Skip to main content
CVE-2014-6352 HIGH POC KEV PATCH THREAT Act Now

Windows OLE improperly handles crafted OLE objects in PowerPoint, allowing remote attackers to execute arbitrary code. This is a variant of the Sandworm OLE attack discovered in October 2014 via crafted PowerPoint presentations.

Microsoft RCE
NVD Exploit-DB VulDB
CVSS 3.1
7.8
EPSS
90.7%
Threat
9.3
CVE-2014-3676 HIGH POC This Week

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option.". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow RCE Shim
NVD
CVSS 2.0
7.5
EPSS
5.2%
CVE-2014-8325 HIGH PATCH This Week

The Calendar Base (cal) extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service (resource consumption) via vectors related to the PHP PCRE library. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service PHP Calender Base
NVD
CVSS 2.0
7.8
EPSS
0.9%
CVE-2014-3677 HIGH PATCH This Week

Unspecified vulnerability in Shim might allow attackers to execute arbitrary code via a crafted MOK list, which triggers memory corruption. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

RCE Buffer Overflow Shim
NVD
CVSS 2.0
7.5
EPSS
1.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy