CVEs from 2015
Total
7,267
critical
critical 1,306
high
high 1,666
medium
medium 3,617
low
low 554
% Critical
18.0%
% with KEV
0.6%
% with exploit
2.2%
Top vendors
Top products
- firefox 4,609
- flash_player 3,392
- php 1,526
- moodle 1,087
- acrobat 878
- acrobat_reader 878
- safari 736
- internet_explorer 712
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2015-9060 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a pointer is not properly validated in a QTEE system call. | |||
| CVE-2015-9055 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, an assertion was potentially reachable in a memory management routine. | |||
| CVE-2015-9054 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a NULL pointer can be dereferenced during GAL decoding. | |||
| CVE-2015-9053 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the processing of certain responses from the USIM. | |||
| CVE-2015-9052 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in LTE where an assertion can be reached while processing a downlink message. | |||
| CVE-2015-9051 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in LTE where an assertion can be reached due to an improper bound on a length in a System Inform… | |||
| CVE-2015-9050 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists where an array out of bounds access can occur during a CA call. | |||
| CVE-2015-9049 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in the processing of certain responses from the USIM. | |||
| CVE-2015-9048 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in the processing of lost RTP packets. | |||
| CVE-2015-9047 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in GNSS when performing a scan after bootup. | |||
| CVE-2015-9046 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in LTE where an assertion can be reached due to an improper bound on the size of a frequency lis… | |||
| CVE-2015-9045 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in GERAN where a buffer can be overflown while taking power measurements. | |||
| CVE-2015-9044 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in LTE where an assertion can be reached due to an improper bound on the size of a frequency lis… | |||
| CVE-2015-9043 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a NULL pointer can be dereferenced upon the expiry of a timer. | |||
| CVE-2015-9042 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists when processing a QMI message. | |||
| CVE-2015-9041 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists when performing WCDMA radio tuning. | |||
| CVE-2015-9040 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in a GERAN API. | |||
| CVE-2015-9039 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a vulnerability exists in eMBMS where an assertion can be reached by a sequence of downlink messages. | |||
| CVE-2015-9038 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a NULL pointer may be dereferenced in the front end. | |||
| CVE-2015-9037 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer over-read may occur in the processing of a downlink 3G NAS message. | |||
| CVE-2015-9036 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, an incorrect length is used to clear a memory buffer resulting in adjacent memory getting corrupted. | |||
| CVE-2015-9035 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a memory buffer fails to be freed after it is no longer needed potentially resulting in memory exhaustion. | |||
| CVE-2015-9034 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a string can fail to be null-terminated in SIP leading to a buffer overflow. | |||
| CVE-2015-8596 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, validation of buffer lengths is missing in malware protection. | |||
| CVE-2015-8595 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer over-read vulnerability exists in digital television/digital radio DRM. | |||
| CVE-2015-8594 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer over-read vulnerability exists in RFA-1x. | |||
| CVE-2015-8593 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in 1x call processing. | |||
| CVE-2015-8592 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, a pointer is not validated prior to being dereferenced potentially resulting in Guest-OS memory corruption. | |||
