Skip to main content
CVE-2014-7878 CRITICAL Act Now

The Application Lifecycle Service (ALS) in HP Helion Cloud Development Platform 1.0, when a virtual machine is derived from the Seed Node image, uses the same security keys across different. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 28.8% and no vendor patch available.

HP RCE Helion Cloud Development Platform
NVD
CVSS 2.0
10.0
EPSS
28.8%
CVE-2014-8567 CRITICAL Act Now

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data. Rated critical severity (CVSS 9.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Apache Mod Auth Mellon Enterprise Linux Desktop Enterprise Linux Server +4
NVD GitHub
CVSS 2.0
9.4
EPSS
3.6%
CVE-2014-5424 HIGH This Week

Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Rockwell Privilege Escalation RCE Connected Components Workbench
NVD
CVSS 2.0
7.5
EPSS
0.4%
CVE-2014-3689 HIGH This Week

The vmware-vga driver (hw/display/vmware_vga.c) in QEMU allows local guest users to write to qemu memory locations and gain privileges via unspecified parameters related to rectangle handling. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation VMware Qemu Debian Linux Ubuntu Linux
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-7815 MEDIUM This Month

The set_pixel_format function in ui/vnc.c in QEMU allows remote attackers to cause a denial of service (crash) via a small bytes_per_pixel value. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Qemu Debian Linux Enterprise Linux Desktop Enterprise Linux Eus +7
NVD
CVSS 2.0
5.0
EPSS
5.2%
CVE-2014-7991 MEDIUM This Month

The Remote Mobile Access Subsystem in Cisco Unified Communications Manager (CM) 10.0(1) and earlier does not properly validate the Subject Alternative Name (SAN) field of an X.509 certificate, which. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Cisco Information Disclosure Unified Communications Manager
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-7246 LOW PATCH Monitor

The Core Server in OpenAM 9.5.3 through 9.5.5, 10.0.0 through 10.0.2, 10.1.0-Xpress, and 11.0.0 through 11.0.2, when deployed on a multi-server network, allows remote authenticated users to cause a. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

Denial Of Service Openam
NVD
CVSS 2.0
3.5
EPSS
0.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy