|
270811
|
- |
|
openstack
|
image_registry_and_delivery_service_\(glance\)
|
OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allows remote authenticated users to bypass the storage quota and cause a denial of service (disk consumpti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5286
|
2024-11-21 11:32 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270812
|
- |
|
openstack
|
image_registry_and_delivery_service_\(glance\)
|
OpenStack Image Service (Glance) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) allow remote authenticated users to change the status of their images and bypass access restrictions via th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5251
|
2024-11-21 11:32 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270813
|
- |
|
openstack
|
swift
|
OpenStack Object Storage (Swift) before 2.4.0 allows attackers to obtain sensitive information via a PUT tempurl and a DLO object manifest that references an object in another container.
|
CWE-200
Information Exposure
|
CVE-2015-5223
|
2024-11-21 11:32 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270814
|
- |
|
postgresql
debian
canonical
|
postgresql
debian_linux
ubuntu_linux
|
Multiple stack-based buffer overflows in json parsing in PostgreSQL before 9.3.x before 9.3.10 and 9.4.x before 9.4.5 allow attackers to cause a denial of service (server crash) via unspecified vecto…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5289
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270815
|
- |
|
postgresql
|
postgresql
|
The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service…
|
CWE-200
Information Exposure
|
CVE-2015-5288
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270816
|
- |
|
ibm
|
cognos_disclosure_management
|
IBM Cognos Disclosure Management (CDM) 10.1.x and 10.2.x before 10.2.4 IF10 allows man-in-the-middle attackers to obtain access by spoofing an executable file during a client upload operation.
|
CWE-20
Improper Input Validation
|
CVE-2015-5014
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270817
|
- |
|
ibm
|
websphere_message_broker
integration_bus
|
IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check authorization for MQSISTARTMSGFLOW and MQSISTOPMSGFLOW commands, which allows local users to bypass int…
|
CWE-77
Command Injection
|
CVE-2015-5011
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270818
|
- |
|
ibm
|
spectrum_scale
general_parallel_file_system
|
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain sensitive information from system memory v…
|
CWE-200
Information Exposure
|
CVE-2015-4981
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270819
|
- |
|
ibm
|
spectrum_scale
general_parallel_file_system
|
IBM General Parallel File System (GPFS) 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain root privileges for command execution via …
|
CWE-77
Command Injection
|
CVE-2015-4974
|
2024-11-21 11:32 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270820
|
- |
|
oracle
|
supply_chain_products_suite
|
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 allows remote authenticated users to affect integrity via unknown vectors related to Security, …
|
NVD-CWE-noinfo
|
CVE-2015-4917
|
2024-11-21 11:32 |
2015-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
