|
212041
|
- |
|
emc
|
vplex_geosynchrony
|
The default configuration of EMC VPLEX GeoSynchrony 5.4 SP1 before P3 stores cleartext NAVISPHERE GUI passwords in a log file, which allows local users to obtain sensitive information by reading this…
|
CWE-200
Information Exposure
|
CVE-2015-6847
|
2024-11-21 11:35 |
2015-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212042
|
- |
|
unitronics
|
visilogic_oplc_ide
|
Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict access to ActiveX controls, which allows remote attackers to have an unspecified impact via a crafted web site.
|
CWE-284
Improper Access Control
|
CVE-2015-6478
|
2024-11-21 11:35 |
2015-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212043
|
- |
|
symantec
|
endpoint_protection_manager
|
Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote attackers to execute arbitrary Java code by connecting to the console Java port.
|
CWE-94
Code Injection
|
CVE-2015-6555
|
2024-11-21 11:35 |
2015-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212044
|
- |
|
symantec
|
endpoint_protection_manager
|
Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote attackers to execute arbitrary OS commands via crafted data.
|
CWE-78
OS Command
|
CVE-2015-6554
|
2024-11-21 11:35 |
2015-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212045
|
- |
|
advantech
|
eki-1321_series_firmware
eki-1322_series_firmware
eki-1361_series_firmware
eki-1362_series_firmware
eki-122x_series_firmware
|
Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with firmware before 1.98, and EKI-136x devices with firmware before 1.27 have hardcoded SSH keys, which makes it easier for …
|
NVD-CWE-Other
|
CVE-2015-6476
|
2024-11-21 11:35 |
2015-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212046
|
7.5 |
HIGH
Network
|
qemu
debian
fedoraproject
suse
canonical
arista
|
qemu
debian_linux
fedora
linux_enterprise_server
linux_enterprise_desktop
ubuntu_linux
eos
|
hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain …
|
CWE-369
Divide By Zero
|
CVE-2015-6855
|
2024-11-21 11:35 |
2015-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212047
|
- |
|
f5
|
big-ip_application_acceleration_manager
big-ip_global_traffic_manager
big-ip_access_policy_manager
big-ip_webaccelerator
big-ip_application_security_manager
big-ip_policy_enforcement_m…
|
The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 before 11.6.0, BIG-IP AAM 11.4.0 before 11.6.0, BIG-IP AFM and PEM 11.3.0 before 11.6.0, BIG-IP Edge Gateway, WebA…
|
CWE-20
Improper Input Validation
|
CVE-2015-6546
|
2024-11-21 11:35 |
2015-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212048
|
- |
|
hp
|
vertica
|
The vertica-udx-zygote process in HP Vertica 7.1.1 UDx does not require authentication, which allows remote attackers to execute arbitrary commands via a crafted packet, aka ZDI-CAN-2914.
|
CWE-284
Improper Access Control
|
CVE-2015-6867
|
2024-11-21 11:35 |
2015-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212049
|
- |
|
google
|
android
|
Telephony in Android 5.x before 5.1.1 LMY48X allows attackers to gain privileges, and consequently bypass intended network-interface restrictions, perform expensive data transfers, or cause a denial …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6614
|
2024-11-21 11:35 |
2015-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212050
|
- |
|
google
|
android
|
Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 allows attackers to send commands to a debugging port, and consequently gain privileges, via a crafted application, as demonstrated …
|
CWE-77
Command Injection
|
CVE-2015-6613
|
2024-11-21 11:35 |
2015-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
