CVEs from 2015
Total
7,261
critical
critical 1,307
high
high 1,666
medium
medium 3,616
low
low 554
% Critical
18.0%
% with KEV
0.6%
% with exploit
10.1%
Top vendors
Top products
- firefox 4,609
- flash_player 3,392
- php 1,526
- moodle 1,087
- acrobat 878
- acrobat_reader 878
- safari 736
- internet_explorer 712
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-6393 | high | 7.5 | 7.5 | 10y ago | Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 3000, 3500, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) v… | |||
| CVE-2015-6392 | high | 7.5 | 7.5 | 10y ago | Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted I… | |||
| CVE-2015-8930 | high | 7.5 | 7.5 | 10y ago | bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself. | |||
| CVE-2015-8921 | high | 7.5 | 7.5 | 10y ago | The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. | |||
| CVE-2015-8919 | high | 7.5 | 7.5 | 10y ago | The lha_read_file_extended_header function in archive_read_support_format_lha.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap) via a crafted (1) … | |||
| CVE-2015-8918 | high | 7.5 | 7.5 | 10y ago | The archive_string_append function in archive_string.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted cab files, related to "overlapping memcpy." | |||
| CVE-2015-8917 | high | 7.5 | 7.5 | 10y ago | bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an invalid character in the name of a cab file. | |||
| CVE-2015-8948 | high | 7.5 | 7.5 | 10y ago | idn in GNU libidn before 1.33 might allow remote attackers to obtain sensitive memory information by reading a zero byte as input, which triggers an out-of-bounds read. | |||
| CVE-2015-8022 | high | 7.5 | 7.5 | 10y ago | The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4, and 11.6.x before 11.6.1; B… | |||
| CVE-2015-3854 | high | 7.5 | 7.5 | 10y ago | packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java in Android 5.x allows attackers to bypass a DEVICE_POWER permission requirement via a broadcast intent with the PNW.sto… | |||
| CVE-2015-5738 | high | 7.5 | 7.5 | 10y ago | The RSA-CRT implementation in the Cavium Software Development Kit (SDK) 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy (PFS), makes it easier for rem… | |||
| CVE-2015-1977 | high | 7.5 | 7.5 | 10y ago | Directory traversal vulnerability in the Web Administration tool in IBM Tivoli Directory Server (ITDS) before 6.1.0.74-ISS-ISDS-IF0074, 6.2.x before 6.2.0.50-ISS-ISDS-IF0050, and 6.3.x before 6.3.0.4… | |||
| CVE-2015-0899 | high | 7.5 | 7.5 | 10y ago | Improper Input Validation in Apache Struts | |||
| CVE-2015-8899 | high | 7.5 | 7.5 | 10y ago | Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally. | |||
| CVE-2015-6289 | high | 7.5 | 7.5 | 10y ago | Cisco IOS 15.5(3)M on Integrated Services Router (ISR) 800, 819, and 829 devices allows remote attackers to cause a denial of service (memory consumption) via crafted TCP packets on the SSH port, aka… | |||
| CVE-2015-8289 | high | 7.5 | 7.5 | 10y ago | The password-recovery feature on NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices with firmware 1.0.0.49 and earlier allows remote attackers to discover the cleartext administrator pass… | |||
| CVE-2015-8268 | high | 7.5 | 7.5 | 10y ago | The up.time agent in Idera Uptime Infrastructure Monitor 7.5 and 7.6 on Linux allows remote attackers to read arbitrary files via unspecified vectors. | |||
| CVE-2015-8806 | high | 7.5 | 7.5 | 10y ago | dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring… | |||
| CVE-2015-8853 | high | 7.5 | 7.5 | 10y ago | The (1) S_reghop3, (2) S_reghop4, and (3) S_reghopmaybe3 functions in regexec.c in Perl before 5.24.0 allow context-dependent attackers to cause a denial of service (infinite loop) via crafted utf-8 … | |||
