|
270891
|
9.8 |
CRITICAL
Network
|
apache
oracle
|
groovy
retail_store_inventory_management
health_sciences_clinical_development_center
retail_service_backbone
retail_order_broker_cloud_service
webcenter_sites
|
The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized obje…
|
CWE-74
Injection
|
CVE-2015-3253
|
2024-11-21 11:29 |
2015-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270892
|
- |
|
openafs
|
openafs
|
Buffer overflow in the Solaris kernel extension in OpenAFS before 1.6.13 allows local users to cause a denial of service (panic or deadlock) or possibly have other unspecified impact via a large grou…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3286
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270893
|
- |
|
openafs
|
openafs
|
The pioctl for the OSD FS command in OpenAFS before 1.6.13 uses the wrong pointer when writing the results of the RPC, which allows local users to cause a denial of service (memory corruption and ker…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3285
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270894
|
- |
|
openafs
|
openafs
|
pioctls in OpenAFS 1.6.x before 1.6.13 allows local users to read kernel memory via crafted commands.
|
CWE-200
Information Exposure
|
CVE-2015-3284
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270895
|
- |
|
openafs
|
openafs
|
OpenAFS before 1.6.13 allows remote attackers to spoof bos commands via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3283
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270896
|
- |
|
openafs
|
openafs
|
vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.
|
CWE-200
Information Exposure
|
CVE-2015-3282
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270897
|
- |
|
fortinet
|
fortios
|
Cross-site scripting (XSS) vulnerability in the DHCP Monitor page in the Web User Interface (WebUI) in Fortinet FortiOS before 5.2.4 on FortiGate devices allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3626
|
2024-11-21 11:29 |
2015-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270898
|
- |
|
redhat
|
jboss_operations_network
|
Cross-site scripting (XSS) vulnerability in the 404 error page in Red Hat JBoss Operations Network before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2015-3267
|
2024-11-21 11:29 |
2015-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270899
|
- |
|
linux
redhat
debian
canonical
|
linux_kernel
enterprise_linux
debian_linux
ubuntu_linux
|
The ping_unhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges …
|
NVD-CWE-Other
|
CVE-2015-3636
|
2024-11-21 11:29 |
2015-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270900
|
- |
|
debian
wordpress
|
debian_linux
wordpress
|
Cross-site scripting (XSS) vulnerability in the Ephox (formerly Moxiecode) plupload.flash.swf shim 2.1.2 in Plupload, as used in WordPress 3.9.x, 4.0.x, and 4.1.x before 4.1.2 and other products, all…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3439
|
2024-11-21 11:29 |
2015-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
