2014 CVE Vulnerabilities
9,002 CVEs published in 2014.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2014-125045 | CRITICAL | 9.8 | 0.7% | Jan 5, 2023 | A vulnerability has been found in meol1 and classified as critical. Affected by this vulnerability is the function GetAn... |
| CVE-2014-125044 | CRITICAL | 9.8 | 0.8% | Jan 5, 2023 | A vulnerability, which was classified as critical, was found in soshtolsus wing-tight. This affects an unknown part of t... |
| CVE-2014-125041 | CRITICAL | 9.8 | 0.7% | Jan 5, 2023 | A vulnerability classified as critical was found in Miccighel PR-CWT. This vulnerability affects unknown code. The manip... |
| CVE-2014-125040 | CRITICAL | 9.8 | 0.7% | Jan 5, 2023 | A vulnerability was found in stevejagodzinski DevNewsAggregator. It has been rated as critical. Affected by this issue i... |
| CVE-2014-125038 | CRITICAL | 9.8 | 0.7% | Jan 2, 2023 | A vulnerability has been found in IS_Projecto2 and classified as critical. This vulnerability affects unknown code of th... |
| CVE-2014-125037 | CRITICAL | 9.8 | 0.6% | Jan 2, 2023 | A vulnerability, which was classified as critical, was found in License to Kill. This affects an unknown part of the fil... |
| CVE-2014-125032 | CRITICAL | 9.8 | 0.7% | Jan 2, 2023 | A vulnerability was found in porpeeranut go-with-me. It has been declared as critical. Affected by this vulnerability is... |
| CVE-2014-125030 | CRITICAL | 9.8 | 0.9% | Jan 1, 2023 | A vulnerability, which was classified as critical, has been found in taoeffect Empress. Affected by this issue is some u... |
| CVE-2014-125026 | CRITICAL | 9.8 | 1.1% | Dec 27, 2022 | LZ4 bindings use a deprecated C API that is vulnerable to memory corruption, which could lead to arbitrary code executio... |
| CVE-2014-8164 | CRITICAL | 9.1 | 0.5% | Jul 6, 2022 | A insecure configuration for certificate verification (http.verify_mode = OpenSSL::SSL::VERIFY_NONE) may lead to verific... |
| CVE-2014-0156 | CRITICAL | 9.8 | 2.6% | Jun 30, 2022 | Awesome spawn contains OS command injection vulnerability, which allows execution of additional commands passed to Aweso... |
| CVE-2014-9320 | CRITICAL | 9.8 | 4.2% | Aug 9, 2021 | SAP BusinessObjects Edge 4.1 allows remote attackers to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and conse... |
| CVE-2014-8945 | CRITICAL | 9.8 | 2.4% | Jun 1, 2020 | admin.php?page=projects in Lexiglot through 2014-11-20 allows command injection via username and password fields. |
| CVE-2014-8941 | CRITICAL | 9.8 | 1.1% | Jun 1, 2020 | Lexiglot through 2014-11-20 allows SQL injection via an admin.php?page=users&from_id= or admin.php?page=history&limit= U... |
| CVE-2014-7175 | CRITICAL | 9.8 | 1.3% | Jun 1, 2020 | FarLinX X25 Gateway through 2014-09-25 allows attackers to write arbitrary data to fsUI.xyz via fsSaveUIPersistence.php. |
| CVE-2014-7173 | CRITICAL | 9.8 | 2.5% | Jun 1, 2020 | FarLinX X25 Gateway through 2014-09-25 allows command injection via shell metacharacters to sysSaveMonitorData.php, fsx2... |
| CVE-2014-1634 | CRITICAL | 9.8 | 1.4% | Mar 9, 2020 | SQL Injection exists in Advanced Newsletter Magento extension before 2.3.5 via the /store/advancednewsletter/index/subsc... |
| CVE-2014-4650 | CRITICAL | 9.8 | 24.1% | Feb 20, 2020 | The CGIHTTPServer module in Python 2.7.5 and 3.3.4 does not properly handle URLs in which URL encoding is used for path ... |
| CVE-2014-4657 | CRITICAL | 9.8 | 4.3% | Feb 20, 2020 | The safe_eval function in Ansible before 1.5.4 does not properly restrict the code subset, which allows remote attackers... |
| CVE-2014-3484 | CRITICAL | 9.8 | 2.1% | Feb 20, 2020 | Multiple stack-based buffer overflows in the __dn_expand function in network/dn_expand.c in musl libc 1.1x before 1.1.2 ... |
| CVE-2014-4678 | CRITICAL | 9.8 | 5.1% | Feb 20, 2020 | The safe_eval function in Ansible before 1.6.4 does not properly restrict the code subset, which allows remote attackers... |
| CVE-2014-9614 | CRITICAL | 9.8 | 66.6% | Feb 19, 2020 | The Web Panel in Netsweeper before 4.0.5 has a default password of branding for the branding account, which makes it eas... |
| CVE-2014-9613 | CRITICAL | 9.8 | 4.1% | Feb 19, 2020 | Multiple SQL injection vulnerabilities in Netsweeper before 2.6.29.10 allow remote attackers to execute arbitrary SQL co... |
| CVE-2014-9612 | CRITICAL | 9.8 | 4.9% | Feb 19, 2020 | SQL injection vulnerability in remotereporter/load_logfiles.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1... |
| CVE-2014-2727 | CRITICAL | 9.8 | 1.9% | Feb 19, 2020 | The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection. |
Check if your code is affected by 2014 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now