Skip to main content
CVE-2014-8956 HIGH POC This Week

Stack-based buffer overflow in the K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow K7Av Sentry Device Driver
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-7136 HIGH POC This Week

Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver (aka K7Firewall Packet Driver) before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Buffer Overflow K7Firewall Packet Driver
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2014-6407 HIGH PATCH This Week

Docker before 1.3.2 allows remote attackers to write to arbitrary files and execute arbitrary code via a (1) symlink or (2) hard link attack in an image archive in a (a) pull or (b) load operation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Docker RCE
NVD
CVSS 2.0
7.5
EPSS
5.9%
CVE-2014-7840 HIGH This Week

The host_from_stream_offset function in arch_init.c in QEMU, when loading RAM during migration, allows remote attackers to execute arbitrary code via a crafted (1) offset or (2) length value in. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Qemu Enterprise Linux Desktop Enterprise Linux Eus Enterprise Linux Server +3
NVD
CVSS 2.0
7.5
EPSS
2.5%
CVE-2014-4323 HIGH This Week

The mdp_lut_hw_update function in drivers/video/msm/mdp.c in the MDP display driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Qualcomm Google Linux Linux Kernel
NVD
CVSS 2.0
7.5
EPSS
2.4%
CVE-2014-7260 HIGH This Week

The Server Side Includes (SSI) implementation in the File Upload BBS component in ULTRAPOP.JP i-HTTPD allows remote attackers to execute arbitrary commands by uploading files containing commands in. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Code Injection File Upload I Httpd
NVD
CVSS 2.0
7.5
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy