CVEs from 2015
Total
7,262
critical
critical 1,306
high
high 1,666
medium
medium 3,617
low
low 554
% Critical
18.0%
% with KEV
0.6%
% with exploit
10.1%
Top vendors
Top products
- firefox 4,609
- flash_player 3,392
- php 1,526
- moodle 1,087
- acrobat_reader 878
- acrobat 878
- safari 736
- internet_explorer 712
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-3839 | medium | 5.5 | 5.5 | 9y ago | The updateMessageStatus function in Android 5.1.1 and earlier allows local users to cause a denial of service (NULL pointer exception and process crash). | |||
| CVE-2015-5203 | medium | 5.5 | 5.5 | 9y ago | Double free vulnerability in the jasper_image_stop_load function in JasPer 1.900.17 allows remote attackers to cause a denial of service (crash) via a crafted JPEG 2000 image file. | |||
| CVE-2015-5221 | medium | 5.5 | 5.5 | 9y ago | Use-after-free vulnerability in the mif_process_cmpt function in libjasper/mif/mif_cod.c in the JasPer JPEG-2000 library before 1.900.2 allows remote attackers to cause a denial of service (crash) vi… | |||
| CVE-2015-3243 | medium | 5.5 | 5.5 | 9y ago | rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron. | |||
| CVE-2015-3171 | medium | 5.5 | 5.5 | 9y ago | sosreport 3.2 uses weak permissions for generated sosreport archives, which allows local users with access to /var/tmp/ to obtain sensitive information by reading the contents of the archive. | |||
| CVE-2015-3149 | medium | 5.5 | 5.5 | 9y ago | The Hotspot component in OpenJDK8 as packaged in Red Hat Enterprise Linux 6 and 7 allows local users to write to arbitrary files via a symlink attack. | |||
| CVE-2015-3170 | medium | 5.5 | 5.5 | 9y ago | selinux-policy when sysctl fs.protected_hardlinks are set to 0 allows local users to cause a denial of service (SSH login prevention) by creating a hardlink to /etc/passwd from a directory named .con… | |||
| CVE-2015-1323 | medium | 5.5 | 5.5 | 9y ago | The simulate dbus method in aptdaemon before 1.1.1+bzr982-0ubuntu3.1 as packaged in Ubuntu 15.04, before 1.1.1+bzr980-0ubuntu1.1 as packaged in Ubuntu 14.10, before 1.1.1-1ubuntu5.2 as packaged in Ub… | |||
| CVE-2015-8697 | medium | 5.5 | 5.5 | 9y ago | stalin 0.11-5 allows local users to write to arbitrary files. | |||
| CVE-2015-3840 | medium | 5.5 | 5.5 | 9y ago | The MessageStatusReceiver service in the AndroidManifest.XML in Android 5.1.1 and earlier allows local users to alter sent/received statuses of SMS and MMS messages without the associated "WRITE_SMS"… | |||
| CVE-2015-1870 | medium | 5.5 | 5.5 | 9y ago | The event scripts in Automatic Bug Reporting Tool (ABRT) uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information fr… | |||
| CVE-2015-9101 | medium | 5.5 | 5.5 | 9y ago | The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98, 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4 and 3.99.5 allows remote attackers to cause a denial of service (heap-ba… | |||
| CVE-2015-9100 | medium | 5.5 | 5.5 | 9y ago | The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio fi… | |||
| CVE-2015-9099 | medium | 5.5 | 5.5 | 9y ago | The lame_init_params function in lame.c in libmp3lame.a in LAME 3.99.5 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted audio file with a negati… | |||
| CVE-2015-9024 | medium | 5.5 | 5.5 | 9y ago | In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications. | |||
| CVE-2015-9021 | medium | 5.5 | 5.5 | 9y ago | In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled. | |||
| CVE-2015-8326 | medium | 5.5 | 5.5 | 9y ago | The IPTables-Parse module before 1.6 for Perl allows local users to write to arbitrary files owned by the current user. | |||
| CVE-2015-9001 | medium | 5.5 | 5.5 | 9y ago | In TrustZone an information exposure vulnerability can potentially occur in all Android releases from CAF using the Linux kernel. | |||
| CVE-2015-8223 | medium | 5.5 | 5.5 | 9y ago | Huawei P7 before P7-L00C17B851, P7-L05C00B851, and P7-L09C92B85, and P8 ALE-UL00 before ALE-UL00B211 allows local users to cause a denial of service (OS crash) by leveraging camera permissions and vi… | |||
| CVE-2015-7740 | medium | 5.5 | 5.5 | 9y ago | Huawei P7 before P7-L00C17B851, P7-L05C00B851, and P7-L09C92B851 and P8 ALE-UL00 before ALE-UL00B211 allows local users to cause a denial of service (OS crash) via vectors involving an application th… | |||
| CVE-2015-8276 | medium | 5.5 | 5.5 | 9y ago | LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to read arbitrary files via crafted EDOC files. | |||
| CVE-2015-8275 | medium | 5.5 | 5.5 | 9y ago | LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to write to arbitrary files via crafted EDOC files. | |||
| CVE-2015-7847 | medium | 5.5 | 5.5 | 9y ago | Huawei MBB (Mobile Broadband) product E3272s with software versions earlier than E3272s-153TCPU-V200R002B491D09SP00C00 has a Denial of Service (DoS) vulnerability. An attacker could send a malicious … | |||
| CVE-2015-8234 | medium | 5.5 | 5.5 | 9y ago | The image signature algorithm in OpenStack Glance 11.0.0 allows remote attackers to bypass the signature verification process via a crafted image, which triggers an MD5 collision. | |||
| CVE-2015-8678 | medium | 5.5 | 5.5 | 9y ago | The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 … | |||
| CVE-2015-7313 | medium | 5.5 | 5.5 | 9y ago | LibTIFF before 4.0.7 allows remote attackers to cause a denial of service (memory consumption and crash) via a crafted tiff file. | |||
| CVE-2015-4645 | medium | 5.5 | 5.5 | 9y ago | Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which tr… | |||
| CVE-2015-8898 | medium | 5.5 | 5.5 | 9y ago | The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file. | |||
| CVE-2015-8897 | medium | 5.5 | 5.5 | 9y ago | The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file. | |||
| CVE-2015-8894 | medium | 5.5 | 5.5 | 9y ago | Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file. | |||
| CVE-2015-8986 | medium | 5.5 | 5.5 | 9y ago | Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, t… | |||
| CVE-2015-8900 | medium | 5.5 | 5.5 | 9y ago | The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file. | |||
| CVE-2015-1976 | medium | 5.5 | 5.5 | 9y ago | IBM Security Directory Server could allow an authenticated user to execute commands into the web administration tool that would cause the tool to crash. | |||
| CVE-2015-5013 | medium | 5.5 | 5.5 | 9y ago | The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access. | |||
| CVE-2015-5677 | medium | 5.5 | 5.5 | 9y ago | bsnmpd, as used in FreeBSD 9.3, 10.1, and 10.2, uses world-readable permissions on the snmpd.config file, which allows local users to obtain the secret key for USM authentication by reading the file. | |||
| CVE-2015-8818 | medium | 5.5 | 5.5 | 10y ago | The cpu_physical_memory_write_rom_internal function in exec.c in QEMU (aka Quick Emulator) does not properly skip MMIO regions, which allows local privileged guest users to cause a denial of service … | |||
| CVE-2015-8817 | medium | 5.5 | 5.5 | 10y ago | QEMU (aka Quick Emulator) built to use 'address_space_translate' to map an address to a MemoryRegionSection is vulnerable to an OOB r/w access issue. It could occur while doing pci_dma_read/write cal… | |||
| CVE-2015-8745 | medium | 5.5 | 5.5 | 10y ago | QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue. It could occur while reading Interrupt Mask Registers (IMR). A privileged (CAP_SYS… | |||
| CVE-2015-8744 | medium | 5.5 | 5.5 | 10y ago | QEMU (aka Quick Emulator) built with a VMWARE VMXNET3 paravirtual NIC emulator support is vulnerable to crash issue. It occurs when a guest sends a Layer-2 packet smaller than 22 bytes. A privileged … | |||
| CVE-2015-8970 | medium | 5.5 | 5.5 | 10y ago | crypto/algif_skcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation has been performed on an AF_ALG socket before an accept system call is processed, which allows local u… | |||
| CVE-2015-8964 | medium | 5.5 | 5.5 | 10y ago | The tty_set_termios_ldisc function in drivers/tty/tty_ldisc.c in the Linux kernel before 4.5 allows local users to obtain sensitive information from kernel memory by reading a tty data structure. | |||
| CVE-2015-8953 | medium | 5.5 | 5.5 | 10y ago | fs/overlayfs/copy_up.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service (dentry reference leak) via filesystem operations on… | |||
| CVE-2015-8952 | medium | 5.5 | 5.5 | 10y ago | The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service (soft lockup) … | |||
| CVE-2015-8950 | medium | 5.5 | 5.5 | 10y ago | arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obta… | |||
| CVE-2015-8934 | medium | 5.5 | 5.5 | 10y ago | The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ra… | |||
| CVE-2015-8933 | medium | 5.5 | 5.5 | 10y ago | Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafte… | |||
| CVE-2015-8932 | medium | 5.5 | 5.5 | 10y ago | The compress_bidder_init function in archive_read_support_filter_compress.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted tar file, which trigg… | |||
| CVE-2015-8929 | medium | 5.5 | 5.5 | 10y ago | Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service via a tar file. | |||
| CVE-2015-8928 | medium | 5.5 | 5.5 | 10y ago | The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file. | |||
| CVE-2015-8927 | medium | 5.5 | 5.5 | 10y ago | The trad_enc_decrypt_update function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap read and crash) via a cra… | |||
| CVE-2015-8926 | medium | 5.5 | 5.5 | 10y ago | The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive. | |||
| CVE-2015-8925 | medium | 5.5 | 5.5 | 10y ago | The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read) via a crafted mtree file, related to newlin… | |||
| CVE-2015-8924 | medium | 5.5 | 5.5 | 10y ago | The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafte… | |||
| CVE-2015-8922 | medium | 5.5 | 5.5 | 10y ago | The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7… | |||
| CVE-2015-8920 | medium | 5.5 | 5.5 | 10y ago | The _ar_read_header function in archive_read_support_format_ar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds stack read) via a crafted ar file. | |||
| CVE-2015-8915 | medium | 5.5 | 5.5 | 10y ago | bsdcpio in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read and crash) via crafted cpio file. | |||
| CVE-2015-8944 | medium | 5.5 | 5.5 | 10y ago | The ioresources_init function in kernel/resource.c in the Linux kernel through 4.7, as used in Android before 2016-08-05 on Nexus 6 and 7 (2013) devices, uses weak permissions for /proc/iomem, which … | |||
| CVE-2015-8808 | medium | 5.5 | 5.5 | 10y ago | The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file. | |||
| CVE-2015-3192 | medium | 5.5 | 5.5 | 10y ago | Pivotal Spring Framework DoS Attack with XML Input | |||
| CVE-2015-8893 | medium | 5.5 | 5.5 | 10y ago | app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to cause a denial of service (OS outage or buffer over-read) via a crafted a… | |||
| CVE-2015-5231 | medium | 5.5 | 5.5 | 10y ago | The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access. | |||
| CVE-2015-8558 | medium | 5.5 | 5.5 | 10y ago | The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via a circular isochronous transfer de… | |||
| CVE-2015-4178 | medium | 5.5 | 5.5 | 10y ago | The fs_pin implementation in the Linux kernel before 4.0.5 does not ensure the internal consistency of a certain list data structure, which allows local users to cause a denial of service (system cra… | |||
| CVE-2015-4177 | medium | 5.5 | 5.5 | 10y ago | The collect_mounts function in fs/namespace.c in the Linux kernel before 4.0.5 does not properly consider that it may execute after a path has been unmounted, which allows local users to cause a deni… | |||
| CVE-2015-4176 | medium | 5.5 | 5.5 | 10y ago | fs/namespace.c in the Linux kernel before 4.0.2 does not properly support mount connectivity, which allows local users to read arbitrary files by leveraging user-namespace root access for deletion of… | |||
| CVE-2015-2672 | medium | 5.5 | 5.5 | 10y ago | The xsave/xrstor implementation in arch/x86/include/asm/xsave.h in the Linux kernel before 3.19.2 creates certain .altinstr_replacement pointers and consequently does not provide any protection again… | |||
| CVE-2015-1573 | medium | 5.5 | 5.5 | 10y ago | The nft_flush_table function in net/netfilter/nf_tables_api.c in the Linux kernel before 3.18.5 mishandles the interaction between cross-chain jumps and ruleset flushes, which allows local users to c… | |||
| CVE-2015-1350 | medium | 5.5 | 5.5 | 10y ago | The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cau… | |||
| CVE-2015-8845 | medium | 5.5 | 5.5 | 10y ago | The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim c… | |||
| CVE-2015-8844 | medium | 5.5 | 5.5 | 10y ago | The signal implementation in the Linux kernel before 4.3.5 on powerpc platforms does not check for an MSR with both the S and T bits set, which allows local users to cause a denial of service (TM Bad… | |||
| CVE-2015-7802 | medium | 5.5 | 5.5 | 10y ago | gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file. | |||
| CVE-2015-8683 | medium | 5.5 | 5.5 | 10y ago | The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via a packed TIFF image. | |||
| CVE-2015-8665 | medium | 5.5 | 5.5 | 10y ago | tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (out-of-bounds read) via the SamplesPerPixel tag in a TIFF image. | |||
| CVE-2015-7555 | medium | 5.5 | 5.5 | 10y ago | Heap-based buffer overflow in giffix.c in giffix in giflib 5.1.1 allows attackers to cause a denial of service (program crash) via crafted image and logical screen width fields in a GIF file. | |||
| CVE-2015-5158 | medium | 5.5 | 5.5 | 10y ago | Stack-based buffer overflow in hw/scsi/scsi-bus.c in QEMU, when built with SCSI-device emulation support, allows guest OS users with CAP_SYS_RAWIO permissions to cause a denial of service (instance c… | |||
| CVE-2015-8679 | medium | 5.5 | 5.5 | 10y ago | The Maxim_smartpa_dev driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230,… | |||
| CVE-2015-8305 | medium | 5.5 | 5.5 | 10y ago | Huawei Sophia-L10 smartphones with software before P7-L10C900B852 allow attackers to cause a denial of service (system panic) via a crafted application with the system or camera privilege. | |||
| CVE-2015-7550 | medium | 5.5 | 5.5 | 11y ago | The keyctl_read_key function in security/keys/keyctl.c in the Linux kernel before 4.3.4 does not properly use a semaphore, which allows local users to cause a denial of service (NULL pointer derefere… | |||
| CVE-2015-8777 | medium | 5.5 | 5.5 | 11y ago | The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTE… | |||
| CVE-2015-8337 | medium | 5.5 | 5.5 | 11y ago | The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 befo… | |||
| CVE-2015-8226 | medium | 5.5 | 5.5 | 11y ago | The Joint Photographic Experts Group Processing Unit (JPU) driver in Huawei ALE smartphones with software before ALE-UL00C00B220 and ALE-TL00C01B220 and GEM-703L smartphones with software before V100… | |||
| CVE-2015-8225 | medium | 5.5 | 5.5 | 11y ago | The Joint Photographic Experts Group Processing Unit (JPU) driver in Huawei ALE smartphones with software before ALE-UL00C00B220 and ALE-TL00C01B220 and GEM-703L smartphones with software before V100… | |||
| CVE-2015-8742 | medium | 5.5 | 5.5 | 11y ago | The dissect_CPMSetBindings function in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.1 does not validate the column size, which allows remote attackers to cause… | |||
| CVE-2015-8741 | medium | 5.5 | 5.5 | 11y ago | The dissect_ppi function in epan/dissectors/packet-ppi.c in the PPI dissector in Wireshark 2.0.x before 2.0.1 does not initialize a packet-header data structure, which allows remote attackers to caus… | |||
| CVE-2015-8738 | medium | 5.5 | 5.5 | 11y ago | The s7comm_decode_ud_cpu_szl_subfunc function in epan/dissectors/packet-s7comm_szl_ids.c in the S7COMM dissector in Wireshark 2.0.x before 2.0.1 does not validate the list count in an SZL response, w… | |||
| CVE-2015-8737 | medium | 5.5 | 5.5 | 11y ago | The mp2t_open function in wiretap/mp2t.c in the MP2T file parser in Wireshark 2.0.x before 2.0.1 does not validate the bit rate, which allows remote attackers to cause a denial of service (divide-by-… | |||
| CVE-2015-8734 | medium | 5.5 | 5.5 | 11y ago | The dissect_nwp function in epan/dissectors/packet-nwp.c in the NWP dissector in Wireshark 2.0.x before 2.0.1 mishandles the packet type, which allows remote attackers to cause a denial of service (a… | |||
| CVE-2015-8722 | medium | 5.5 | 5.5 | 11y ago | epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the frame pointer, which allows remote attackers to cause a denial of se… | |||
| CVE-2015-8721 | medium | 5.5 | 5.5 | 11y ago | Buffer overflow in the tvb_uncompress function in epan/tvbuff_zlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service (application crash) … | |||
| CVE-2015-8720 | medium | 5.5 | 5.5 | 11y ago | The dissect_ber_GeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which … | |||
| CVE-2015-8719 | medium | 5.5 | 5.5 | 11y ago | The dissect_dns_answer function in epan/dissectors/packet-dns.c in the DNS dissector in Wireshark 1.12.x before 1.12.9 mishandles the EDNS0 Client Subnet option, which allows remote attackers to caus… | |||
| CVE-2015-8718 | medium | 5.5 | 5.5 | 11y ago | Double free vulnerability in epan/dissectors/packet-nlm.c in the NLM dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1, when the "Match MSG/RES packets for async NLM" option is enabl… | |||
| CVE-2015-8717 | medium | 5.5 | 5.5 | 11y ago | The dissect_sdp function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.12.x before 1.12.9 does not prevent use of a negative media count, which allows remote attackers to cause … | |||
| CVE-2015-8716 | medium | 5.5 | 5.5 | 11y ago | The init_t38_info_conv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not ensure that a conversation exists, which allows remote attackers to ca… | |||
| CVE-2015-8715 | medium | 5.5 | 5.5 | 11y ago | epan/dissectors/packet-alljoyn.c in the AllJoyn dissector in Wireshark 1.12.x before 1.12.9 does not check for empty arguments, which allows remote attackers to cause a denial of service (infinite lo… | |||
| CVE-2015-8714 | medium | 5.5 | 5.5 | 11y ago | The dissect_dcom_OBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not initialize a certain IPv4 data structure, which allows remote attack… | |||
| CVE-2015-8713 | medium | 5.5 | 5.5 | 11y ago | epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not properly reserve memory for channel ID mappings, which allows remote attackers to cause a denial o… | |||
| CVE-2015-8712 | medium | 5.5 | 5.5 | 11y ago | The dissect_hsdsch_channel_info function in epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not validate the number of PDUs, which allows remote attac… | |||
| CVE-2015-8711 | medium | 5.5 | 5.5 | 11y ago | epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows remote attackers to cause a denial of se… | |||
| CVE-2015-3182 | medium | 5.5 | 5.5 | 11y ago | epan/dissectors/packet-dec-dnart.c in the DECnet NSP/RT dissector in Wireshark 1.10.12 through 1.10.14 mishandles a certain strdup return value, which allows remote attackers to cause a denial of ser… |