|
274481
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through 7.0.0.9 allows remote authenticated users to obtain sensitive personal information via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2015-4980
|
2024-11-21 11:32 |
2015-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274482
|
- |
|
redhat
|
openshift_origin
|
The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.
|
CWE-20
Improper Input Validation
|
CVE-2015-5250
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274483
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-5200
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274484
|
- |
|
canonical
libvdpau_project
|
ubuntu_linux
libvdpau
|
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable.
|
CWE-22
Path Traversal
|
CVE-2015-5199
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274485
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5198
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274486
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated users to execute arbitrary commands via "escape characters" in a URL.
|
CWE-77
Command Injection
|
CVE-2015-5190
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274487
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for sec…
|
CWE-362
Race Condition
|
CVE-2015-5189
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274488
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server_aus
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET e…
|
CWE-399
Resource Management Errors
|
CVE-2015-5366
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274489
|
- |
|
linux
redhat
debian
canonical
|
linux_kernel
enterprise_linux_server_aus
debian_linux
ubuntu_linux
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system …
|
CWE-399
Resource Management Errors
|
CVE-2015-5364
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274490
|
- |
|
redhat
linux
|
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
linux_kernel
|
arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution, which might allow local users to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5157
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
