|
259731
|
- |
|
emc
|
rsa_netwitness_nextgen
rsa_security_analytics
|
EMC RSA Security Analytics (SA) 10.x before 10.3, and RSA NetWitness NextGen 9.8, does not ensure that SA Core requests originate from the SA REST UI, which allows remote attackers to bypass intended…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6180
|
2014-01-8 13:42 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259732
|
- |
|
emc
|
watch4net
|
EMC Watch4Net before 6.3 stores cleartext polled-device passwords in the installation repository, which allows local users to obtain sensitive information by leveraging repository privileges.
|
CWE-310
Cryptographic Issues
|
CVE-2013-6181
|
2014-01-8 13:42 |
2013-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259733
|
- |
|
emc
|
replication_manager
|
Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory.
|
NVD-CWE-Other
|
CVE-2013-6182
|
2014-01-8 13:42 |
2013-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259734
|
- |
|
emc
|
replication_manager
|
Per: http://cwe.mitre.org/data/definitions/428.html
"CWE-428: Unquoted Search Path or Element"
|
NVD-CWE-Other
|
CVE-2013-6182
|
2014-01-8 13:42 |
2013-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259735
|
- |
|
hp
|
operations_orchestration
|
Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6191
|
2014-01-8 13:42 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259736
|
- |
|
hp
|
operations_orchestration
|
Cross-site request forgery (CSRF) vulnerability in HP Operations Orchestration before 9 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2013-6192
|
2014-01-8 13:42 |
2013-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259737
|
- |
|
hp
|
color_laserjet_cm1312nfi_multifunction_printer
color_laserjet_cm2320n_multifunction_printer
color_laserjet_cp1515
color_laserjet_cp1518
color_laserjet_cp2025_printer
color_laserjet_cp5…
|
Unspecified vulnerability on HP LaserJet M1522n and M2727; LaserJet Pro 100, 300, 400, CM1415fnw, CP1*, M121*, M1536dnf, and P1*; Color LaserJet CM* and CP*; and TopShot LaserJet Pro M275 printers al…
|
NVD-CWE-noinfo
|
CVE-2013-6193
|
2014-01-8 13:42 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259738
|
- |
|
hp
|
system_management_homepage
|
ginkgosnmp.inc in HP System Management Homepage (SMH) allows remote authenticated users to execute arbitrary commands via shell metacharacters in the PATH_INFO to smhutil/snmpchp.php.en.
|
CWE-78
OS Command
|
CVE-2013-3576
|
2014-01-8 13:39 |
2013-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259739
|
- |
|
openstack
|
folsom
grizzly
havana
|
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by cr…
|
CWE-399
Resource Management Errors
|
CVE-2013-2096
|
2014-01-8 13:37 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259740
|
- |
|
mini-stream
|
castripper
|
Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the [playlist] section in a .pls file, a different vector than CVE-20…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5137
|
2014-01-7 11:53 |
2014-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
