Skip to main content
CVE-2014-8503 HIGH POC THREAT Act Now

Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 12.7%.

Denial Of Service Buffer Overflow Fedora Binutils Ubuntu Linux
NVD
CVSS 2.0
7.5
EPSS
12.7%
CVE-2014-8502 HIGH POC THREAT Act Now

Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 10.7%.

Denial Of Service Buffer Overflow Fedora Binutils Ubuntu Linux
NVD
CVSS 2.0
7.5
EPSS
10.7%
CVE-2014-8501 HIGH POC This Week

The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) and possibly have other unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow Binutils Ubuntu Linux Fedora
NVD
CVSS 2.0
7.5
EPSS
7.9%
CVE-2014-9274 HIGH POC This Week

{\cb-999999999". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service RCE Buffer Overflow Unrtf Fedora +2
NVD
CVSS 2.0
7.5
EPSS
5.9%
CVE-2014-8504 HIGH POC This Week

Stack-based buffer overflow in the srec_scan function in bfd/srec.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow Ubuntu Linux Binutils Fedora
NVD
CVSS 2.0
7.5
EPSS
5.8%
CVE-2014-8485 HIGH POC This Week

The setup_group function in bfd/elf.c in libbfd in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted section. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Denial Of Service Code Injection Fedora Ubuntu Linux +1
NVD
CVSS 2.0
7.5
EPSS
4.2%
CVE-2014-9275 HIGH This Week

UnRTF allows remote attackers to cause a denial of service (out-of-bounds memory access and crash) and possibly execute arbitrary code via a crafted RTF file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service RCE Buffer Overflow Unrtf
NVD
CVSS 2.0
7.5
EPSS
3.3%
CVE-2014-9318 HIGH This Week

The raw_decode function in libavcodec/rawdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap access) and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Ffmpeg
NVD
CVSS 2.0
7.5
EPSS
1.0%
CVE-2014-9317 HIGH This Week

The decode_ihdr_chunk function in libavcodec/pngdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Ffmpeg
NVD
CVSS 2.0
7.5
EPSS
0.7%
CVE-2014-8737 LOW POC Monitor

Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier allow local users to delete arbitrary files via a .. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Ubuntu Linux Binutils Fedora
NVD
CVSS 2.0
3.6
EPSS
0.1%
CVE-2014-9316 HIGH This Week

The mjpeg_decode_app function in libavcodec/mjpegdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Ffmpeg
NVD
CVSS 2.0
7.5
EPSS
0.5%
CVE-2014-9351 MEDIUM PATCH This Month

engine/server/server.cpp in Teeworlds 0.6.x before 0.6.3 allows remote attackers to read memory and cause a denial of service (crash) via unspecified vectors. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Teeworlds
NVD GitHub
CVSS 2.0
6.4
EPSS
1.4%
CVE-2014-8484 MEDIUM This Month

The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a small S-record. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Binutils Fedora Ubuntu Linux
NVD
CVSS 2.0
5.0
EPSS
2.8%
CVE-2014-9319 MEDIUM This Month

The ff_hevc_decode_nal_sps function in libavcodec/hevc_ps.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Ffmpeg
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2014-9066 MEDIUM PATCH This Month

Xen 4.4.x and earlier, when using a large number of VCPUs, does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog. Rated medium severity (CVSS 4.7).

Denial Of Service Xen Opensuse
NVD
CVSS 2.0
4.7
EPSS
0.1%
CVE-2014-9065 MEDIUM PATCH This Month

common/spinlock.c in Xen 4.4.x and earlier does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and. Rated medium severity (CVSS 4.4).

Denial Of Service Xen Opensuse
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2014-9281 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in admin/copy_field.php in MantisBT before 1.2.18 allows remote attackers to inject arbitrary web script or HTML via the dest_id field. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS PHP Mantisbt
NVD GitHub
CVSS 2.0
4.3
EPSS
0.6%
CVE-2014-9352 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the mail administration login panel in Scalix Web Access 11.4.6.12377 allows remote attackers to inject arbitrary web script or HTML via unspecified. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS Web Access
NVD
CVSS 2.0
4.3
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy