Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
Docs
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 20 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-9527
HSLFSlideShow in Apache POI prior to 3.11 allows remote malicious users to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.
Fedoraproject Fedora 20
Apache Poi
5
CVSSv2
CVE-2013-0334
Bundler prior to 1.7, when multiple top-level source lines are used, allows remote malicious users to install arbitrary gems by creating a gem with the same name as another gem in a different source.
Bundler Bundler
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Fedoraproject Fedora 21
7.5
CVSSv2
CVE-2014-8990
default-rsyncssh.lua in Lsyncd 2.1.5 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in a filename.
Debian Debian Linux 7.0
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Lsyncd Project Lsyncd
7.5
CVSSv2
CVE-2015-0778
osc prior to 0.151.0 allows remote malicious users to execute arbitrary commands via shell metacharacters in a _service file.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Suse Opensuse Osc
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
7.5
CVSSv2
CVE-2015-2782
Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ARJ archive.
Debian Debian Linux 7.0
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Arj Software Arj Archiver 3.10.22
7.2
CVSSv2
CVE-2014-9114
Blkid in util-linux prior to 2.26rc-1 allows local users to execute arbitrary code.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Kernel Util-linux
7.5
CVSSv2
CVE-2014-8089
SQL injection vulnerability in Zend Framework prior to 1.12.9, 2.2.x prior to 2.2.8, and 2.3.x prior to 2.3.3, when using the sqlsrv PHP extension, allows remote malicious users to execute arbitrary SQL commands via a null byte.
Zend Zend Framework
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 7.0
Fedoraproject Fedora 19
Fedoraproject Fedora 20
Fedoraproject Fedora 21
4
CVSSv2
CVE-2014-7821
OpenStack Neutron prior to 2014.1.4 and 2014.2.x prior to 2014.2.1 allows remote authenticated users to cause a denial of service (crash) via a crafted dns_nameservers value in the DNS configuration.
Openstack Neutron
Fedoraproject Fedora 20
Redhat Openstack 4.0
5
CVSSv2
CVE-2014-9639
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote malicious users to cause a denial of service (crash) via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access.
Xiph Vorbis-tools 1.4.0
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2014-9638
oggenc in vorbis-tools 1.4.0 allows remote malicious users to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Xiph Vorbis-tools 1.4.0
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
loftocean
CVE-2025-49234
CVE-2025-48145
spare
CVE-2025-49854
CVE-2023-33538
injection
inject
michal jaworski
template injection
CVE-2025-45878
CVE-2025-43200
slim seo
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »
Vulmon