Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-04-19 | CVE-2013-6215 | Remote Code Execution vulnerability in HP Universal Configuration Management Database 10.01/10.10 Unspecified vulnerability in the Integration Service in HP Universal Configuration Management Database 10.01 and 10.10 allows remote authenticated users to execute arbitrary code via unknown vectors, aka ZDI-CAN-1977. network hp | 8.5 |
| 2014-04-19 | CVE-2013-6212 | Information Disclosure vulnerability in HP Database and Middleware Automation Unspecified vulnerability in HP Database and Middleware Automation 10.0, 10.01, 10.10, and 10.20 before 10.20.100 allows remote authenticated users to obtain sensitive information via unknown vectors. | 6.5 |
| 2014-04-19 | CVE-2014-2733 | Improper Input Validation vulnerability in Siemens Sinema Server 12.0 Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP requests to port (1) 4999 or (2) 80. | 5.0 |
| 2014-04-19 | CVE-2014-2732 | Path Traversal vulnerability in Siemens Sinema Server 12.0 Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or (2) 80. | 5.0 |
| 2014-04-19 | CVE-2014-2731 | Remote Code Execution vulnerability in Siemens Sinema Server 12.0 Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80. | 9.3 |
| 2014-04-19 | CVE-2014-1990 | Cross-Site Request Forgery (CSRF) vulnerability in Toshibatec products Cross-site request forgery (CSRF) vulnerability in TopAccess (aka the web-based management utility) on TOSHIBA TEC e-Studio 232, 233, 282, and 283 devices allows remote attackers to hijack the authentication of administrators for requests that change passwords. | 6.8 |
| 2014-04-19 | CVE-2014-1984 | Improper Authentication vulnerability in Cybozu Remote Service Manager Session fixation vulnerability in the management screen in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to hijack web sessions via unspecified vectors. | 6.8 |
| 2014-04-19 | CVE-2014-1983 | Denial of Service vulnerability in Cybozu Remote Service Manager Unspecified vulnerability in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to cause a denial of service (CPU consumption) via unknown vectors. | 7.8 |
| 2014-04-19 | CVE-2014-1974 | Path Traversal vulnerability in Lyesoft Andexplorer Directory traversal vulnerability in the LYSESOFT AndExplorer application before 20140403 and AndExplorerPro application before 20140405 for Android allows attackers to overwrite or create arbitrary files via unspecified vectors. | 6.4 |
| 2014-04-19 | CVE-2014-0778 | Information Exposure vulnerability in Progea Movicon 11.4 The TCPUploader module in Progea Movicon 11.4 before 11.4.1150 allows remote attackers to obtain potentially sensitive version information via network traffic to TCP port 10651. | 5.0 |