CVE-2014-9708 vulnerability in Oracle and Other Products
Published on March 31, 2015

Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".

NVD

Products Associated with CVE-2014-9708

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2014-9708 are published in these products:

Oracle Enterprise Communications Broker

Embedthis Appweb

Juniper Networks Junos

Exploit Probability

EPSS

4.51%

Percentile

88.89%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-9708 vulnerability in Oracle and Other ProductsPublished on March 31, 2015

Products Associated with CVE-2014-9708

Exploit Probability

CVE-2014-9708 vulnerability in Oracle and Other Products
Published on March 31, 2015