|
277341
|
5.3 |
MEDIUM
Network
|
adbglobal
|
p.dga4001n_firmware
|
The ADB (formerly Pirelli Broadband Solutions) P.DGA4001N router with firmware PDG_TEF_SP_4.06L.6, and possibly other routers, uses "1236790" and the MAC address to generate the WPA key.
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2015-0558
|
2024-11-21 11:23 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277342
|
7.5 |
HIGH
Network
|
monopd_project
|
monopd
|
Off-by-one error in the readBuf function in listener.cpp in libcapsinetwork and monopd before 0.9.8, allows remote attackers to cause a denial of service (crash) via a long line.
|
CWE-193
Off-by-one Error
|
CVE-2015-0841
|
2024-11-21 11:23 |
2019-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277343
|
5.9 |
MEDIUM
Network
|
gnupg
debian
|
gnupg
libgcrypt
debian_linux
|
The mpi_powm function in Libgcrypt before 1.6.3 and GnuPG before 1.4.19 allows attackers to obtain sensitive information by leveraging timing differences when accessing a pre-computed table during mo…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2015-0837
|
2024-11-21 11:23 |
2019-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277344
|
7.8 |
HIGH
Local
|
opensuse
|
open_buildservice
|
In open buildservice 2.6 before 2.6.3, 2.5 before 2.5.7 and 2.4 before 2.4.8 the source service patch application could generate non-standard files like symlinks or device nodes, which could allow bu…
|
CWE-59
Link Following
|
CVE-2015-0796
|
2024-11-21 11:23 |
2018-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277345
|
5.9 |
MEDIUM
Network
|
okb
|
smart_passbook
|
Smartphone Passbook 1.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information from encrypted communications via a crafted cer…
|
CWE-295
Improper Certificate Validation
|
CVE-2015-0874
|
2024-11-21 11:23 |
2017-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277346
|
7.5 |
HIGH
Network
|
cisco
|
cloud_web_security
|
Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.
|
CWE-119
CWE-19
Incorrect Access of Indexable Resource ('Range Error')
Data Processing Errors
|
CVE-2015-0689
|
2024-11-21 11:23 |
2017-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277347
|
8.8 |
HIGH
Network
|
pysvn_project
|
svn-workbench
|
svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$(xeyes).
|
CWE-20
Improper Input Validation
|
CVE-2015-0853
|
2024-11-21 11:23 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277348
|
7.0 |
HIGH
Local
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in HSDPA.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0576
|
2024-11-21 11:23 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277349
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration.
|
CWE-326
Inadequate Encryption Strength
|
CVE-2015-0575
|
2024-11-21 11:23 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277350
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient.
|
CWE-20
Improper Input Validation
|
CVE-2015-0574
|
2024-11-21 11:23 |
2017-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