| CVE-2015-4464 | critical | 9.8 | 9.8 | 9y ago | Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server. | |||
| CVE-2015-0575 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration. | |||
| CVE-2015-0574 | critical | 9.8 | 9.8 | 9y ago | In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient. | |||
| CVE-2015-1817 | critical | 9.8 | 9.8 | 9y ago | Stack-based buffer overflow in the inet_pton function in network/inet_pton.c in musl libc 0.9.15 through 1.0.4, and 1.1.0 through 1.1.7 allows attackers to have unspecified impact via unknown vectors. | |||
| CVE-2015-3616 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to execute arbitrary commands via unspecified parameters. | |||
| CVE-2015-6816 | critical | 9.8 | 9.8 | 9y ago | ganglia-web before 3.7.1 allows remote attackers to bypass authentication. | |||
| CVE-2015-2311 | critical | 9.8 | 9.8 | 9y ago | Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow remote peers to cause a denial of service or possibly obtain sensitive information from memory or execut… | |||
| CVE-2015-0786 | critical | 9.8 | 9.8 | 9y ago | Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary code via unspecif… | |||
| CVE-2015-0782 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in the ScheduleQuery method of the schedule class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary SQL commands via unspecifi… | |||
| CVE-2015-0781 | critical | 9.8 | 9.8 | 9y ago | Directory traversal vulnerability in the doPost method of the Rtrlet class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to upload and execute arbitrary files via unspecif… | |||
| CVE-2015-0780 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in the GetReRequestData method of the GetStoredResult class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary SQL commands via… | |||
| CVE-2015-6941 | critical | 9.8 | 9.8 | 9y ago | win_useradd, salt-cloud and the Linode driver in salt 2015.5.x before 2015.5.6, and 2015.8.x before 2015.8.1 leak password information in debug logs. | |||
| CVE-2015-7853 | critical | 9.8 | 9.8 | 9y ago | The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative… | |||
| CVE-2015-7705 | critical | 9.8 | 9.8 | 9y ago | The rate limiting feature in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to have unspecified impact via a large number of crafted requests. | |||
| CVE-2015-5244 | critical | 9.8 | 9.8 | 9y ago | The NSSCipherSuite option with ciphersuites enabled in mod_nss before 1.0.12 allows remote attackers to bypass application restrictions. | |||
| CVE-2015-9107 | critical | 9.8 | 9.8 | 9y ago | Zoho ManageEngine OpManager 11 through 12.2 uses a custom encryption algorithm to protect the credential used to access the monitored devices. The implemented algorithm doesn't use a per-system key o… | |||
| CVE-2015-2560 | critical | 9.8 | 9.8 | 9y ago | Manage Engine Desktop Central 9 before build 90135 allows remote attackers to change passwords of users with the Administrator role via an addOrModifyUser operation to servlets/DCOperationsServlet. | |||
| CVE-2015-1174 | critical | 9.8 | 9.8 | 9y ago | Session fixation vulnerability in Unit4 Polska TETA Web (formerly TETA Galactica) 22.62.3.4 and earlier allows remote attackers to hijack web sessions via a session id. | |||
| CVE-2015-3278 | critical | 9.8 | 9.8 | 9y ago | The cipherstring parsing code in nss_compat_ossl while in multi-keyword mode does not match the expected set of ciphers for a given cipher combination, which allows attackers to have unspecified impa… | |||
| CVE-2015-2798 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||
| CVE-2015-8009 | critical | 9.8 | 9.8 | 9y ago | The MWOAuthDataStore::lookup_token function in Extension:OAuth for MediaWiki 1.25.x before 1.25.3, 1.24.x before 1.24.4, and before 1.23.11 does not properly validate the signature when checking the … | |||
| CVE-2015-2279 | critical | 9.8 | 9.8 | 9y ago | cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters aft… | |||
| CVE-2015-3886 | critical | 9.8 | 9.8 | 9y ago | libinfinity before 0.6.6-1 does not validate expired SSL certificates, which allows remote attackers to have unspecified impact via unknown vectors. | |||
