|
269671
|
5.9 |
MEDIUM
Network
|
veritas
|
netbackup_appliance
netbackup
|
Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server…
|
CWE-200
Information Exposure
|
CVE-2015-6551
|
2024-11-21 11:35 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269672
|
9.8 |
CRITICAL
Network
|
veritas
|
netbackup_appliance
netbackup
|
bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through…
|
CWE-284
Improper Access Control
|
CVE-2015-6550
|
2024-11-21 11:35 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269673
|
4.3 |
MEDIUM
Network
|
sierrawireless
|
aleos
|
ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover pote…
|
NVD-CWE-Other
|
CVE-2015-6479
|
2024-11-21 11:35 |
2016-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269674
|
8.8 |
HIGH
Network
|
zimbra
|
zimbra_collaboration_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mail interface in Zimbra Collaboration Server (ZCS) before 8.5 allow remote attackers to hijack the authentication of arbitrary users…
|
CWE-352
Origin Validation Error
|
CVE-2015-6541
|
2024-11-21 11:35 |
2016-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269675
|
9.1 |
CRITICAL
Network
|
broadcom
|
single_sign-on
|
The non-Domino web agents in CA Single Sign-On (aka SSO, formerly SiteMinder) R6, R12.0 before SP3 CR13, R12.0J before SP3 CR1.2, and R12.5 before CR5 allow remote attackers to cause a denial of serv…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2015-6854
|
2024-11-21 11:35 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269676
|
9.1 |
CRITICAL
Network
|
broadcom
|
single_sign-on
|
The Domino web agent in CA Single Sign-On (aka SSO, formerly SiteMinder) R6, R12.0 before SP3 CR13, R12.0J before SP3 CR1.2, R12.5 before CR5, R12.51 before CR4, and R12.52 before SP1 CR3 allows remo…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2015-6853
|
2024-11-21 11:35 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269677
|
5.3 |
MEDIUM
Network
|
schneider-electric
|
telvent_rtu_firmware
|
Schneider Electric Telvent Sage 2300 RTUs with firmware before C3413-500-S01, and LANDAC II-2, Sage 1410, Sage 1430, Sage 1450, Sage 2400, and Sage 3030M RTUs with firmware before C3414-500-S02J2, al…
|
CWE-200
Information Exposure
|
CVE-2015-6485
|
2024-11-21 11:35 |
2016-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269678
|
7.5 |
HIGH
Network
|
wolfssl
|
wolfssl
|
wolfSSL (formerly CyaSSL) before 3.6.8 allows remote attackers to cause a denial of service (resource consumption or traffic amplification) via a crafted DTLS cookie in a ClientHello message.
|
CWE-399
Resource Management Errors
|
CVE-2015-6925
|
2024-11-21 11:35 |
2016-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269679
|
7.3 |
HIGH
Network
|
php
|
php
|
The SoapClient __call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary…
|
NVD-CWE-Other
|
CVE-2015-6836
|
2024-11-21 11:35 |
2016-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269680
|
7.5 |
HIGH
Network
|
php
|
php
|
Directory traversal vulnerability in the PharData class in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to write to arbitrary files via a .. (dot dot) in a …
|
CWE-22
Path Traversal
|
CVE-2015-6833
|
2024-11-21 11:35 |
2016-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
