|
277371
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for …
|
CWE-862
Missing Authorization
|
CVE-2015-0571
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277372
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in wlan_hdd_hostapd.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) …
|
CWE-787
Out-of-bounds Write
|
CVE-2015-0570
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277373
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Heap-based buffer overflow in the private wireless extensions IOCTL implementation in wlan_hdd_wext.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation C…
|
CWE-787
Out-of-bounds Write
|
CVE-2015-0569
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277374
|
3.3 |
LOW
Local
|
debian
tardiff_project
|
debian_linux
tardiff
|
Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory.
|
CWE-59
Link Following
|
CVE-2015-0858
|
2024-11-21 11:23 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277375
|
9.8 |
CRITICAL
Network
|
tardiff_project
debian
|
tardiff
debian_linux
|
Cool Projects TarDiff allows remote attackers to execute arbitrary commands via shell metacharacters in the name of a (1) tar file or (2) file within a tar file.
|
CWE-77
Command Injection
|
CVE-2015-0857
|
2024-11-21 11:23 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277376
|
4.3 |
MEDIUM
Network
|
tryton
debian
|
trytond
debian_linux
|
model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.6.5, and 3.8.x before 3.8.1 allows remote authenticated users to bypass intended access restrictions and write…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0861
|
2024-11-21 11:23 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277377
|
7.5 |
HIGH
Network
|
cisco
samsung
sun
zyxel
netgear
zzinc
|
unified_computing_system
x14j_firmware
nx-os
opensolaris
gs1900-10hp_firmware
jr6150_firmware
keymouse_firmware
|
Cisco NX-OS 4.0 through 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote attackers to cause a denial of service (TCP stack reload…
|
CWE-399
Resource Management Errors
|
CVE-2015-0718
|
2024-11-21 11:23 |
2016-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277378
|
- |
|
canonical
debian
|
ubuntu_linux
dpkg
|
Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrar…
|
CWE-189
Numeric Errors
|
CVE-2015-0860
|
2024-11-21 11:23 |
2015-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277379
|
- |
|
debian
|
debian_linux
|
The Debian build procedure for the smokeping package in wheezy before 2.6.8-2+deb7u1 and jessie before 2.6.9-1+deb8u1 does not properly configure the way Apache httpd passes arguments to smokeping_cg…
|
CWE-17
Code
|
CVE-2015-0859
|
2024-11-21 11:23 |
2015-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277380
|
- |
|
fedoraproject
sddm_project
|
fedora
sddm
|
daemon/Greeter.cpp in sddm before 0.13.0 does not properly disable the KDE crash handler, which allows local users to gain privileges by crashing a greeter when using certain themes, as demonstrated …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0856
|
2024-11-21 11:23 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
