|
271821
|
- |
|
sap
|
netweaver
|
The SAP Management Console in SAP NetWeaver 7.40 allows remote attackers to obtain sensitive information via the ReadProfile parameters, aka SAP Security Note 2091768.
|
CWE-200
Information Exposure
|
CVE-2015-2817
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271822
|
- |
|
sap
|
afaria
|
The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict access, which allows remote attackers to have unspecified impact via a crafted request, aka SAP Security Note 2134905.
|
CWE-284
Improper Access Control
|
CVE-2015-2816
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271823
|
- |
|
sap
|
netweaver
|
Buffer overflow in the C_SAPGPARAM function in the NetWeaver Dispatcher in SAP KERNEL 7.00 (7000.52.12.34966) and 7.40 (7400.12.21.30308) allows remote authenticated users to cause a denial of servic…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-2815
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271824
|
- |
|
sap
|
clinical_task_tracker
emr_unwired
|
SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does not properly restrict access, which allows remote attackers to change the backendurl,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-2814
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271825
|
- |
|
sap
|
mobile_platform
|
XML external entity (XXE) vulnerability in SAP Mobile Platform allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Note 2125358.
|
NVD-CWE-Other
|
CVE-2015-2813
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271826
|
- |
|
sap
|
netweaver_enterprise_portal
|
XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Secur…
|
NVD-CWE-Other
|
CVE-2015-2812
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271827
|
- |
|
sap
|
netweaver_enterprise_portal
|
XML external entity (XXE) vulnerability in ReportXmlViewer in SAP NetWeaver Portal 7.31.201109172004 allows remote attackers to send requests to intranet servers via crafted XML, aka SAP Security Not…
|
NVD-CWE-Other
|
CVE-2015-2811
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271828
|
- |
|
debian
xen
fedoraproject
canonical
|
debian_linux
xen
fedora
ubuntu_linux
|
QEMU, as used in Xen 3.3.x through 4.5.x, does not properly restrict access to PCI command registers, which might allow local HVM guest users to cause a denial of service (non-maskable interrupt and …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-2756
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271829
|
- |
|
ab_google_map_travel_project
|
ab_google_map_travel
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the AB Google Map Travel (AB-MAP) plugin before 4.0 for WordPress allow remote attackers to hijack the authentication of administrators f…
|
CWE-352
Origin Validation Error
|
CVE-2015-2755
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271830
|
- |
|
synology
|
diskstation_manager
|
The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM) before 3.1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attack…
|
CWE-200
Information Exposure
|
CVE-2015-2809
|
2024-11-21 11:28 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
