|
272051
|
- |
|
xen
|
xen
|
The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service (CPU cons…
|
CWE-399
Resource Management Errors
|
CVE-2015-7970
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272052
|
- |
|
xen
|
xen
|
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of "teardowns" …
|
CWE-399
Resource Management Errors
|
CVE-2015-7969
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272053
|
- |
|
xen
|
xen
|
The mod_l2_entry function in arch/x86/mm.c in Xen 3.4 through 4.6.x does not properly validate level 2 page table entries, which allows local PV guest administrators to gain privileges via a crafted …
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2015-7835
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272054
|
- |
|
xen
|
xen
|
Race condition in the relinquish_memory function in arch/arm/domain.c in Xen 4.6.x and earlier allows local domains with partial management control to cause a denial of service (host crash) via vecto…
|
CWE-119
CWE-362
Incorrect Access of Indexable Resource ('Range Error')
Race Condition
|
CVE-2015-7814
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272055
|
- |
|
xen
|
xen
|
Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk console messages when reporting unimplemented hypercalls, which allows local guests to cause a denial of service via a sequence of (1) …
|
CWE-399
Resource Management Errors
|
CVE-2015-7813
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272056
|
- |
|
joomla
|
joomla\!
|
The com_content component in Joomla! 3.x before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2015-7899
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272057
|
- |
|
joomla
|
joomla\!
|
The com_contenthistory component in Joomla! 3.2 before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-7859
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272058
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
|
CWE-89
SQL Injection
|
CVE-2015-7858
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272059
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2015-7857
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272060
|
- |
|
openstack
|
nova
|
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by lever…
|
CWE-254
7PK - Security Features
|
CVE-2015-7713
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
