|
278681
|
- |
|
apache
|
cassandra
|
The default configuration in Apache Cassandra 1.2.0 through 1.2.19, 2.0.0 through 2.0.13, and 2.1.0 through 2.1.3 binds an unauthenticated JMX/RMI interface to all network interfaces, which allows re…
|
CWE-77
Command Injection
|
CVE-2015-0225
|
2024-11-21 11:22 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278682
|
- |
|
openstack
|
nova
|
OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo before kilo-3 does not validate the origin of websocket requests, which allows remote attackers to hijack the authenticati…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2015-0259
|
2024-11-21 11:22 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278683
|
- |
|
redhat
|
slapi-nis
|
The slapi-nis plug-in before 0.54.2 does not properly reallocate memory when processing user accounts, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) v…
|
CWE-399
Resource Management Errors
|
CVE-2015-0283
|
2024-11-21 11:22 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278684
|
- |
|
php
|
php
|
Multiple use-after-free vulnerabilities in ext/date/php_date.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allow remote attackers to execute arbitrary code via crafted serialize…
|
NVD-CWE-Other
|
CVE-2015-0273
|
2024-11-21 11:22 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278685
|
- |
|
redhat
|
richfaces
|
JBoss RichFaces before 4.5.4 allows remote attackers to inject expression language (EL) expressions and execute arbitrary Java code via the do parameter.
|
CWE-94
Code Injection
|
CVE-2015-0279
|
2024-11-21 11:22 |
2015-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278686
|
- |
|
fedoraproject
opensuse
digia
|
fedora
opensuse
qt
|
The BMP decoder in QtGui in QT before 5.5 does not properly calculate the masks used to extract the color components, which allows remote attackers to cause a denial of service (divide-by-zero and cr…
|
CWE-189
Numeric Errors
|
CVE-2015-0295
|
2024-11-21 11:22 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278687
|
- |
|
ibm
|
tivoli_directory_server
|
GSKit in IBM Tivoli Directory Server (ITDS) 6.0 before 6.0.0.73-ISS-ITDS-IF0073, 6.1 before 6.1.0.66-ISS-ITDS-IF0066, 6.2 before 6.2.0.42-ISS-ITDS-IF0042, and 6.3 before 6.3.0.35-ISS-ITDS-IF0035 and …
|
CWE-310
Cryptographic Issues
|
CVE-2015-0138
|
2024-11-21 11:22 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278688
|
- |
|
gnu
|
gnutls
|
GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspeci…
|
CWE-310
Cryptographic Issues
|
CVE-2015-0282
|
2024-11-21 11:22 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278689
|
- |
|
tcpdump
|
tcpdump
|
Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) or…
|
CWE-189
Numeric Errors
|
CVE-2015-0261
|
2024-11-21 11:22 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278690
|
- |
|
debian
fedoraproject
apache
|
debian_linux
fedora
xerces-c\+\+
|
internal/XMLReader.cpp in Apache Xerces-C before 3.1.2 allows remote attackers to cause a denial of service (segmentation fault and crash) via crafted XML data.
|
CWE-20
Improper Input Validation
|
CVE-2015-0252
|
2024-11-21 11:22 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
