|
281351
|
- |
|
cisco
|
prime_collaboration_provisioning
|
The web framework in Cisco Prime Collaboration Provisioning before 11.0 allows remote authenticated users to bypass intended access restrictions and create administrative accounts via a crafted URL, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4307
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281352
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended login-session read restrictions, and impersonate administrators of …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4306
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281353
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended system-database read restrictions, and discover credentials or SNMP…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4305
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281354
|
- |
|
cisco
|
prime_collaboration_assurance
|
The web framework in Cisco Prime Collaboration Assurance before 10.5.1.53684-1 allows remote authenticated users to bypass intended access restrictions, and create administrative accounts or read dat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4304
|
2024-11-21 11:30 |
2015-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281355
|
- |
|
schneider-electric
|
struxureware_building_expert_multi-purpose_management
|
Schneider Electric StruxureWare Building Expert MPM before 2.15 does not use encryption for the client-server data stream, which allows remote attackers to discover credentials by sniffing the networ…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2015-3962
|
2024-11-21 11:30 |
2015-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281356
|
- |
|
f5
|
enterprise_manager
big-ip_global_traffic_manager
big-ip_analytics
big-ip_protocol_security_module
big-ip_application_acceleration_manager
big-ip_access_policy_manager
big-ip_edge_ga…
|
Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the…
|
CWE-22
Path Traversal
|
CVE-2015-4040
|
2024-11-21 11:30 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281357
|
- |
|
sma_solar_technology_ag
|
webbox_firmware
|
SMA Solar Sunny WebBox has hardcoded passwords, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2015-3964
|
2024-11-21 11:30 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281358
|
- |
|
fortinet
|
forticlient
|
The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys drivers in Fortinet FortiClient before 5.2.4 allow local users to read arbitrary kernel memory via a 0x22608C io…
|
CWE-200
Information Exposure
|
CVE-2015-4077
|
2024-11-21 11:30 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281359
|
- |
|
cisco
|
telepresence_video_communication_server_software
|
A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID CSCuv105…
|
CWE-78
OS Command
|
CVE-2015-4330
|
2024-11-21 11:30 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281360
|
- |
|
linux
|
linux_kernel
|
Array index error in the tcm_vhost_make_tpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow guest OS users to cause a denial of service (memory corruption) or possibly hav…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4036
|
2024-11-21 11:30 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
