|
279621
|
5.1 |
MEDIUM
Local
|
ibm
|
rational_clearquest
|
IBM Rational ClearQuest 7.1.x and 8.0.0.x before 8.0.0.17 and 8.0.1.x before 8.0.1.10 allows local users to spoof database servers and discover credentials via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-4996
|
2024-11-21 11:32 |
2016-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279622
|
4.0 |
MEDIUM
Local
|
ibm
|
tealeaf_customer_experience
|
The portal in IBM Tealeaf Customer Experience before 8.7.1.8818, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.…
|
CWE-200
Information Exposure
|
CVE-2015-4990
|
2024-11-21 11:32 |
2016-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279623
|
3.7 |
LOW
Network
|
ibm
|
tealeaf_customer_experience
|
The portal in IBM Tealeaf Customer Experience before 8.7.1.8814, 8.8 before 8.8.0.9026, 9.0.0, 9.0.0A, 9.0.1 before 9.0.1.1083, 9.0.1A before 9.0.1.5073, 9.0.2 before 9.0.2.1095, and 9.0.2A before 9.…
|
CWE-200
Information Exposure
|
CVE-2015-4989
|
2024-11-21 11:32 |
2016-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279624
|
5.4 |
MEDIUM
Network
|
ibm
|
openpages_grc_platform
|
SQL injection vulnerability in the API in IBM OpenPages GRC Platform 7.0 before 7.0.0.4 IF3 and 7.1 before 7.1.0.1 IF6 allows remote authenticated users to execute arbitrary SQL commands via unspecif…
|
CWE-89
SQL Injection
|
CVE-2015-5049
|
2024-11-21 11:32 |
2016-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279625
|
5.3 |
MEDIUM
Network
|
ibm
|
websphere_mq_light
|
IBM WebSphere MQ Light 1.x before 1.0.2 allows remote attackers to cause a denial of service (MQXR service crash) via a series of connect and disconnect actions, a different vulnerability than CVE-20…
|
CWE-17
Code
|
CVE-2015-4943
|
2024-11-21 11:32 |
2016-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279626
|
5.3 |
MEDIUM
Network
|
ibm
|
websphere_mq_light
|
IBM WebSphere MQ Light 1.x before 1.0.2 mishandles abbreviated TLS handshakes, which allows remote attackers to cause a denial of service (MQXR service crash) via unspecified vectors.
|
CWE-17
Code
|
CVE-2015-4941
|
2024-11-21 11:32 |
2016-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279627
|
7.5 |
HIGH
Network
|
samba
|
samba
|
ldb before 1.1.24, as used in the AD LDAP server in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, mishandles string lengths, which allows remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2015-5330
|
2024-11-21 11:32 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279628
|
5.3 |
MEDIUM
Network
|
samba
debian
canonical
|
samba
debian_linux
ubuntu_linux
|
The shadow_copy2_get_shadow_copy_data function in modules/vfs_shadow_copy2.c in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not verify that the DIRECTORY_LIST acc…
|
CWE-200
Information Exposure
|
CVE-2015-5299
|
2024-11-21 11:32 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279629
|
5.4 |
MEDIUM
Network
|
samba
debian
canonical
|
samba
debian_linux
ubuntu_linux
|
Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 supports connections that are encrypted but unsigned, which allows man-in-the-middle attackers to conduct encrypted-to-unen…
|
CWE-20
Improper Input Validation
|
CVE-2015-5296
|
2024-11-21 11:32 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279630
|
7.2 |
HIGH
Network
|
samba
canonical
debian
|
samba
ubuntu_linux
debian_linux
|
vfs.c in smbd in Samba 3.x and 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3, when share names with certain substring relationships exist, allows remote attackers to bypass intended f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5252
|
2024-11-21 11:32 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
