|
212551
|
5.8 |
MEDIUM
Local
|
linux
|
linux_kernel
|
Race condition in the rds_sendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibl…
|
CWE-362
Race Condition
|
CVE-2015-7990
|
2024-11-21 11:37 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212552
|
2.3 |
LOW
Local
|
linux
|
linux_kernel
|
The dgnc_mgmt_ioctl function in drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive informa…
|
CWE-200
Information Exposure
|
CVE-2015-7885
|
2024-11-21 11:37 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212553
|
2.3 |
LOW
Local
|
linux
|
linux_kernel
|
The vivid_fb_ioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive …
|
CWE-200
Information Exposure
|
CVE-2015-7884
|
2024-11-21 11:37 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212554
|
6.1 |
MEDIUM
Network
|
let\'s_php\!
|
pbbs
|
Cross-site scripting (XSS) vulnerability in Let's PHP! p++BBS before 4.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7783
|
2024-11-21 11:37 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212555
|
5.3 |
MEDIUM
Network
|
tails_project
|
tails
|
Tails before 1.7 includes the wget program but does not prevent automatic fallback from passive FTP to active FTP, which allows remote FTP servers to discover the Tor client IP address by reading a (…
|
CWE-200
Information Exposure
|
CVE-2015-7665
|
2024-11-21 11:37 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212556
|
8.6 |
HIGH
Network
|
adcon
|
a840_telemetry_gateway_base_station_firmware
|
The Java client in Adcon Telemetry A840 Telemetry Gateway Base Station allows remote attackers to discover log-file pathnames via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-7934
|
2024-11-21 11:37 |
2015-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212557
|
8.6 |
HIGH
Network
|
adcon
|
a840_telemetry_gateway_base_station_firmware
|
Adcon Telemetry A840 Telemetry Gateway Base Station allows remote attackers to obtain sensitive information by sniffing the network.
|
CWE-200
Information Exposure
|
CVE-2015-7932
|
2024-11-21 11:37 |
2015-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212558
|
8.7 |
HIGH
Network
|
adcon
|
a840_telemetry_gateway_base_station_firmware
|
The Java client in Adcon Telemetry A840 Telemetry Gateway Base Station does not authenticate the station device, which allows man-in-the-middle attackers to spoof devices and obtain sensitive informa…
|
CWE-200
CWE-20
Information Exposure
Improper Input Validation
|
CVE-2015-7931
|
2024-11-21 11:37 |
2015-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212559
|
10.0 |
CRITICAL
Network
|
adcon
|
a840_telemetry_gateway_base_station_firmware
|
Adcon Telemetry A840 Telemetry Gateway Base Station has hardcoded credentials, which allows remote attackers to obtain administrative access via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2015-7930
|
2024-11-21 11:37 |
2015-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212560
|
4.3 |
MEDIUM
Network
|
ewon
|
ewon_firmware
|
eWON devices with firmware through 10.1s0 support unspecified GET requests, which might allow remote attackers to obtain sensitive information by reading (1) web-server access logs, (2) web-server Re…
|
CWE-200
Information Exposure
|
CVE-2015-7929
|
2024-11-21 11:37 |
2015-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