| CVE-2015-8879 | high | 7.5 | 7.5 | 10y ago | The odbc_bindcols function in ext/odbc/php_odbc.c in PHP before 5.6.12 mishandles driver behavior for SQL_WVARCHAR columns, which allows remote attackers to cause a denial of service (application cra… | |||
| CVE-2015-8877 | high | 7.5 | 7.5 | 10y ago | The gdImageScaleTwoPass function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.0, as used in PHP before 5.6.12, uses inconsistent allocate and free approaches, which allows … | |||
| CVE-2015-8867 | high | 7.5 | 7.5 | 10y ago | The openssl_random_pseudo_bytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RAND_pseudo_bytes function, w… | |||
| CVE-2015-7558 | high | 7.5 | 7.5 | 10y ago | librsvg DoS via Cyclic References | |||
| CVE-2015-7557 | high | 7.5 | 7.5 | 10y ago | The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elemen… | |||
| CVE-2015-8874 | high | 7.5 | 7.5 | 10y ago | Stack consumption vulnerability in GD in PHP before 5.6.12 allows remote attackers to cause a denial of service via a crafted imagefilltoborder call. | |||
| CVE-2015-8873 | high | 7.5 | 7.5 | 10y ago | Stack consumption vulnerability in Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to cause a denial of service (segmentation fault) … | |||
| CVE-2015-6838 | high | 7.5 | 7.5 | 10y ago | The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility o… | |||
| CVE-2015-6837 | high | 7.5 | 7.5 | 10y ago | The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility o… | |||
| CVE-2015-4644 | high | 7.5 | 7.5 | 10y ago | The php_pgsql_meta_data function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not validate token extraction for table nam… | |||
| CVE-2015-4605 | high | 7.5 | 7.5 | 10y ago | The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, … | |||
| CVE-2015-4604 | high | 7.5 | 7.5 | 10y ago | The mget function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly maintain a certain pointer relatio… | |||
| CVE-2015-7827 | high | 7.5 | 7.5 | 10y ago | Botan before 1.10.13 and 1.11.x before 1.11.22 make it easier for remote attackers to conduct million-message attacks by measuring time differences, related to decoding of PKCS#1 padding. | |||
| CVE-2015-5727 | high | 7.5 | 7.5 | 10y ago | The BER decoder in Botan 1.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, related to a length field. | |||
| CVE-2015-5726 | high | 7.5 | 7.5 | 10y ago | The BER decoder in Botan 0.10.x before 1.10.10 and 1.11.x before 1.11.19 allows remote attackers to cause a denial of service (application crash) via an empty BIT STRING in ASN.1 data. | |||
| CVE-2015-8746 | high | 7.5 | 7.5 | 10y ago | fs/nfs/nfs4proc.c in the NFS client in the Linux kernel before 4.2.2 does not properly initialize memory for migration recovery operations, which allows remote NFS servers to cause a denial of servic… | |||
| CVE-2015-8852 | high | 7.5 | 7.5 | 10y ago | Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated… | |||
| CVE-2015-6360 | high | 7.5 | 7.5 | 10y ago | The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686. | |||
| CVE-2015-5271 | high | 7.5 | 7.5 | 10y ago | The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline w… | |||
| CVE-2015-8676 | high | 7.5 | 7.5 | 10y ago | Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C… | |||
| CVE-2015-8554 | high | 7.5 | 7.5 | 10y ago | Buffer overflow in hw/pt-msi.c in Xen 4.6.x and earlier, when using the qemu-xen-traditional (aka qemu-dm) device model, allows local x86 HVM guest administrators to gain privileges by leveraging a s… | |||
| CVE-2015-3146 | high | 7.5 | 7.5 | 10y ago | The (1) SSH_MSG_NEWKEYS and (2) SSH_MSG_KEXDH_REPLY packet handlers in package_cb.c in libssh before 0.6.5 do not properly validate state, which allows remote attackers to cause a denial of service (… | |||
| CVE-2015-8080 | high | 7.5 | 7.5 | 10y ago | Integer overflow in the getnum function in lua_struct.c in Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6 allows context-dependent attackers with permission to run Lua code in a Redis session to ca… | |||
