CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5876 matches found

Debian CVE•added 2014/10/10 10:0 a.m.•49 views

CVE-2014-3581

The cachemergeheadersout function in modules/cache/cacheutil.c in the modcache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via an empty HTTP Content-Type header...

5CVSS5.9AI score0.04809EPSS

Exploits0

UbuntuCve•added 2014/10/10 12:0 a.m.•31 views

CVE-2014-3581

5CVSS6.8AI score0.04809EPSS

Exploits0References2

Tenable Nessus•added 2014/10/10 12:0 a.m.•156 views

F5 Networks BIG-IP : Multiple GNU Bash vulnerabilities (SOL15629) (Shellshock)

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the modcgi and modcg...

10CVSS8.2AI score0.9422EPSS

Exploits157References12

Tenable Nessus•added 2014/10/10 12:0 a.m.•63 views

F5 Networks BIG-IP : Apache HTTP Expect header handling (SOL6669)

The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL6669. The text description of this plugin is C F5 Networks...

4.3CVSS7.3AI score0.91373EPSS

Exploits7References5

Check Point Advisories•added 2014/10/06 12:0 a.m.•15 views

Apache HTTP Server mod_cache Denial of Service (CVE-2013-4352)

A denial of service vulnerability exists in Apache HTTP server. A remote unauthenticated attacker can leverage this vulnerability by sending a malicious response to the target server. Successful exploitation would result in a denial of service condition on the target...

4.3CVSS2.1AI score0.24352EPSS

Exploits0

Tenable Nessus•added 2014/10/01 12:0 a.m.•45 views

CentOS 5 / 6 : php / php53 (CESA-2014:1326)

Updated php53 and php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severi...

6.8CVSS7.9AI score0.30214EPSS

Exploits5References7

OpenVAS•added 2014/10/01 12:0 a.m.•42 views

CentOS Update for php53 CESA-2014:1326 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7AI score0.30214EPSS

Exploits5References2

Tenable Nessus•added 2014/10/01 12:0 a.m.•242 views

Oracle Linux 7 : php (ELSA-2014-1327)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1327 advisory. - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix...

6.8CVSS7.3AI score0.37602EPSS

Exploits8References9

OSV•added 2014/09/30 10:55 a.m.•10 views

CVE-2014-6278

GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the modcgi and...

10CVSS9.7AI score0.91694EPSS

Exploits31References110

Prion•added 2014/09/30 10:55 a.m.•34 views

Design/Logic Flaw

10CVSS9.7AI score0.9422EPSS

Exploits155References110Affected Software1

ATTACKERKB•added 2014/09/30 10:55 a.m.•13 views

CVE-2014-6278

10CVSS7.3AI score0.9422EPSS

In wildExploits155References137

Cent OS•added 2014/09/30 10:27 a.m.•86 views

php, php53 security update

CentOS Errata and Security Advisory CESA-2014:1326 Updated php53 and php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring...

6.8CVSS7.2AI score0.30214EPSS

Exploits5References7

Debian CVE•added 2014/09/30 10:0 a.m.•57 views

CVE-2014-6278

10CVSS9AI score0.91694EPSS

Exploits31

Cvelist•added 2014/09/30 10:0 a.m.•44 views

CVE-2014-6278

8.4AI score0.91694EPSS

Exploits31References110

OSV•added 2014/09/30 12:0 a.m.•0 views

UBUNTU-CVE-2014-6278

8.8CVSS7.6AI score0.91694EPSS

Exploits31References7

UbuntuCve•added 2014/09/30 12:0 a.m.•154 views

CVE-2014-6278

10CVSS7.5AI score0.91694EPSS

Exploits31References6

Packet Storm•added 2014/09/29 12:0 a.m.•103 views

GNU Bash 4.3 Command Injection

GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment. Any Bash 4.43 and prior Modified by JSacco - [email protected] Exploit Pack 2014 How to run:...

10CVSS10AI score0.9422EPSS

Exploits130

OSV•added 2014/09/27 10:55 p.m.•11 views

CVE-2014-6277

GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of service uninitialized memory access, and untrusted-pointer read and write operations via a crafted...

10CVSS9.7AI score0.86752EPSS

Exploits16References110

Prion•added 2014/09/27 10:55 p.m.•57 views

Design/Logic Flaw

10CVSS9.7AI score0.9422EPSS

Exploits144References109Affected Software1

Cvelist•added 2014/09/27 10:0 p.m.•39 views

CVE-2014-6277

8.7AI score0.86752EPSS

Exploits16References109

Rows per page