|
281741
|
- |
|
adobe
|
flash_player
air
air_sdk
air_sdk_\&_compiler
|
Adobe Flash Player before 13.0.0.302 and 14.x through 18.x before 18.0.0.203 on Windows and OS X and before 11.2.202.481 on Linux, Adobe AIR before 18.0.0.180, Adobe AIR SDK before 18.0.0.180, and Ad…
|
CWE-284
Improper Access Control
|
CVE-2015-3114
|
2024-11-21 11:28 |
2015-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281742
|
- |
|
grandstream
|
gxv3611_hd_firmware
|
SQL injection vulnerability on the Grandstream GXV3611_HD camera with firmware before 1.0.3.9 beta allows remote attackers to execute arbitrary SQL commands by attempting to establish a TELNET sessio…
|
CWE-89
SQL Injection
|
CVE-2015-2866
|
2024-11-21 11:28 |
2015-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281743
|
- |
|
antlabs
|
inngate_ssg_4
inngate_ig_3100
inngate_ig_3.01_e
inngate_ig_3.10_m
inngate_ig_3.10_e
inngate_sg_4
|
Cross-site scripting (XSS) vulnerability in index-login.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices allows remote attackers…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2850
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281744
|
- |
|
antlabs
|
inngate_ssg_4
inngate_ig_3100
inngate_ig_3.01_e
inngate_ig_3.10_m
inngate_ig_3.10_e
inngate_sg_4
|
SQL injection vulnerability in main.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices, when https is used, allows remote attacker…
|
CWE-89
SQL Injection
|
CVE-2015-2849
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281745
|
- |
|
redhat
openssl
|
enterprise_linux
openssl
|
Race condition in a certain Red Hat patch to the PRNG lock implementation in the ssleay_rand_bytes function in OpenSSL, as distributed in openssl-1.0.1e-25.el7 in Red Hat Enterprise Linux (RHEL) 7 an…
|
CWE-189
CWE-362
Numeric Errors
Race Condition
|
CVE-2015-3216
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281746
|
- |
|
namshi
|
namshi\/jose
|
NAMSHI | JOSE 5.0.0 and earlier allows remote attackers to bypass signature verification via crafted tokens in a JSON Web Tokens (JWT) header.
|
CWE-20
Improper Input Validation
|
CVE-2015-2964
|
2024-11-21 11:28 |
2015-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281747
|
- |
|
debian
fuse_project
|
debian_linux
fuse
|
fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3202
|
2024-11-21 11:28 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281748
|
- |
|
libreswan
|
libreswan
|
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value …
|
CWE-20
Improper Input Validation
|
CVE-2015-3204
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281749
|
- |
|
opensuse
x.org
|
opensuse
xorg-server
|
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3164
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281750
|
- |
|
droidwareuk
|
explorer\+_file_manager
|
Directory traversal vulnerability in the Droidware UK Explorer+ File Manager application before 2.3.3 for Android allows remote attackers to write to arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2015-2966
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
