS
2.5%
CVE-2014-5117 MEDIUM This Month

Tor before 0.2.4.23 and 0.2.5 before 0.2.5.6-alpha maintains a circuit after an inbound RELAY_EARLY cell is received by a client, which makes it easier for remote attackers to conduct. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Tor
NVD
CVSS 2.0
5.8
EPSS
0.6%
CVE-2014-2356 MEDIUM This Month

Innominate mGuard before 7.6.4 and 8.x before 8.0.3 does not require authentication for snapshot downloads, which allows remote attackers to obtain sensitive information via a crafted HTTPS request. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Mguard Firmware
NVD
CVSS 2.0
4.3
EPSS
1.8%
CVE-2014-0915 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management 6.2 through 6.2.8, 6.x and 7.1 through 7.1.1.2, and 7.5 through 7.5.0.6; Maximo Asset Management 7.5 through 7.5.0.3. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM XSS Maximo Asset Management Maximo Asset Management Essentials Maximo For Government +8
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2014-0914 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 6.x and 7.x through 7.5.0.6, Maximo Asset Management 7.5 through 7.5.0.3 and 7.5.1 through 7.5.1.2 for. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM XSS Maximo Asset Management Maximo Asset Management Essentials Maximo For Government +8
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2014-3025 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in IBM Maximo Asset Management 6.2 through 6.2.8, 6.x and 7.1 through 7.1.1.2, and 7.5 through 7.5.0.6; Maximo Asset Management 7.5 through 7.5.0.3. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

IBM XSS Maximo Asset Management Maximo Asset Management Essentials Maximo For Government +8
NVD
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy