|
268051
|
7.5 |
HIGH
Network
|
sisco
|
mms-ease_firmware
ax-s4_iccp_firmware
|
The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service (CPU consumption) via a crafted packet.
|
CWE-399
Resource Management Errors
|
CVE-2015-6574
|
2024-11-21 11:35 |
2016-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268052
|
6.1 |
MEDIUM
Network
|
vmware
|
vcenter_server
|
Cross-site scripting (XSS) vulnerability in the vSphere Web Client in VMware vCenter Server 5.0 before U3g, 5.1 before U3d, and 5.5 before U2d allows remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6931
|
2024-11-21 11:35 |
2016-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268053
|
7.5 |
HIGH
Network
|
php
xmlsoft
|
php
libxml2
|
The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility o…
|
NVD-CWE-Other
|
CVE-2015-6838
|
2024-11-21 11:35 |
2016-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268054
|
7.5 |
HIGH
Network
|
php
xmlsoft
|
php
libxml2
|
The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility o…
|
NVD-CWE-Other
|
CVE-2015-6837
|
2024-11-21 11:35 |
2016-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268055
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The session deserializer in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 mishandles multiple php_var_unserialize calls, which allow remote attackers to execute arbitrary code or ca…
|
NVD-CWE-Other
|
CVE-2015-6835
|
2024-11-21 11:35 |
2016-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268056
|
9.8 |
CRITICAL
Network
|
php
|
php
|
Multiple use-after-free vulnerabilities in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 allow remote attackers to execute arbitrary code via vectors related to (1) the Serializable…
|
NVD-CWE-Other
|
CVE-2015-6834
|
2024-11-21 11:35 |
2016-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268057
|
9.8 |
CRITICAL
Network
|
veritas
|
netbackup_appliance
netbackup
|
The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.…
|
CWE-284
Improper Access Control
|
CVE-2015-6552
|
2024-11-21 11:35 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268058
|
5.9 |
MEDIUM
Network
|
veritas
|
netbackup_appliance
netbackup
|
Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server…
|
CWE-200
Information Exposure
|
CVE-2015-6551
|
2024-11-21 11:35 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268059
|
9.8 |
CRITICAL
Network
|
veritas
|
netbackup_appliance
netbackup
|
bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through…
|
CWE-284
Improper Access Control
|
CVE-2015-6550
|
2024-11-21 11:35 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268060
|
4.3 |
MEDIUM
Network
|
sierrawireless
|
aleos
|
ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover pote…
|
NVD-CWE-Other
|
CVE-2015-6479
|
2024-11-21 11:35 |
2016-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
