Total
27484 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-8582 | 1 Fortinet | 7 Coyote Point Equalizer, Coyote Point Equalizer Firmware, Fortiadc-1000e and 4 more | 2017-09-08 | 6.4 MEDIUM | N/A |
| FortiNet FortiADC-E with firmware 3.1.1 before 4.0.5 and Coyote Point Equalizer with firmware 10.2.0a allows remote attackers to obtain access to arbitrary subnets via unspecified vectors. | |||||
| CVE-2014-8471 | 1 Ca | 1 Cloud Service Management | 2017-09-08 | 4.3 MEDIUM | N/A |
| CA Cloud Service Management (CSM) before Summer 2014 allows remote attackers to conduct replay attacks via unspecified vectors. | |||||
| CVE-2014-8327 | 1 Fal Sftp Project | 1 Fal Sftp | 2017-09-08 | 4.0 MEDIUM | N/A |
| The fal_sftp extension before 0.2.6 for TYPO3 uses weak permissions for sFTP driver files and folders, which allows remote authenticated users to obtain sensitive information via unspecified vectors. | |||||
| CVE-2014-7877 | 1 Hp | 1 Hp-ux | 2017-09-08 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors. | |||||
| CVE-2014-7875 | 1 Hp | 2 Laserjet Cm3530 Multifuction Printer, Laserjet Cm3530 Multifunction Printer Firmware | 2017-09-08 | 9.0 HIGH | N/A |
| Unspecified vulnerability on the HP LaserJet CM3530 Multifunction Printer CC519A and CC520A with firmware before 53.236.2 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors. | |||||
| CVE-2014-7203 | 1 Zeromq | 1 Zeromq | 2017-09-08 | 4.3 MEDIUM | N/A |
| libzmq (aka ZeroMQ/C++) 4.0.x before 4.0.5 does not ensure that nonces are unique, which allows man-in-the-middle attackers to conduct replay attacks via unspecified vectors. | |||||
| CVE-2014-7202 | 1 Zeromq | 1 Zeromq | 2017-09-08 | 4.3 MEDIUM | N/A |
| stream_engine.cpp in libzmq (aka ZeroMQ/C++)) 4.0.5 before 4.0.5 allows man-in-the-middle attackers to conduct downgrade attacks via a crafted connection request. | |||||
| CVE-2014-6236 | 1 Lumonet Php Include Project | 1 Lumonet Php Include | 2017-09-08 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the LumoNet PHP Include (lumophpinclude) extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary scripts via vectors related to extension links. | |||||
| CVE-2014-6235 | 1 Kennziffer | 1 Ke Dompdf | 2017-09-08 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the ke DomPDF extension before 0.0.5 for TYPO3 allows remote attackers to execute arbitrary code via unknown vectors. | |||||
| CVE-2014-6232 | 1 Ldap Project | 1 Ldap | 2017-09-08 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the LDAP (eu_ldap) extension before 2.8.18 for TYPO3 allows remote authenticated users to obtain sensitive information via unknown vectors. | |||||
| CVE-2014-6231 | 1 Cwt Frontend Edit Project | 1 Cwt Frontend Edit | 2017-09-08 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the CWT Frontend Edit (cwt_feedit) extension before 1.2.5 for TYPO3 allows remote authenticated users to execute arbitrary code via unknown vectors. | |||||
| CVE-2014-6133 | 1 Ibm | 1 Api Management | 2017-09-08 | 2.1 LOW | N/A |
| IBM API Management 3.x before 3.0.1.0 allows local users to obtain sensitive ciphertext information via unspecified vectors. | |||||
| CVE-2014-6082 | 1 Ibm | 2 Security Access Manager For Mobile, Security Access Manager For Web | 2017-09-08 | 4.0 MEDIUM | N/A |
| IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allow remote authenticated users to cause a denial of service (administration UI outage) via unspecified vectors. | |||||
| CVE-2016-3456 | 1 Oracle | 1 Complex Maintenance Repair And Overhaul | 2017-09-03 | 4.3 MEDIUM | 8.2 HIGH |
| Unspecified vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul component in Oracle Supply Chain Products Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Dialog Box. | |||||
| CVE-2016-3438 | 1 Oracle | 1 Configurator | 2017-09-03 | 6.4 MEDIUM | 8.2 HIGH |
| Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 12.0.6, 12.1, and 12.2 allows remote attackers to affect confidentiality and integrity via vectors related to JRAD Heartbeat. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that that this issue involves multiple cross-site scripting (XSS) vulnerabilities, which allow remote attackers to inject arbitrary web script or HTML via three unspecified parameters in an unknown JSP file. | |||||
| CVE-2016-3431 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-03 | 3.6 LOW | 6.4 MEDIUM |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420. | |||||
| CVE-2016-3428 | 1 Oracle | 1 Agile Engineering Data Management | 2017-09-03 | 1.8 LOW | 3.1 LOW |
| Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect availability via vectors related to Engineering Communication Interface. | |||||
| CVE-2016-3420 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-03 | 3.6 LOW | 6.4 MEDIUM |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3431. | |||||
| CVE-2016-5477 | 1 Oracle | 1 Glassfish Server | 2017-09-01 | 5.0 MEDIUM | 5.8 MEDIUM |
| Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration. | |||||
| CVE-2016-5476 | 1 Oracle | 1 Retail Integration Bus | 2017-09-01 | 6.5 MEDIUM | 7.6 HIGH |
| Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Install. | |||||