| Max CVSS | 9.3 | Min CVSS | 1.7 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-5206 | 7.2 |
The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNT_LOCK_READONLY bit across a remount of a bind mount, which allows local users to bypass an intended read-only restriction and defeat certain sandbox
|
25-08-2023 - 15:26 | 18-08-2014 - 11:15 | |
| CVE-2019-0595 | 9.3 |
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0596, CVE-2019-0597, CVE-2019-0
|
24-08-2020 - 17:37 | 05-03-2019 - 23:29 | |
| CVE-2014-5207 | 6.2 |
fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNT_NODEV, MNT_NOSUID, and MNT_NOEXEC and changing MNT_ATIME_MASK during a remount of a bind mount, which allows local users to gain privileges, interfere with back
|
14-08-2020 - 18:14 | 18-08-2014 - 11:15 | |
| CVE-2011-2534 | 7.2 |
Buffer overflow in the clusterip_proc_write function in net/ipv4/netfilter/ipt_CLUSTERIP.c in the Linux kernel before 2.6.39 might allow local users to cause a denial of service or have unspecified other impact via a crafted write operation, related
|
27-07-2020 - 20:03 | 22-06-2011 - 23:55 | |
| CVE-2014-5098 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Search module before 1.2.2 in Jamroom allows remote attackers to inject arbitrary web script or HTML via the query string to search/results/.
|
09-10-2018 - 19:49 | 20-10-2014 - 15:55 | |
| CVE-2014-2388 | 6.1 |
The Storage and Access service in BlackBerry OS 10.x before 10.2.1.1925 on Q5, Q10, Z10, and Z30 devices does not enforce the password requirement for SMB filesystem access, which allows context-dependent attackers to read arbitrary files via (1) a s
|
09-10-2018 - 19:43 | 18-08-2014 - 11:15 | |
| CVE-2006-0554 | 1.7 |
Linux kernel 2.6 before 2.6.15.5 allows local users to obtain sensitive information via a crafted XFS ftruncate call, which may return stale data.
|
03-10-2018 - 21:35 | 07-03-2006 - 02:02 | |
| CVE-2014-5261 | 7.5 |
The graph settings script (graph_settings.php) in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a font size, related to the rrdtool commandline in lib/rrd.php.
|
08-09-2017 - 01:29 | 22-08-2014 - 14:55 | |
| CVE-2014-5262 | 7.5 |
SQL injection vulnerability in the graph settings script (graph_settings.php) in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
08-09-2017 - 01:29 | 22-08-2014 - 14:55 | |
| CVE-2014-1469 | 4.9 |
BlackBerry Enterprise Server 5.x before 5.0.4 MR7 and Enterprise Service 10.x before 10.2.2 log cleartext credentials during exception handling, which allows local users to obtain sensitive information by reading the exception log file.
|
29-08-2017 - 01:34 | 18-08-2014 - 11:15 | |
| CVE-2017-3868 | 4.3 |
A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. Mor
|
12-07-2017 - 01:29 | 17-03-2017 - 22:59 | |
| CVE-2003-0203 | 7.5 |
Buffer overflow in moxftp 2.2 and earlier allows remote malicious FTP servers to execute arbitrary code via a long FTP banner.
|
11-07-2017 - 01:29 | 11-04-2003 - 04:00 |