| CVE-2015-1778 | critical | 9.8 | 9.8 | 9y ago | Opendaylight will authenticate any username and password combination | |||
| CVE-2015-9098 | critical | 9.8 | 9.8 | 9y ago | In Redgate SQL Monitor before 3.10 and 4.x before 4.2, a remote attacker can gain unauthenticated access to the Base Monitor, resulting in the ability to execute arbitrary SQL commands on any monitor… | |||
| CVE-2015-7346 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in ZCMS 1.1. | |||
| CVE-2015-7326 | critical | 9.8 | 9.8 | 9y ago | XML External Entity (XXE) vulnerability in Milton Webdav before 2.7.0.3. | |||
| CVE-2015-5473 | critical | 9.8 | 9.8 | 9y ago | Multiple directory traversal vulnerabilities in Samsung SyncThru 6 before 1.0 allow remote attackers to delete arbitrary files via unspecified parameters to (1) upload/updateDriver or (2) upload/addD… | |||
| CVE-2015-9059 | critical | 9.8 | 9.8 | 9y ago | picocom before 2.0 has a command injection vulnerability in the 'send and receive file' command because the command line is executed by /bin/sh unsafely. | |||
| CVE-2015-4455 | critical | 9.8 | 9.8 | 9y ago | Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For Gravity Forms plugin 3.0 beta for WordPress allows remote attackers to execute arbitrary code by up… | |||
| CVE-2015-7568 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in the password recovery feature in Yeager CMS 1.2.1 allows remote attackers to change the account credentials of known users via the "userEmail" parameter. | |||
| CVE-2015-7247 | critical | 9.8 | 9.8 | 9y ago | D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 discloses usernames, passwords, keys, values, and web account hashes (super and admin) in plaintext when running a configuration… | |||
| CVE-2015-7246 | critical | 9.8 | 9.8 | 9y ago | D-Link DVG-N5402SP with firmware W1000CN-00, W1000CN-03, or W2000EN-00 has a default password of root for the root account and tw for the tw account, which makes it easier for remote attackers to obt… | |||
| CVE-2015-8282 | critical | 9.8 | 9.8 | 9y ago | SeaWell Networks Spectrum SDC 02.05.00 has a default password of "admin" for the "admin" account. | |||
| CVE-2015-8271 | critical | 9.8 | 9.8 | 9y ago | The AMF3CD_AddProp function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to execute arbitrary code. | |||
| CVE-2015-6674 | critical | 9.8 | 9.8 | 9y ago | Buffer underflow vulnerability in the Debian inspircd package before 2.0.5-1+deb7u1 for wheezy and before 2.0.16-1 for jessie and sid. NOTE: This issue exists as an additional issue from an incomplet… | |||
| CVE-2015-7564 | critical | 9.8 | 9.8 | 9y ago | TeamPass vulnerable to SQL Injection | |||
| CVE-2015-7826 | critical | 9.8 | 9.8 | 9y ago | botan 1.11.x before 1.11.22 improperly handles wildcard matching against hostnames, which might allow remote attackers to have unspecified impact via a valid X.509 certificate, as demonstrated by acc… | |||
| CVE-2015-7292 | critical | 9.8 | 9.8 | 9y ago | Stack-based buffer overflow in the havok_write function in drivers/staging/havok/havok.c in Amazon Fire OS before 2016-01-15 allows attackers to cause a denial of service (panic) or possibly have uns… | |||
| CVE-2015-7273 | critical | 9.8 | 9.8 | 9y ago | Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE. | |||
| CVE-2015-7272 | critical | 9.8 | 9.8 | 9y ago | Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via … | |||
| CVE-2015-7271 | critical | 9.8 | 9.8 | 9y ago | Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo. | |||
| CVE-2015-7264 | critical | 9.8 | 9.8 | 9y ago | The SPDY/2 codec in Facebook Proxygen before 2015-11-09 truncates a certain field to two bytes, which allows hijacking and injection attacks. | |||
| CVE-2015-2888 | critical | 9.8 | 9.8 | 9y ago | Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to bypass authentication, related to the MySnapCam web service. | |||
| CVE-2015-2887 | critical | 9.8 | 9.8 | 9y ago | iBaby M3S has a password of admin for the backdoor admin account. | |||
| CVE-2015-2885 | critical | 9.8 | 9.8 | 9y ago | Lens Peek-a-View has a password of 2601hx for the backdoor admin account, a password of user for the backdoor user account, and a password of guest for the backdoor guest account. | |||
