|
272381
|
- |
|
debian
redhat
opensuse
google
|
debian_linux
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
opensuse<…
|
Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by l…
|
NVD-CWE-Other
|
CVE-2015-1272
|
2024-11-21 11:25 |
2015-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272382
|
- |
|
google
redhat
opensuse
debian
oracle
|
chrome
enterprise_linux_server_supplementary_eus
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
opensuse
deb…
|
The ucnv_io_getConverterName function in common/ucnv_io.cpp in International Components for Unicode (ICU), as used in Google Chrome before 44.0.2403.89, mishandles converter names with initial x- sub…
|
CWE-19
Data Processing Errors
|
CVE-2015-1270
|
2024-11-21 11:25 |
2015-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272383
|
- |
|
centreon
|
centreon
|
The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular exp…
|
CWE-77
Command Injection
|
CVE-2015-1561
|
2024-11-21 11:25 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272384
|
- |
|
centreon
|
centreon
|
SQL injection vulnerability in the isUserAdmin function in include/common/common-Func.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon web 2.7.0) allows remote attack…
|
CWE-89
SQL Injection
|
CVE-2015-1560
|
2024-11-21 11:25 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272385
|
- |
|
canonical
debian
|
ubuntu_linux
unattended-upgrades
|
unattended-upgrades before 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which all…
|
CWE-287
Improper Authentication
|
CVE-2015-1330
|
2024-11-21 11:25 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272386
|
- |
|
symantec
|
data_loss_prevention
|
Cross-site request forgery (CSRF) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to hijack the authenti…
|
CWE-352
Origin Validation Error
|
CVE-2015-1485
|
2024-11-21 11:25 |
2015-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272387
|
- |
|
google
|
chrome
|
The DecodeHSTSPreloadRaw function in net/http/transport_security_state.cc in Google Chrome before 43.0.2357.130 does not properly canonicalize DNS hostnames before making comparisons to HSTS or HPKP …
|
CWE-254
7PK - Security Features
|
CVE-2015-1269
|
2024-11-21 11:25 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272388
|
- |
|
google
|
chrome
|
bindings/scripts/v8_types.py in Blink, as used in Google Chrome before 43.0.2357.130, does not properly select a creation context for a return value's DOM wrapper, which allows remote attackers to by…
|
CWE-254
7PK - Security Features
|
CVE-2015-1268
|
2024-11-21 11:25 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272389
|
- |
|
google
|
chrome
|
Blink, as used in Google Chrome before 43.0.2357.130, does not properly restrict the creation context during creation of a DOM wrapper, which allows remote attackers to bypass the Same Origin Policy …
|
CWE-254
7PK - Security Features
|
CVE-2015-1267
|
2024-11-21 11:25 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272390
|
- |
|
google
|
chrome
|
content/browser/webui/content_web_ui_controller_factory.cc in Google Chrome before 43.0.2357.130 does not properly consider the scheme in determining whether a URL is associated with a WebUI SiteInst…
|
CWE-254
7PK - Security Features
|
CVE-2015-1266
|
2024-11-21 11:25 |
2015-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