| CVE-2015-5303 | high | 7.5 | 7.5 | 10y ago | The TripleO Heat templates (tripleo-heat-templates), when deployed via the commandline interface, allow remote attackers to spoof OpenStack Networking metadata requests by leveraging knowledge of the… | |||
| CVE-2015-8240 | high | 7.5 | 7.5 | 10y ago | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and BIG-IP PEM before 11.4.1 HF10, 11.5.x before 11.5.4, and 11.6.x before 11.6.0 HF6 a… | |||
| CVE-2015-5229 | high | 7.5 | 7.5 | 10y ago | The calloc function in the glibc package in Red Hat Enterprise Linux (RHEL) 6.7 and 7.2 does not properly initialize memory areas, which might allow context-dependent attackers to cause a denial of s… | |||
| CVE-2015-6313 | high | 7.5 | 7.5 | 10y ago | Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; Mobility Services Engine (MSE) 8710; Multiparty Media 310, 320, and 820; and Virtual Machine (VM) devices allows remote attackers to cau… | |||
| CVE-2015-6312 | high | 7.5 | 7.5 | 10y ago | Cisco TelePresence Server 3.1 on 7010, Mobility Services Engine (MSE) 8710, Multiparty Media 310 and 320, and Virtual Machine (VM) devices allows remote attackers to cause a denial of service (device… | |||
| CVE-2015-8523 | high | 7.5 | 7.5 | 10y ago | The server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to cause a denial of service (service crash) via crafted packets to a TCP port. | |||
| CVE-2015-6260 | high | 7.5 | 7.5 | 10y ago | Cisco NX-OS 7.1(1)N1(1) on Nexus 5500, 5600, and 6000 devices does not properly validate PDUs in SNMP packets, which allows remote attackers to cause a denial of service (SNMP application restart) vi… | |||
| CVE-2015-0718 | high | 7.5 | 7.5 | 10y ago | Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload… | |||
| CVE-2015-7262 | high | 7.5 | 7.5 | 10y ago | QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for th… | |||
| CVE-2015-6036 | high | 7.5 | 7.5 | 10y ago | QNAP Signage Station before 2.0.1 allows remote attackers to bypass authentication, and consequently upload files, via a spoofed HTTP request. | |||
| CVE-2015-5267 | high | 7.5 | 7.5 | 10y ago | Moodle uses predictable password-recovery tokens | |||
| CVE-2015-8149 | high | 7.5 | 7.5 | 10y ago | The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to cause a denial of service (heap memory corruption and service outage) via crafted request… | |||
| CVE-2015-8148 | high | 7.5 | 7.5 | 10y ago | The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to obtain sensitive information about administrator accounts via a modified request. | |||
| CVE-2015-5042 | high | 7.5 | 7.5 | 10y ago | IBM Emptoris Contract Management 9.5.0.x before 9.5.0.6 iFix15, 10.0.0.x and 10.0.1.x before 10.0.1.5 iFix5, 10.0.2.x before 10.0.2.7 iFix4, and 10.0.4.x before 10.0.4.0 iFix3 allows remote attackers… | |||
| CVE-2015-5012 | high | 7.5 | 7.5 | 10y ago | The SSH implementation on IBM Security Access Manager for Web appliances 7.0 before 7.0.0 FP19, 8.0 before 8.0.1.3 IF3, and 9.0 before 9.0.0.0 IF1 does not properly restrict the set of MAC algorithms… | |||
| CVE-2015-5010 | high | 7.5 | 7.5 | 10y ago | IBM Security Access Manager for Web 7.0 before 7.0.0 IF21, 8.0 before 8.0.1.3 IF4, and 9.0 before 9.0.0.1 IF1 does not have a lockout mechanism for invalid login attempts, which makes it easier for r… | |||
| CVE-2015-8630 | high | 7.5 | 7.5 | 11y ago | The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.… | |||
| CVE-2015-6398 | high | 7.5 | 7.5 | 11y ago | Cisco Nexus 9000 Application Centric Infrastructure (ACI) Mode switches with software before 11.0(1c) allow remote attackers to cause a denial of service (device reload) via an IPv4 ICMP packet with … | |||
