Skip to main content
CVE-2014-3565 MEDIUM POC PATCH This Month

snmplib/mib.c in net-snmp 5.7.0 and earlier, when the -OQ option is used, allows remote attackers to cause a denial of service (snmptrapd crash) via a crafted SNMP trap message, which triggers a. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Mac Os X Ubuntu Linux Net Snmp
NVD
CVSS 2.0
5.0
EPSS
8.8%
CVE-2014-7204 MEDIUM POC PATCH This Month

jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Denial Of Service Ubuntu Linux Debian Linux Exuberant Ctags Mageia
NVD
CVSS 2.0
5.0
EPSS
2.8%
CVE-2014-6603 MEDIUM POC This Month

The SSHParseBanner function in SSH parser (app-layer-ssh.c) in Suricata before 2.0.4 allows remote attackers to bypass SSH rules, cause a denial of service (crash), or possibly have unspecified other. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Suricata Buffer Overflow
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2014-3399 MEDIUM This Month

The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA) Software 9.2(.2.4) and earlier does not properly manage session information during creation of a SharePoint handler, which allows. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Code Injection Microsoft RCE Cisco +1
NVD
CVSS 2.0
5.5
EPSS
0.1%
CVE-2014-4869 MEDIUM This Month

The Brocade Vyatta 5400 vRouter 6.4R(x), 6.6R(x), and 6.7R1 allows attackers to obtain sensitive encrypted-password information by leveraging membership in the operator group. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Vyatta 5400 Vrouter Software Vyatta 5400 Vrouter
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2014-4871 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in wlsecurity.html on NetCommWireless NB604N routers with firmware before GAN5.CZ56T-B-NC.AU-R4B030.EN allows remote attackers to inject arbitrary web script. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Nb604N Firmware Nb604N
NVD
CVSS 2.0
4.3
EPSS
0.9%
CVE-2014-0940 MEDIUM PATCH This Month

Multiple cross-site scripting (XSS) vulnerabilities in IBM Tivoli Service Automation Manager 7.2.2.2 before 7.2.2.2-TIV-TSAM-LA0041 allow remote attackers to inject arbitrary web script or HTML via. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

IBM XSS Tivoli Service Automation Manager
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-7189 MEDIUM PATCH This Month

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Privilege Escalation Go
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-4802 MEDIUM PATCH This Month

The Saved Search Admin component in the Process Admin Console in IBM Business Process Manager (BPM) 8.0 through 8.5.5 does not properly restrict task and instance listings in result sets, which. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity.

IBM Privilege Escalation Business Process Manager
NVD
CVSS 2.0
4.0
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy