|
277551
|
6.1 |
MEDIUM
Network
|
netiq
|
identity_manager
|
XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote attackers to inject arbitrary HTML code via the accessMgrDN value of the forgotUser.do CGI.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0787
|
2024-11-21 11:23 |
2016-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277552
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
Multiple race conditions in drivers/char/adsprpc.c and drivers/char/adsprpc_compat.c in the ADSPRPC driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions…
|
CWE-362
Race Condition
|
CVE-2015-0572
|
2024-11-21 11:23 |
2016-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277553
|
8.0 |
HIGH
Network
|
cisco
|
nx-os
|
Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, 2000, 3000, 3500, 4000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote authenticated users to bypass intended A…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0721
|
2024-11-21 11:23 |
2016-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277554
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows at…
|
CWE-476
NULL Pointer Dereference
|
CVE-2015-0573
|
2024-11-21 11:23 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277555
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Use-after-free vulnerability in the msm_set_crop function in drivers/media/video/msm/msm_camera.c in the MSM-Camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Andro…
|
CWE-416
Use After Free
|
CVE-2015-0568
|
2024-11-21 11:23 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277556
|
7.5 |
HIGH
Network
|
apache
|
struts
|
The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.
|
CWE-20
Improper Input Validation
|
CVE-2015-0899
|
2024-11-21 11:23 |
2016-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277557
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not verify authorization for …
|
CWE-862
Missing Authorization
|
CVE-2015-0571
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277558
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in wlan_hdd_hostapd.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation Center (QuIC) …
|
CWE-787
Out-of-bounds Write
|
CVE-2015-0570
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277559
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Heap-based buffer overflow in the private wireless extensions IOCTL implementation in wlan_hdd_wext.c in the WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used in Qualcomm Innovation C…
|
CWE-787
Out-of-bounds Write
|
CVE-2015-0569
|
2024-11-21 11:23 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277560
|
3.3 |
LOW
Local
|
debian
tardiff_project
|
debian_linux
tardiff
|
Cool Projects TarDiff allows local users to write to arbitrary files via a symlink attack on a pathname in a /tmp/tardiff-$$ temporary directory.
|
CWE-59
Link Following
|
CVE-2015-0858
|
2024-11-21 11:23 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