| CVE-2015-8269 | high | 7.5 | 7.5 | 11y ago | The API on Fisher-Price Smart Toy Bear devices allows remote attackers to obtain sensitive information or modify data by leveraging presence in an 802.11 network's coverage area and entering an accou… | |||
| CVE-2015-7546 | high | 7.5 | 7.5 | 11y ago | The identity service in OpenStack Identity (Keystone) before 2015.1.3 (Kilo) and 8.0.x before 8.0.2 (Liberty) and keystonemiddleware (formerly python-keystoneclient) before 1.5.4 (Kilo) and Liberty b… | |||
| CVE-2015-7539 | high | 7.5 | 7.5 | 11y ago | Jenkins does not Verify Checksums for Plugin Files | |||
| CVE-2015-8265 | high | 7.5 | 7.5 | 11y ago | Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source… | |||
| CVE-2015-8773 | high | 7.5 | 7.5 | 11y ago | Stack-based buffer overflow in McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows attackers to cause a denial of service (system crash) via a long vault GUID in an ioctl … | |||
| CVE-2015-7464 | high | 7.5 | 7.5 | 11y ago | Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0 before 6.0.0-Rational-CLM-ifix005 allows remote attackers to cause a denial of service (Report Builder… | |||
| CVE-2015-6421 | high | 7.5 | 7.5 | 11y ago | cifs-ao in the CIFS optimization functionality on Cisco Wide Area Application Service (WAAS) and Virtual WAAS (vWAAS) devices 5.x before 5.3.5d and 5.4 and 5.5 before 5.5.3 allows remote attackers to… | |||
| CVE-2015-8618 | high | 7.5 | 7.5 | 11y ago | Incorrect calculation affecting RSA computations in math/big | |||
| CVE-2015-7581 | high | 7.5 | 7.5 | 11y ago | actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous c… | |||
| CVE-2015-6925 | high | 7.5 | 7.5 | 11y ago | wolfSSL (formerly CyaSSL) before 3.6.8 allows remote attackers to cause a denial of service (resource consumption or traffic amplification) via a crafted DTLS cookie in a ClientHello message. | |||
| CVE-2015-5516 | high | 7.5 | 7.5 | 11y ago | Memory leak in the last hop kernel module in F5 BIG-IP LTM, GTM, and Link Controller 10.1.x, 10.2.x before 10.2.4 HF13, 11.x before 11.2.1 HF15, 11.3.x, 11.4.x, 11.5.x before 11.5.3 HF2, and 11.6.x b… | |||
| CVE-2015-6833 | high | 7.5 | 7.5 | 11y ago | Directory traversal vulnerability in the PharData class in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to write to arbitrary files via a .. (dot dot) in a … | |||
| CVE-2015-7470 | high | 7.5 | 7.5 | 11y ago | Report Builder in IBM Jazz Reporting Service (JRS) 5.x before 5.0.2-Rational-CLM-ifix011 and 6.0 before 6.0.0-Rational-CLM-ifix005 allows man-in-the-middle attackers to obtain sensitive information v… | |||
| CVE-2015-8281 | high | 7.5 | 7.5 | 11y ago | Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations. | |||
| CVE-2015-8280 | high | 7.5 | 7.5 | 11y ago | Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages. | |||
| CVE-2015-6320 | high | 7.5 | 7.5 | 11y ago | The IP ingress packet handler on Cisco Aironet 1800 devices with software 8.1(112.3) and 8.1(112.4) allows remote attackers to cause a denial of service via a crafted header in an IP packet, aka Bug … | |||
| CVE-2015-8231 | high | 7.5 | 7.5 | 11y ago | Huawei eSpace 7910 and 7950 IP phones with software before V200R002C00SPC800 allow remote attackers with established sessions to cause a denial of service (device restart) via unspecified packets. | |||
| CVE-2015-8230 | high | 7.5 | 7.5 | 11y ago | Memory leak in Huawei eSpace 8950 IP phones with software before V200R003C00SPC300 allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of crafted … | |||
| CVE-2015-8754 | high | 7.5 | 7.5 | 11y ago | The Mollom module 6.x-2.7 before 6.x-2.15 for Drupal allows remote attackers to bypass intended access restrictions and modify the mollom blacklist via unspecified vectors. | |||
| CVE-2015-8547 | high | 7.5 | 7.5 | 11y ago | The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a quer… | |||
| CVE-2015-6861 | high | 7.5 | 7.5 | 11y ago | HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's … | |||
