|
273581
|
7.5 |
HIGH
Network
|
canonical
|
juju
|
Juju Core's Joyent provider before version 1.25.5 uploads the user's private ssh key.
|
CWE-320
Key Management Errors
|
CVE-2015-1316
|
2024-11-21 11:25 |
2019-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273582
|
7.5 |
HIGH
Network
|
icewarp
|
mail_server
|
Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the file parameter to a webmail/client/skins/d…
|
CWE-22
Path Traversal
|
CVE-2015-1503
|
2024-11-21 11:25 |
2018-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273583
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
The do_ed_script function in pch.c in GNU patch through 2.7.6, and patch in FreeBSD 10.1 before 10.1-RELEASE-p17, 10.2 before 10.2-BETA2-p3, 10.2-RC1 before 10.2-RC1-p2, and 0.2-RC2 before 10.2-RC2-p…
|
CWE-200
Information Exposure
|
CVE-2015-1418
|
2024-11-21 11:25 |
2018-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273584
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
Larry Wall's patch; patch in FreeBSD 10.2-RC1 before 10.2-RC1-p1, 10.2 before 10.2-BETA2-p2, and 10.1 before 10.1-RELEASE-p16; Bitrig; GNU patch before 2.2.5; and possibly other patch variants allow …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1416
|
2024-11-21 11:25 |
2018-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273585
|
8.8 |
HIGH
Network
|
google
qt
opensuse
|
chrome
qt
leap
|
The Google V8 engine, as used in Google Chrome before 44.0.2403.89 and QtWebEngineCore in Qt before 5.5.1, allows remote attackers to cause a denial of service (memory corruption) or execute arbitrar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1290
|
2024-11-21 11:25 |
2018-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273586
|
7.5 |
HIGH
Network
|
cybelesoft
|
thinfinity_remote_desktop_workstation
|
Directory traversal vulnerability in Cybele Software Thinfinity Remote Desktop Workstation 3.0.0.3 32-bit and 64-bit allows remote attackers to download arbitrary files via a .. (dot dot) in an unspe…
|
CWE-22
Path Traversal
|
CVE-2015-1429
|
2024-11-21 11:25 |
2017-10-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273587
|
7.8 |
HIGH
Local
|
google
|
android
|
Integer overflow in IHDCP.cpp in the media_server component in Android allows remote attackers to execute arbitrary code via a crafted application.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-1537
|
2024-11-21 11:25 |
2017-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273588
|
5.5 |
MEDIUM
Local
|
google
|
android
|
The media_server component in Android allows remote attackers to cause a denial of service via a crafted application.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-1526
|
2024-11-21 11:25 |
2017-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273589
|
7.8 |
HIGH
Local
|
man-db_project
|
man-db
|
The daily mandb cleanup job in Man-db before 2.7.6.1-1 as packaged in Ubuntu and Debian allows local users with access to the man account to gain privileges via vectors involving insecure chown use.
|
CWE-284
Improper Access Control
|
CVE-2015-1336
|
2024-11-21 11:25 |
2017-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273590
|
8.8 |
HIGH
Network
|
canonical
|
ubuntu_linux
|
Use-after-free vulnerability in oxide::qt::URLRequestDelegatedJob in oxide-qt in Ubuntu 15.04 and 14.04 LTS might allow remote attackers to execute arbitrary code.
|
CWE-416
Use After Free
|
CVE-2015-1329
|
2024-11-21 11:25 |
2017-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
