|
270211
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read dat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4304
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270212
|
- |
|
schneider-electric
|
struxureware_building_expert_multi-purpose_management
|
Schneider Electric StruxureWare Building Expert MPM before 2.15 does not use encryption for the client-server data stream, which allows remote attackers to discover credentials by sniffing the networ…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2015-3962
|
2024-11-21 11:30 |
2015-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270213
|
- |
|
f5
|
enterprise_manager
big-ip_global_traffic_manager
big-ip_analytics
big-ip_protocol_security_module
big-ip_application_acceleration_manager
big-ip_access_policy_manager
big-ip_edge_ga…
|
Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the…
|
CWE-22
Path Traversal
|
CVE-2015-4040
|
2024-11-21 11:30 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270214
|
- |
|
sma_solar_technology_ag
|
webbox_firmware
|
SMA Solar Sunny WebBox has hardcoded passwords, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2015-3964
|
2024-11-21 11:30 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270215
|
- |
|
fortinet
|
forticlient
|
The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to read arbitrary kernel memory via a 0x22608C io…
|
CWE-200
Information Exposure
|
CVE-2015-4077
|
2024-11-21 11:30 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270216
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID CSCuv105…
|
CWE-78
OS Command
|
CVE-2015-4330
|
2024-11-21 11:30 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270217
|
- |
|
linux
|
linux_kernel
|
Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly hav…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4036
|
2024-11-21 11:30 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270218
|
- |
|
innominate
|
mguard_firmware
|
The IPsec SA establishment process on Innominate mGuard devices with firmware 8.x before 8.1.7 allows remote authenticated users to cause a denial of service (VPN service restart) by leveraging a pee…
|
CWE-20
Improper Input Validation
|
CVE-2015-3966
|
2024-11-21 11:30 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270219
|
- |
|
sonicwall
|
netextender
|
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2015-4173
|
2024-11-21 11:30 |
2015-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270220
|
- |
|
qemu
|
qemu
|
The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creati…
|
CWE-17
Code
|
CVE-2015-4037
|
2024-11-21 11:30 |
2015-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