| CVE-2015-5446 | high | 7.5 | 7.5 | 11y ago | HP StoreOnce Backup system software before 3.13.1 allows remote attackers to execute arbitrary code via unspecified vectors. | |||
| CVE-2015-6432 | high | 7.5 | 7.5 | 11y ago | Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation Elements (PCEs) for OSPF LSA opaque area updates, which allows… | |||
| CVE-2015-5038 | high | 7.5 | 7.5 | 11y ago | IBM Connections 3.x before 3.0.1.1 CR3, 4.0 before CR4, 4.5 before CR5, and 5.0 before CR3 does not properly detect recursion during XML entity expansion, which allows remote attackers to cause a den… | |||
| CVE-2015-8027 | high | 7.5 | 7.5 | 11y ago | Node.js 0.12.x before 0.12.9, 4.x before 4.2.3, and 5.x before 5.1.1 does not ensure the availability of a parser for each HTTP socket, which allows remote attackers to cause a denial of service (unc… | |||
| CVE-2015-2875 | high | 7.5 | 7.5 | 11y ago | Absolute path traversal vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware before 3.4.1.105 allows … | |||
| CVE-2015-8703 | medium | 6.5 | 7.5 | 11y ago | ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE and ZXV10 W300 devices W300V1.0.0f_ER1_PE allow remote authenticated users to bypass intended access restrictions, and discover credentials… | |||
| CVE-2015-8467 | high | 7.5 | 7.5 | 11y ago | The samldb_check_user_account_control_acl function in dsdb/samdb/ldb_modules/samldb.c in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not properly check for administrative… | |||
| CVE-2015-7540 | high | 7.5 | 7.5 | 11y ago | The LDAP server in the AD domain controller in Samba 4.x before 4.1.22 does not check return values to ensure successful ASN.1 memory allocation, which allows remote attackers to cause a denial of se… | |||
| CVE-2015-5330 | high | 7.5 | 7.5 | 11y ago | ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive i… | |||
| CVE-2015-7936 | high | 7.5 | 7.5 | 11y ago | Cross-site request forgery (CSRF) vulnerability in Motorola Solutions MOSCAD IP Gateway allows remote attackers to hijack the authentication of administrators for requests that modify a password. | |||
| CVE-2015-7935 | high | 7.5 | 7.5 | 11y ago | Motorola Solutions MOSCAD IP Gateway allows remote attackers to read arbitrary files via unspecified vectors. | |||
| CVE-2015-8600 | high | — | 7.5 | 11y ago | The SysAdminWebTool servlets in SAP Mobile Platform allow remote attackers to bypass authentication and obtain sensitive information, gain privileges, or have unspecified other impact via unknown vec… | |||
| CVE-2015-8369 | high | — | 7.5 | 11y ago | SQL injection vulnerability in include/top_graph_header.php in Cacti 0.8.8f and earlier allows remote attackers to execute arbitrary SQL commands via the rra_id parameter in a properties action to gr… | |||
| CVE-2015-8327 | high | — | 7.5 | 11y ago | Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` … | |||
| CVE-2015-7527 | high | — | 7.5 | 11y ago | lib/core.php in the Cool Video Gallery plugin 1.9 for WordPress allows remote attackers to execute arbitrary code via shell metacharacters in the "Width of preview image" and possibly other input fie… | |||
| CVE-2015-8565 | high | — | 7.5 | 11y ago | Directory traversal vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via unknown vectors. | |||
| CVE-2015-8564 | high | — | 7.5 | 11y ago | Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via directory traversal sequences in the XML install file in an extension package ar… | |||
| CVE-2015-8357 | medium | — | 7.5 | 11y ago | Directory traversal vulnerability in the bitrix.xscan module before 1.0.4 for Bitrix allows remote authenticated users to rename arbitrary files, and consequently obtain sensitive information or caus… | |||
| CVE-2015-7212 | high | — | 7.5 | 11y ago | Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary … |