|
267111
|
9.8 |
CRITICAL
Network
|
lldpd_project
debian
fedoraproject
|
lldpd
debian_linux
fedora
|
Buffer overflow in the lldp_decode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code vi…
|
CWE-120
Classic Buffer Overflow
|
CVE-2015-8011
|
2024-11-21 11:37 |
2020-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267112
|
6.5 |
MEDIUM
Network
|
ntp
|
ntp
|
Directory traversal vulnerability in the save_config function in ntpd in ntp_control.c in NTP before 4.2.8p4, when used on systems that do not use '\' or '/' characters for directory separation such …
|
CWE-22
Path Traversal
|
CVE-2015-7851
|
2024-11-21 11:37 |
2020-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267113
|
9.8 |
CRITICAL
Network
|
portapps
|
kitty_portable
|
Buffer overflow in the chat server in KiTTY Portable 0.65.0.2p and earlier allows remote attackers to execute arbitrary code via a long nickname.
|
CWE-120
Classic Buffer Overflow
|
CVE-2015-7874
|
2024-11-21 11:37 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267114
|
7.8 |
HIGH
Local
|
samsung
|
m2m1shot_driver
|
Stack-based buffer overflow in the m2m1shot_compat_ioctl32 function in the Samsung m2m1shot driver framework, as used in Samsung S6 Edge, allows local users to have unspecified impact via a large dat…
|
CWE-787
Out-of-bounds Write
|
CVE-2015-7892
|
2024-11-21 11:37 |
2019-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267115
|
8.8 |
HIGH
Network
|
cloudera
|
cdh
|
In Cloudera Hue, there is privilege escalation by a read-only user when CDH 5.x brefore 5.4.9 is used.
|
CWE-269
Improper Privilege Management
|
CVE-2015-7831
|
2024-11-21 11:37 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267116
|
4.7 |
MEDIUM
Local
|
videolan
redhat
fedoraproject
debian
|
libbluray
enterprise_linux
fedora
debian_linux
|
libbluray MountManager class has a time-of-check time-of-use (TOCTOU) race when expanding JAR files
|
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition
|
CVE-2015-7810
|
2024-11-21 11:37 |
2019-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267117
|
8.1 |
HIGH
Network
|
mongodb
|
mongodb
|
Improper handling of LDAP authentication in MongoDB Server versions 3.0.0 to 3.0.6 allows an unauthenticated client to gain unauthorized access.
|
CWE-287
Improper Authentication
|
CVE-2015-7882
|
2024-11-21 11:37 |
2019-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267118
|
6.1 |
MEDIUM
Network
|
synacor
|
zimbra_collaboration_suite
|
Synacor Zimbra Mail Client 8.6 before 8.6.0 Patch 5 has XSS via the error/warning dialog and email body content in Zimbra.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7609
|
2024-11-21 11:37 |
2019-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267119
|
8.8 |
HIGH
Network
|
zimbra
synacor
|
zimbra_collaboration_suite
|
Cross-site request forgery (CSRF) vulnerability in the login form in Zimbra Collaboration Suite (aka ZCS) before 8.6.0 Patch 10, 8.7.x before 8.7.11 Patch 2, and 8.8.x before 8.8.8 Patch 1 allows rem…
|
CWE-352
Origin Validation Error
|
CVE-2015-7610
|
2024-11-21 11:37 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267120
|
7.8 |
HIGH
Local
|
gemalto
|
safenet_authentication_service_for_citrix_web_interface_agent
|
SafeNet Authentication Service for Citrix Web Interface Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-7967
|
2024-11-21 11:37 |
2018-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
