|
267811
|
2.5 |
LOW
Local
|
ibm
|
websphere_mq
|
runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue-manager command access restrictions by leveraging authority for +connect and +dsp.
|
CWE-284
Improper Access Control
|
CVE-2015-7473
|
2024-11-21 11:36 |
2016-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267812
|
4.4 |
MEDIUM
Local
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 8.0.0.4 on IBM i platforms allows local users to discover cleartext certificate-keystore passwords within MQ trace output by leveraging administrator privileges to execute the mqcert…
|
CWE-255
CWE-200
Credentials Management
Information Exposure
|
CVE-2015-7462
|
2024-11-21 11:36 |
2016-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267813
|
6.1 |
MEDIUM
Network
|
fortinet
|
fortisandbox_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface (WebUI) in Fortinet FortiSandbox before 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) ser…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7360
|
2024-11-21 11:36 |
2016-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267814
|
7.5 |
HIGH
Network
|
debian
gnome
|
debian_linux
librsvg
|
librsvg before 2.40.12 allows context-dependent attackers to cause a denial of service (infinite loop, stack consumption, and application crash) via cyclic references in an SVG document.
|
CWE-20
Improper Input Validation
|
CVE-2015-7558
|
2024-11-21 11:36 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267815
|
7.5 |
HIGH
Network
|
gnome
|
librsvg
|
The _rsvg_node_poly_build_path function in rsvg-shapes.c in librsvg before 2.40.7 allows context-dependent attackers to cause a denial of service (out-of-bounds heap read) via an odd number of elemen…
|
CWE-20
Improper Input Validation
|
CVE-2015-7557
|
2024-11-21 11:36 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267816
|
4.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The aiptek_probe function in drivers/input/tablet/aiptek.c in the Linux kernel before 4.4 allows physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash…
|
CWE-476
NULL Pointer Dereference
|
CVE-2015-7515
|
2024-11-21 11:36 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267817
|
2.0 |
LOW
Physics
|
gnupg
debian
canonical
|
libgcrypt
debian_linux
ubuntu_linux
|
Libgcrypt before 1.6.5 does not properly perform elliptic-point curve multiplication during decryption, which makes it easier for physically proximate attackers to extract ECDH keys by measuring elec…
|
CWE-200
Information Exposure
|
CVE-2015-7511
|
2024-11-21 11:36 |
2016-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267818
|
7.8 |
HIGH
Local
|
watchguard
|
panda_url_filtering
|
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda…
|
CWE-276
Incorrect Default Permissions
|
CVE-2015-7378
|
2024-11-21 11:36 |
2016-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267819
|
7.8 |
HIGH
Local
|
opensuse
|
opensuse
|
Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7552
|
2024-11-21 11:36 |
2016-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267820
|
5.5 |
MEDIUM
Local
|
giflib_project
fedoraproject
|
giflib
fedora
|
Heap-based buffer overflow in giffix.c in giffix in giflib 5.1.1 allows attackers to cause a denial of service (program crash) via crafted image and logical screen width fields in a GIF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7555
|
2024-11-21 11:36 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
