CVEs from 2015
Total
7,267
critical
critical 1,306
high
high 1,666
medium
medium 3,617
low
low 554
% Critical
18.0%
% with KEV
0.6%
% with exploit
2.2%
Top vendors
Top products
- firefox 4,609
- flash_player 3,392
- php 1,526
- moodle 1,087
- acrobat_reader 878
- acrobat 878
- safari 736
- internet_explorer 712
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-3890 | high | 7.5 | 7.5 | 9y ago | Use-after-free vulnerability in Open Litespeed before 1.3.10. | |||
| CVE-2015-5179 | high | 7.5 | 7.5 | 9y ago | FreeIPA might display user data improperly via vectors involving non-printable characters. | |||
| CVE-2015-4074 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in the Helpdesk Pro plugin before 1.4.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a ticket.download… | |||
| CVE-2015-1854 | high | 7.5 | 7.5 | 9y ago | 389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call. | |||
| CVE-2015-0689 | high | 7.5 | 7.5 | 9y ago | Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743. | |||
| CVE-2015-4085 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in node/hooks/express/tests.js in Etherpad frontend tests before 1.6.1. | |||
| CVE-2015-3250 | high | 7.5 | 7.5 | 9y ago | Exposure of Sensitive Information to an Unauthorized Actor in Apache Directory LDAP API | |||
| CVE-2015-7294 | high | 7.5 | 7.5 | 9y ago | LDAP Injection in ldapauth | |||
| CVE-2015-5705 | high | 7.5 | 7.5 | 9y ago | Argument injection vulnerability in devscripts before 2.15.7 allows remote attackers to write to arbitrary files via a crafted symlink and crafted filename. | |||
| CVE-2015-3454 | high | 7.5 | 7.5 | 9y ago | TelescopeJS before 0.15 leaks user bcrypt password hashes in websocket messages, which might allow remote attackers to obtain password hashes via a cross-site scripting attack. | |||
| CVE-2015-7255 | high | 7.5 | 7.5 | 9y ago | ZTE OX-330P, ZXHN H108N, W300V1.0.0S_ZRD_TR1_D68, HG110, GAN9.8T101A-B, MF28G, ZXHN H108N use non-unique X.509 certificates and SSH host keys, which might allow remote attackers to obtain credentials… | |||
| CVE-2015-5209 | high | 7.5 | 7.5 | 9y ago | Special top object can be used to access Struts' internals | |||
| CVE-2015-0234 | high | 7.5 | 7.5 | 9y ago | Multiple temporary file creation vulnerabilities in pki-core 10.2.0. | |||
| CVE-2015-1600 | high | 7.5 | 7.5 | 9y ago | Information disclosure vulnerability in Netatmo Indoor Module firmware 100 and earlier. | |||
| CVE-2015-1554 | high | 7.5 | 7.5 | 9y ago | kgb-bot 1.33-2 allows remote attackers to cause a denial of service (crash). | |||
| CVE-2015-1876 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in ES File Explorer 3.2.4.1. | |||
| CVE-2015-1386 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in unshield 1.0-1. | |||
| CVE-2015-1199 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in ppmd 10.1-5. | |||
| CVE-2015-1198 | high | 7.5 | 7.5 | 9y ago | Multiple directory traversal vulnerabilities in ha 0.999p+dfsg-5. | |||
| CVE-2015-0928 | high | 7.5 | 7.5 | 9y ago | libhtp 0.5.15 allows remote attackers to cause a denial of service (NULL pointer dereference). | |||
| CVE-2015-4181 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in get_file.php in phpMyBackupPro 2.1 through 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter. NOTE: the provenance of … | |||
| CVE-2015-4180 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in get_file.php in phpMyBackupPro 2.1 through 2.4 allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter. NOTE: the provenance of … | |||
| CVE-2015-4017 | high | 7.5 | 7.5 | 9y ago | Salt before 2014.7.6 does not verify certificates when connecting via the aliyun, proxmox, and splunk modules. | |||
| CVE-2015-1395 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in GNU patch versions which support Git-style patching before 2.7.3 allows remote attackers to write to arbitrary files with the permissions of the target user via a… | |||
| CVE-2015-7516 | high | 7.5 | 7.5 | 9y ago | ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service (NULL pointer dereference and switch disconnect) by sending two Ethernet frames with ether_type Jumbo Fr… | |||
| CVE-2015-7257 | high | 7.5 | 7.5 | 9y ago | ZTE ADSL ZXV10 W300 modems W300V2.1.0f_ER7_PE_O57 and W300V2.1.0h_ER7_PE_O57 allow remote authenticated non-administrator users to change the admin password by intercepting an outgoing password chang… | |||
| CVE-2015-1800 | high | 7.5 | 7.5 | 9y ago | The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to potentially obtain sensitive information. | |||
| CVE-2015-2675 | high | 7.5 | 7.5 | 9y ago | The OAuth implementation in librest before 0.7.93 incorrectly truncates the pointer returned by the rest_proxy_call_get_url function, which allows remote attackers to cause a denial of service (appli… | |||
| CVE-2015-7945 | high | 7.5 | 7.5 | 9y ago | The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.… | |||
| CVE-2015-7944 | high | 7.5 | 7.5 | 9y ago | The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.… | |||
| CVE-2015-3614 | high | 7.5 | 7.5 | 9y ago | Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability. | |||
| CVE-2015-1783 | high | 7.5 | 7.5 | 9y ago | The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access … | |||
| CVE-2015-6498 | high | 7.5 | 7.5 | 9y ago | Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices. | |||
| CVE-2015-3277 | high | 7.5 | 7.5 | 9y ago | The mod_nss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring. | |||
| CVE-2015-2313 | high | 7.5 | 7.5 | 9y ago | Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.2, when an application invokes the totalSize method on an object reader, allows remote peers to cause a denial of service (CPU consumption)… | |||
| CVE-2015-2312 | high | 7.5 | 7.5 | 9y ago | Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 allows remote peers to cause a denial of service (CPU and possibly general resource consumption) via a list with a large number of elemen… | |||
| CVE-2015-0785 | high | 7.5 | 7.5 | 9y ago | com.novell.zenworks.inventory.rtr.actionclasses.wcreports in Novell ZENworks Configuration Management (ZCM) allows remote attackers to read arbitrary folders via the dirname variable. | |||
| CVE-2015-0784 | high | 7.5 | 7.5 | 9y ago | Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to obtain Session IDs of logged in users via a value of ShowLogins for the maintenance variable. | |||
| CVE-2015-7764 | high | 7.5 | 7.5 | 9y ago | Lemur 0.1.4 does not use sufficient entropy in its IV when encrypting AES in CBC mode. | |||
| CVE-2015-4165 | high | 7.5 | 7.5 | 9y ago | Improper Access Control in Elasticsearch | |||
| CVE-2015-3405 | high | 7.5 | 7.5 | 9y ago | ntp-keygen in ntp 4.2.8px before 4.2.8p2-RC2 and 4.3.x before 4.3.12 does not generate MD5 keys with sufficient entropy on big endian machines when the lowest order byte of the temp variable is betwe… | |||
| CVE-2015-7704 | high | 7.5 | 7.5 | 9y ago | The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages. | |||
| CVE-2015-7701 | high | 7.5 | 7.5 | 9y ago | Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption). | |||
| CVE-2015-7692 | high | 7.5 | 7.5 | 9y ago | The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomple… | |||
| CVE-2015-7691 | high | 7.5 | 7.5 | 9y ago | The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey op… | |||
| CVE-2015-7875 | high | 7.5 | 7.5 | 9y ago | ctools 6.x-1.x before 6.x-1.14 and 7.x-1.x before 7.x-1.8 in Drupal does not verify the "edit" permission for the "content type" plugins that are used on Panels and similar systems to place content a… | |||
| CVE-2015-1378 | high | 7.5 | 7.5 | 9y ago | cmdlineopts.clp in grml-debootstrap in Debian 0.54, 0.68.x before 0.68.1, 0.7x before 0.78 is sourced without checking that the local directory is writable by non-root users. | |||
| CVE-2015-8013 | high | 7.5 | 7.5 | 9y ago | OpenPGP 1.2.0 and earlier decrypts arbitrary messages | |||
| CVE-2015-1417 | high | 7.5 | 7.5 | 9y ago | The inet module in FreeBSD 10.2x before 10.2-PRERELEASE, 10.2-BETA2-p2, 10.2-RC1-p1, 10.1x before 10.1-RELEASE-p16, 9.x before 9.3-STABLE, 9.3-RELEASE-p21, and 8.x before 8.4-STABLE, 8.4-RELEASE-p35 … | |||
| CVE-2015-1847 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in the web request/response interface in Appserver before 1.0.3 allows remote attackers to read normally inaccessible files via a .. (dot dot) in a crafted URL. | |||
| CVE-2015-7703 | high | 7.5 | 7.5 | 9y ago | The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address th… | |||
| CVE-2015-5300 | high | 7.5 | 7.5 | 9y ago | The panic_gate check in NTP before 4.2.8p5 is only re-enabled after the first change to the system clock that was greater than 128 milliseconds by default, which allows remote attackers to set NTP to… | |||
| CVE-2015-5219 | high | 7.5 | 7.5 | 9y ago | The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infin… | |||
| CVE-2015-5195 | high | 7.5 | 7.5 | 9y ago | ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled … | |||
| CVE-2015-5194 | high | 7.5 | 7.5 | 9y ago | The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands. | |||
| CVE-2015-3640 | high | 7.5 | 7.5 | 9y ago | phpMyBackupPro 2.5 and earlier does not properly escape the "." character in request parameters, which allows remote authenticated users with knowledge of a web-accessible and web-writeable directory… | |||
| CVE-2015-3198 | high | 7.5 | 7.5 | 9y ago | The Undertow module of WildFly allows source code disclosure | |||
| CVE-2015-3297 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in node/utils/Minify.js in Etherpad 1.1.1 through 1.5.2 allows remote attackers to read arbitrary files by leveraging replacement of backslashes with slashes in the … | |||
| CVE-2015-7781 | high | 7.5 | 7.5 | 9y ago | ManageEngine Firewall Analyzer before 8.0 does not restrict access permissions. | |||
| CVE-2015-5180 | high | 7.5 | 7.5 | 9y ago | res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash). | |||
| CVE-2015-2245 | high | 7.5 | 7.5 | 9y ago | Huawei Ascend P7 allows remote attackers to cause a denial of service (phone process crash). | |||
| CVE-2015-3215 | high | 7.5 | 7.5 | 9y ago | The NetKVM Windows Virtio driver allows remote attackers to cause a denial of service (guest crash) via a crafted length value in an IP packet, as demonstrated by a value that does not account for th… | |||
| CVE-2015-7732 | high | 7.5 | 7.5 | 9y ago | The Avira Mobile Security app before 1.5.11 for iOS sends sensitive login information in cleartext. | |||
| CVE-2015-3913 | high | 7.5 | 7.5 | 9y ago | The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message. | |||
| CVE-2015-3634 | high | 7.5 | 7.5 | 9y ago | The SlideshowPluginSlideshowStylesheet::loadStylesheetByAJAX function in the Slideshow plugin 2.2.8 through 2.2.21 for Wordpress allows remote attackers to read arbitrary Wordpress option values. | |||
| CVE-2015-1379 | high | 7.5 | 7.5 | 9y ago | The signal handler implementations in socat before 1.7.3.0 and 2.0.0-b8 allow remote attackers to cause a denial of service (process freeze or crash). | |||
| CVE-2015-2800 | high | 7.5 | 7.5 | 9y ago | The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remo… | |||
| CVE-2015-2251 | high | 7.5 | 7.5 | 9y ago | The DeviceManager in Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to obtain sensitive information via a crafted UDS patch with JavaScript. | |||
| CVE-2015-8235 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in Spiffy before 5.4. | |||
| CVE-2015-5175 | high | 7.5 | 7.5 | 9y ago | Apache CXF Fediz application plugins are vulnerable to Denial of Service (DoS) attacks | |||
| CVE-2015-7888 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in the WifiHs20UtilityService on the Samsung S6 Edge LRX22G.G925VVRU1AOE2 allows remote attackers to overwrite or create arbitrary files as the system-level user via… | |||
| CVE-2015-6586 | high | 7.5 | 7.5 | 9y ago | The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict proces… | |||
| CVE-2015-5682 | high | 7.5 | 7.5 | 9y ago | upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable. | |||
| CVE-2015-5469 | high | 7.5 | 7.5 | 9y ago | Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter to includes/do… | |||
| CVE-2015-5468 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter to inc… | |||
| CVE-2015-5401 | high | 7.5 | 7.5 | 9y ago | Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database cr… | |||
| CVE-2015-5383 | high | 7.5 | 7.5 | 9y ago | Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory. | |||
| CVE-2015-4704 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in the Download Zip Attachments plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the File parameter to download.php. | |||
| CVE-2015-4054 | high | 7.5 | 7.5 | 9y ago | PgBouncer before 1.5.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by sending a password packet before a startup packet. | |||
| CVE-2015-1529 | high | 7.5 | 7.5 | 9y ago | Integer overflow in soundtrigger/ISoundTriggerHwService.cpp in Android allows attacks to cause a denial of service via unspecified vectors. | |||
| CVE-2015-5436 | high | 7.5 | 7.5 | 9y ago | A potential security vulnerability has been identified with HP Integrated Lights-Out 4 (iLO 4) firmware version 2.11 and later, but prior to version 2.30. The vulnerability could be exploited remotel… | |||
| CVE-2015-7245 | high | 7.5 | 7.5 | 9y ago | Directory traversal vulnerability in D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 allows remote attackers to read sensitive information via a .. (dot dot) in the errorpage p… | |||
| CVE-2015-1522 | high | 7.5 | 7.5 | 9y ago | analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not reject certain non-zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer ov… | |||
| CVE-2015-1521 | high | 7.5 | 7.5 | 9y ago | analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not properly handle zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer over-… | |||
| CVE-2015-8285 | high | 7.5 | 7.5 | 9y ago | The webssx.sys driver in QuickHeal 16.00 allows remote attackers to cause a denial of service. | |||
| CVE-2015-8619 | high | 7.5 | 7.5 | 9y ago | The Human Monitor Interface support in QEMU allows remote attackers to cause a denial of service (out-of-bounds write and application crash). | |||
| CVE-2015-4646 | high | 7.5 | 7.5 | 9y ago | (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. | |||
| CVE-2015-8270 | high | 7.5 | 7.5 | 9y ago | The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service (invalid pointer dereference and process crash). | |||
| CVE-2015-7825 | high | 7.5 | 7.5 | 9y ago | botan before 1.11.22 improperly validates certificate paths, which allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a certificate with a loop in the cer… | |||
| CVE-2015-7824 | high | 7.5 | 7.5 | 9y ago | botan 1.11.x before 1.11.22 makes it easier for remote attackers to decrypt TLS ciphertext data via a padding-oracle attack against TLS CBC ciphersuites. | |||
| CVE-2015-8378 | high | 7.5 | 7.5 | 9y ago | In KeePassX before 0.4.4, a cleartext copy of password data is created upon a cancel of an XML export action. This allows context-dependent attackers to obtain sensitive information by reading the .x… | |||
| CVE-2015-8258 | high | 7.5 | 7.5 | 9y ago | AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability." | |||
| CVE-2015-7265 | high | 7.5 | 7.5 | 9y ago | Facebook Proxygen before 2015-11-09 mismanages HTTPMessage.request state, which allows remote attackers to conduct hijacking attacks and bypass ACL checks. | |||
| CVE-2015-7263 | high | 7.5 | 7.5 | 9y ago | The SPDY/2 codec in Facebook Proxygen before 2015-11-09 allows remote attackers to conduct hijacking attacks and bypass ACL checks via a crafted host value. | |||
| CVE-2015-2886 | high | 7.5 | 7.5 | 9y ago | iBaby M6 allows remote attackers to obtain sensitive information, related to the ibabycloud.com service. | |||
| CVE-2015-2884 | high | 7.5 | 7.5 | 9y ago | Philips In.Sight B120/37 allows remote attackers to obtain sensitive information via a direct request, related to yoics.net URLs, stream.m3u8 URIs, and cam_service_enable.cgi. | |||
| CVE-2015-4680 | high | 7.5 | 7.5 | 9y ago | FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates. | |||
| CVE-2015-1612 | high | 7.5 | 7.5 | 9y ago | OpenFlow plugin for OpenDaylight LLDP Relay | |||
| CVE-2015-1611 | high | 7.5 | 7.5 | 9y ago | OpenFlow plugin for OpenDaylight allows spoofing the SDN topology | |||
| CVE-2015-7844 | high | 7.5 | 7.5 | 9y ago | Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not … |