Skip to main content
CVE-2014-5203 HIGH PATCH This Week

wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before 3.9.2 might allow remote attackers to execute arbitrary code via crafted serialized data. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE WordPress PHP
NVD
CVSS 2.0
7.5
EPSS
6.9%
CVE-2014-5206 HIGH PATCH This Week

The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNT_LOCK_READONLY bit across a remount of a bind mount, which allows local users to bypass an. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Linux Linux Kernel Ubuntu Linux
NVD GitHub
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy