|
270371
|
- |
|
google
|
android
|
Media Player Framework in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bug 23223325.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3879
|
2024-11-21 11:30 |
2015-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270372
|
- |
|
google
|
android
|
Media Projection in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to bypass an intended screen-recording warning feature and obtain sensitive screen-snapshot information …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3878
|
2024-11-21 11:30 |
2015-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270373
|
- |
|
google
|
android
|
Skia, as used in Android before 5.1.1 LMY48T, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 20723696.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3877
|
2024-11-21 11:30 |
2015-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270374
|
- |
|
mitsubishi_electric
|
melsec_fx3g
|
The HTTP application on Mitsubishi Electric MELSEC FX3G PLC devices before April 2015 allows remote attackers to cause a denial of service (device outage) via a long parameter.
|
CWE-399
Resource Management Errors
|
CVE-2015-3938
|
2024-11-21 11:30 |
2015-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270375
|
- |
|
easyio
|
easyio-30p-sf_firmware
easyio-30p-sf
|
EasyIO EasyIO-30P-SF controllers with firmware before 0.5.21 and 2.x before 2.0.5.21, as used in Accutrol, Bar-Tech Automation, Infocon/EasyIO, Honeywell Automation India, Johnson Controls, SyxthSENS…
|
CWE-255
Credentials Management
|
CVE-2015-3974
|
2024-11-21 11:30 |
2015-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270376
|
- |
|
cisco
|
prime_collaboration_provisioning
|
The web framework in Cisco Prime Collaboration Provisioning before 11.0 allows remote authenticated users to bypass intended access restrictions and create administrative accounts via a crafted URL, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4307
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270377
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended login-session read restrictions, and impersonate administrators of …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4306
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270378
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended system-database read restrictions, and discover credentials or SNMP…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4305
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270379
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read dat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4304
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270380
|
- |
|
schneider-electric
|
struxureware_building_expert_multi-purpose_management
|
Schneider Electric StruxureWare Building Expert MPM before 2.15 does not use encryption for the client-server data stream, which allows remote attackers to discover credentials by sniffing the networ…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2015-3962
|
2024-11-21 11:30 |
2015-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
