|
268791
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in QEMU, when built with a VMWARE VMXNET3 paravirtual NIC emulator support, allows local guest users to cause a denial of service (host memory consumption) by trying to activate the vmxne…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2015-8568
|
2024-11-21 11:38 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268792
|
6.5 |
MEDIUM
Network
|
qemu
debian
|
qemu
debian_linux
|
Qemu, when built with VNC display driver support, allows remote attackers to cause a denial of service (arithmetic exception and application crash) via crafted SetPixelFormat messages from a client.
|
CWE-369
Divide By Zero
|
CVE-2015-8504
|
2024-11-21 11:38 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268793
|
7.5 |
HIGH
Network
|
keepassx_project
|
keepassx
|
In KeePassX before 0.4.4, a cleartext copy of password data is created upon a cancel of an XML export action. This allows context-dependent attackers to obtain sensitive information by reading the .x…
|
CWE-200
Information Exposure
|
CVE-2015-8378
|
2024-11-21 11:38 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268794
|
5.5 |
MEDIUM
Local
|
eparaksts
|
eparakstitajs_3
edoc-libraries
|
LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to read arbitrary files via crafted EDOC files.
|
CWE-200
Information Exposure
|
CVE-2015-8276
|
2024-11-21 11:38 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268795
|
5.5 |
MEDIUM
Local
|
eparaksts
|
eparakstitajs_3
edoc-libraries
|
LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to write to arbitrary files via crafted EDOC files.
|
CWE-284
Improper Access Control
|
CVE-2015-8275
|
2024-11-21 11:38 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268796
|
7.5 |
HIGH
Network
|
axis
|
axis_communications_firmware
|
AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."
|
CWE-74
Injection
|
CVE-2015-8258
|
2024-11-21 11:38 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268797
|
8.8 |
HIGH
Network
|
axis
|
axis_communications_firmware
|
AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.
|
CWE-352
Origin Validation Error
|
CVE-2015-8255
|
2024-11-21 11:38 |
2017-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268798
|
8.8 |
HIGH
Network
|
huawei
|
logcenter
|
Huawei LogCenter V100R001C10 could allow an authenticated attacker to tamper with requests using a tool and submit a request to the server for privilege escalation, affecting some system functions.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8671
|
2024-11-21 11:38 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268799
|
6.5 |
MEDIUM
Network
|
huawei
|
logcenter
|
Huawei LogCenter V100R001C10 could allow an authenticated attacker to add abnormal device information to the log collection module, causing denial of service.
|
CWE-20
Improper Input Validation
|
CVE-2015-8670
|
2024-11-21 11:38 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268800
|
5.5 |
MEDIUM
Local
|
openstack
|
glance
|
The image signature algorithm in OpenStack Glance 11.0.0 allows remote attackers to bypass the signature verification process via a crafted image, which triggers an MD5 collision.
|
CWE-310
Cryptographic Issues
|
CVE-2015-8234
|
2024-11-21 11:38 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
