Skip to main content
CVE-2014-8439 HIGH KEV THREAT Act Now

Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before 15.0.0.239 on Windows and OS X and before 11.2.202.424 on Linux, Adobe AIR before 15.0.0.293, Adobe AIR SDK before 15.0.0.302, and Adobe. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and EPSS exploitation probability 27.1%.

Buffer Overflow Denial Of Service RCE Adobe Microsoft
NVD VulDB
CVSS 3.1
8.8
EPSS
27.1%
Threat
4.1
CVE-2014-8001 HIGH PATCH This Week

Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to execute arbitrary code via an encoded media file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Cisco Buffer Overflow RCE Openh264
NVD GitHub
CVSS 2.0
7.5
EPSS
3.0%
CVE-2014-8002 HIGH PATCH This Week

Use-after-free vulnerability in decode_slice.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to execute arbitrary code via an encoded media file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Cisco Buffer Overflow RCE Openh264
NVD GitHub
CVSS 2.0
7.5
EPSS
2.1%
CVE-2014-8678 HIGH This Week

The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows remote attackers to "disclose" files via a crafted filename, related to "saveFile.". Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Zoho Information Disclosure Oputils
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2014-8367 HIGH This Week

SQL injection vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) 6.2.x, 6.3.x before 6.3.6, and 6.4.x before 6.4.2 allows remote attackers to execute arbitrary SQL commands via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Aruba Clearpass Policy Manager
NVD
CVSS 2.0
7.5
EPSS
0.8%
CVE-2014-1421 HIGH This Week

mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Ubuntu Ubuntu Linux
NVD
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy