|
267721
|
4.7 |
MEDIUM
Local
|
puppet
|
puppet_enterprise
|
Puppet Server in Puppet Enterprise before 3.8.x before 3.8.3 and 2015.2.x before 2015.2.3 uses world-readable permissions for the private key of the Certification Authority (CA) certificate during th…
|
CWE-200
Information Exposure
|
CVE-2015-7328
|
2024-11-21 11:36 |
2016-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267722
|
4.7 |
MEDIUM
Local
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive cleartext web-services information by leveraging database access.
|
CWE-200
Information Exposure
|
CVE-2015-7438
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267723
|
5.5 |
MEDIUM
Local
|
ibm
|
sterling_b2b_integrator
|
Queue Watcher in IBM Sterling B2B Integrator 5.2 allows local users to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-7437
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267724
|
2.5 |
LOW
Local
|
ibm
|
tivoli_common_reporting
|
IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-7436
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267725
|
2.5 |
LOW
Local
|
ibm
|
tivoli_common_reporting
|
IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos…
|
CWE-254
7PK - Security Features
|
CVE-2015-7435
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267726
|
4.3 |
MEDIUM
Network
|
ibm
|
maximo_for_transportation
maximo_for_utilities
maximo_asset_management
smartcloud_control_desk
maximo_for_life_sciences
maximo_asset_management_essentials
maximo_for_nuclear_power
IBM Maximo Asset Management 7.5 before 7.5.0.9 FP9 and 7.6 before 7.6.0.3 FP3 and Maximo Asset Management 7.5 before 7.5.0.9 FP9, 7.5.1, and 7.6 before 7.6.0.3 FP3 for SmartCloud Control Desk allow r…
|
CWE-200
Information Exposure
|
CVE-2015-7452
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
267727
|
6.1 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
Cross-site scripting (XSS) vulnerability in Queue Watcher in IBM Sterling B2B Integrator 5.2 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7431
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267728
|
8.4 |
HIGH
Local
|
apache
|
hadoop
|
The Hadoop connector 1.1.1, 2.4, 2.5, and 2.7.0-0 before 2.7.0-3 for IBM Spectrum Scale and General Parallel File System (GPFS) allows local users to read or write to arbitrary GPFS data via unspecif…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-7430
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267729
|
10.0 |
CRITICAL
Network
|
ibm
|
spectrum_protect_for_virtual_environments
spectrum_protect_snapshot
|
The Data Protection extension in the VMware GUI in IBM Tivoli Storage Manager for Virtual Environments: Data Protection for VMware (aka Spectrum Protect for Virtual Environments) 7.1 before 7.1.3.0 a…
|
CWE-78
OS Command
|
CVE-2015-7426
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267730
|
5.5 |
MEDIUM
Local
|
ibm
|
i_access
|
Buffer overflow in IBM i Access 7.1 on Windows allows local users to cause a denial of service (application crash) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7422
|
2024-11-21 11:36 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
