|
268071
|
6.3 |
MEDIUM
Network
|
hp
|
arcsight_logger
|
HPE ArcSight Logger before 6.1P1 allows remote authenticated users to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
|
CWE-20
Improper Input Validation
|
CVE-2015-6864
|
2024-11-21 11:35 |
2016-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268072
|
7.3 |
HIGH
Network
|
hp
|
arcsight_logger
|
HPE ArcSight Logger before 6.1P1 allows remote attackers to execute arbitrary code via unspecified input to the (1) Intellicus or (2) client-certificate upload component.
|
CWE-20
Improper Input Validation
|
CVE-2015-6863
|
2024-11-21 11:35 |
2016-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268073
|
8.1 |
HIGH
Network
|
advantech
|
webaccess
|
Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code via vectors involving a browser plugin.
|
NVD-CWE-noinfo
|
CVE-2015-6467
|
2024-11-21 11:35 |
2016-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268074
|
8.4 |
HIGH
Local
|
zarafa
fedoraproject
|
zarafa_collaboration_platform
fedora
|
zarafa-autorespond in Zarafa Collaboration Platform (ZCP) before 7.2.1 allows local users to gain privileges via a symlink attack on /tmp/zarafa-vacation-*.
|
CWE-59
Link Following
|
CVE-2015-6566
|
2024-11-21 11:35 |
2016-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268075
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
Directory Utility in Apple OS X before 10.11.1 mishandles authentication for new sessions, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6980
|
2024-11-21 11:35 |
2016-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268076
|
6.3 |
MEDIUM
Network
|
vmware
|
player
workstation
esxi
fusion
|
The VMware Tools HGFS (aka Shared Folders) implementation in VMware Workstation 11.x before 11.1.2, VMware Player 7.x before 7.1.2, VMware Fusion 7.x before 7.1.2, and VMware ESXi 5.0 through 6.0 all…
|
CWE-284
Improper Access Control
|
CVE-2015-6933
|
2024-11-21 11:35 |
2016-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268077
|
7.8 |
HIGH
Local
|
dell
|
pre-boot_authentication_driver
|
Dell Pre-Boot Authentication Driver (PBADRV.sys) 1.0.1.5 allows local users to write to arbitrary physical memory locations and gain privileges via a 0x0022201c IOCTL call.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6856
|
2024-11-21 11:35 |
2016-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268078
|
8.4 |
HIGH
Local
|
hp
|
ucmdb_browser
|
HPE UCMDB Browser before 4.02 allows remote attackers to obtain sensitive information or bypass intended access restrictions via unspecified vectors.
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2015-6862
|
2024-11-21 11:35 |
2016-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268079
|
7.8 |
HIGH
Local
|
google
|
android
|
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka i…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6647
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268080
|
6.2 |
MEDIUM
Local
|
google
|
android
|
The System V IPC implementation in the kernel in Android before 6.0 2016-01-01 allows attackers to cause a denial of service (global kernel resource consumption) by leveraging improper interaction be…
|
CWE-399
Resource Management Errors
|
CVE-2015-6646
|
2024-11-21 11:35 |
2016-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
