| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2011-4517 | 6.8 |
The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a deni
|
20-12-2023 - 18:29 | 15-12-2011 - 03:57 | |
| CVE-2011-4516 | 6.8 |
Heap-based buffer overflow in the jpc_cox_getcompparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted numrlvls value in a coding st
|
20-12-2023 - 18:29 | 15-12-2011 - 03:57 | |
| CVE-2013-2034 | 6.8 |
Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for re
|
13-02-2023 - 04:42 | 14-05-2014 - 19:55 | |
| CVE-2013-2033 | 2.1 |
Cross-site scripting (XSS) vulnerability in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allows remote authenticated users with write permission to inject arbitrary web script or HTML
|
13-02-2023 - 04:42 | 10-04-2014 - 20:29 | |
| CVE-2013-1808 | 4.3 |
Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web sc
|
13-02-2023 - 04:41 | 02-04-2013 - 03:23 | |
| CVE-2014-3674 | 7.5 |
Red Hat OpenShift Enterprise before 2.2 does not properly restrict access to gears, which allows remote attackers to access the network resources of arbitrary gears via unspecified vectors.
|
13-02-2023 - 00:41 | 13-11-2014 - 21:32 | |
| CVE-2014-3602 | 2.1 |
Red Hat OpenShift Enterprise before 2.2 allows local users to obtain IP address and port number information for remote systems by reading /proc/net/tcp.
|
13-02-2023 - 00:40 | 13-11-2014 - 21:32 | |
| CVE-2014-0234 | 7.5 |
The default configuration of broker.conf in Red Hat OpenShift Enterprise 2.x before 2.1 has a password of "mooo" for a Mongo account, which allows remote attackers to hijack the broker by providing this password, related to the openshift.sh script in
|
13-02-2023 - 00:37 | 12-02-2020 - 01:15 | |
| CVE-2014-0175 | 7.5 |
mcollective has a default password set at install
|
13-02-2023 - 00:34 | 13-12-2019 - 13:15 | |
| CVE-2014-0084 | 2.1 |
Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly.
|
13-02-2023 - 00:31 | 21-11-2019 - 15:15 |