|
273851
|
8.8 |
HIGH
Network
|
mcafee
|
vulnerability_manager
|
Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability Manager (MVM) 7.5.8 and earlier allows attackers to more easily decrypt user pa…
|
CWE-310
Cryptographic Issues
|
CVE-2015-8989
|
2024-11-21 11:39 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273852
|
8.8 |
HIGH
Network
|
mcafee
|
epo_deep_command
|
Unquoted executable path vulnerability in Client Management and Gateway components in McAfee (now Intel Security) ePO Deep Command (eDC) 2.2 and 2.1 allows authenticated users to execute a command of…
|
CWE-77
Command Injection
|
CVE-2015-8988
|
2024-11-21 11:39 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273853
|
5.3 |
MEDIUM
Network
|
mcafee
|
agent
|
Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security) Agent (MA) 4.8.0 patch 2 and earlier allows attackers to make a McAfee Agent talk with another, possi…
|
CWE-284
Improper Access Control
|
CVE-2015-8987
|
2024-11-21 11:39 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273854
|
5.5 |
MEDIUM
Local
|
mcafee
|
advanced_threat_defense
|
Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, t…
|
CWE-254
7PK - Security Features
|
CVE-2015-8986
|
2024-11-21 11:39 |
2017-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273855
|
6.1 |
MEDIUM
Network
|
umbraco
|
umbraco
|
Multiple cross-site scripting (XSS) vulnerabilities in Umbraco before 7.4.0 allow remote attackers to inject arbitrary web script or HTML via the name parameter to (1) the media page, (2) the develop…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8815
|
2024-11-21 11:39 |
2017-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273856
|
8.8 |
HIGH
Network
|
umbraco
|
umbraco
|
Umbraco before 7.4.0 allows remote attackers to bypass anti-forgery security measures and conduct cross-site request forgery (CSRF) attacks as demonstrated by editing user account information in the …
|
CWE-352
Origin Validation Error
|
CVE-2015-8814
|
2024-11-21 11:39 |
2017-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273857
|
8.2 |
HIGH
Network
|
umbraco
|
umbraco
|
The Page_Load function in Umbraco.Web/umbraco.presentation/umbraco/dashboard/FeedProxy.aspx.cs in Umbraco before 7.4.0 allows remote attackers to conduct server-side request forgery (SSRF) attacks vi…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2015-8813
|
2024-11-21 11:39 |
2017-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273858
|
7.5 |
HIGH
Network
|
php
|
php
|
An issue was discovered in PHP 5.x and 7.x, when the configuration uses apache2handler/mod_php or php-fpm with OpCache enabled. With 5.x after 5.6.28 or 7.x after 7.0.13, the issue is resolved in a n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8994
|
2024-11-21 11:39 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273859
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2015-8903
|
2024-11-21 11:39 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273860
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2015-8902
|
2024-11-21 11:39 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
