|
274091
|
10.0 |
CRITICAL
Network
|
grassroots_dicom_project
|
grassroots_dicom
|
Integer overflow in the ImageRegionReader::ReadIntoBuffer function in MediaStorageAndFileFormat/gdcmImageRegionReader.cxx in Grassroots DICOM (aka GDCM) before 2.6.2 allows attackers to execute arbit…
|
CWE-189
Numeric Errors
|
CVE-2015-8396
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274092
|
10.0 |
CRITICAL
Network
|
apple
nghttp2
|
mac_os_x
watchos
iphone_os
nghttp2
tvos
|
The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free bug.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8659
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274093
|
5.4 |
MEDIUM
Network
|
s9y
|
serendipity
|
Cross-site scripting (XSS) vulnerability in Serendipity before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the serendipity[entry_id] parameter in an "edit" admin action t…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8603
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274094
|
7.4 |
HIGH
Network
|
fedoraproject
shellinabox_project
|
fedora
shellinabox
|
The HTTPS fallback implementation in Shell In A Box (aka shellinabox) before 2.19 makes it easier for remote attackers to conduct DNS rebinding attacks via the "/plain" URL.
|
CWE-254
7PK - Security Features
|
CVE-2015-8400
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274095
|
7.8 |
HIGH
Local
|
huawei
|
p8_firmware
|
Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8306
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274096
|
9.8 |
CRITICAL
Network
|
f5
|
big-ip_access_policy_manager
|
F5 BIG-IP APM 11.4.1 before 11.4.1 HF9, 11.5.x before 11.5.3, and 11.6.0 before 11.6.0 HF4 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors relate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8098
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274097
|
5.5 |
MEDIUM
Local
|
huawei
|
mate_7_firmware
p8_firmware
|
The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 befo…
|
NVD-CWE-Other
|
CVE-2015-8337
|
2024-11-21 11:38 |
2016-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274098
|
6.5 |
MEDIUM
Network
|
huawei
|
vcn500
|
Huawei VCN500 with software before V100R002C00SPC201 logs passwords in cleartext, which allows remote authenticated users to obtain sensitive information by triggering log generation and then reading…
|
CWE-200
Information Exposure
|
CVE-2015-8335
|
2024-11-21 11:38 |
2016-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274099
|
7.1 |
HIGH
Network
|
huawei
|
vcn500
|
The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 allows remote authenticated users to change the IP address of the media server via crafted packets.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8333
|
2024-11-21 11:38 |
2016-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274100
|
7.4 |
HIGH
Network
|
huawei
|
vcn500
|
The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 does not properly invalidate the session ID when an "abnormal exit" occurs, which allows remote attack…
|
CWE-20
Improper Input Validation
|
CVE-2015-8331
|
2024-11-21 11:38 |
2016-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