| CVE-2015-2882 | critical | 9.8 | 9.8 | 9y ago | Philips In.Sight B120/37 has a password of b120root for the backdoor root account, a password of /ADMIN/ for the backdoor admin account, a password of merlin for the backdoor mg3500 account, a passwo… | |||
| CVE-2015-2881 | critical | 9.8 | 9.8 | 9y ago | Gynoii has a password of guest for the backdoor guest account and a password of 12345 for the backdoor admin account. | |||
| CVE-2015-8965 | critical | 9.8 | 9.8 | 9y ago | Rogue Wave JViews before 8.8 patch 21 and 8.9 before patch 1 allows remote attackers to execute arbitrary Java code that exists in the classpath, such as test code or administration code. The issue e… | |||
| CVE-2015-8626 | critical | 9.8 | 9.8 | 9y ago | The User::randomPassword function in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 generates passwords smaller than $wgMinimalPasswordLength, which ma… | |||
| CVE-2015-5729 | critical | 9.8 | 9.8 | 9y ago | The Soft Access Point (AP) feature in Samsung Smart TVs X10P, X12, X14H, X14J, and NT14U and Xpress M288OFW printers generate weak WPA2 PSK keys, which makes it easier for remote attackers to obtain … | |||
| CVE-2015-4166 | critical | 9.8 | 9.8 | 9y ago | Cloudera Key Trustee Server before 5.4.3 does not store keys synchronously, which might allow attackers to have unspecified impact via vectors related to loss of an encryption key. | |||
| CVE-2015-0855 | critical | 9.8 | 9.8 | 9y ago | The _mediaLibraryPlayCb function in mainwindow.py in pitivi before 0.95 allows attackers to execute arbitrary code via shell metacharacters in a file path. | |||
| CVE-2015-8954 | critical | 9.8 | 9.8 | 9y ago | The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafte… | |||
| CVE-2015-8981 | critical | 9.8 | 9.8 | 9y ago | Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size. | |||
| CVE-2015-8771 | critical | 9.8 | 9.8 | 9y ago | The generate_smb_nt_hash function in include/functions.inc in GOsa allows remote attackers to execute arbitrary commands via a crafted password. | |||
| CVE-2015-8768 | critical | 9.8 | 9.8 | 9y ago | click/install.py in click does not require files in package filesystem tarballs to start with ./ (dot slash), which allows remote attackers to install an alternate security policy and gain privileges… | |||
| CVE-2015-6024 | critical | 9.8 | 9.8 | 9y ago | ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with firmware before 3G10WVE-L101-S306ETS-C01_R05 allows remote authenticated users to execute arbitrary commands via shell metacharacters in… | |||
| CVE-2015-8608 | critical | 9.8 | 9.8 | 9y ago | The VDir::MapPathA and VDir::MapPathW functions in Perl 5.22 allow remote attackers to cause a denial of service (out-of-bounds read) and possibly execute arbitrary code via a crafted (1) drive lette… | |||
| CVE-2015-2794 | critical | 9.8 | 9.8 | 9y ago | The installation wizard in DotNetNuke (DNN) allows privilege escalation | |||
| CVE-2015-8972 | critical | 9.8 | 9.8 | 10y ago | Stack-based buffer overflow in the ValidateMove function in frontend/move.cc in GNU Chess (aka gnuchess) before 6.2.4 might allow context-dependent attackers to execute arbitrary code via a large inp… | |||
| CVE-2015-8212 | critical | 9.8 | 9.8 | 10y ago | CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware pr… | |||
| CVE-2015-3188 | critical | 9.8 | 9.8 | 10y ago | Apache Storm remote code execution vulnerability | |||
| CVE-2015-4594 | critical | 9.8 | 9.8 | 10y ago | eClinicalWorks Population Health (CCMR) suffers from a session fixation vulnerability. When authenticating a user, the application does not assign a new session ID, making it possible to use an exist… | |||
| CVE-2015-2868 | critical | 9.8 | 9.8 | 10y ago | An exploitable remote code execution vulnerability exists in the Trane ComfortLink II firmware version 2.0.2 in DSS service. An attacker who can connect to the DSS service on the Trane ComfortLink II… | |||
| CVE-2015-2867 | critical | 9.8 | 9.8 | 10y ago | A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 service allows remote attackers to take complete control of the system. | |||
| CVE-2015-3210 | critical | 9.8 | 9.8 | 10y ago | Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^(?P=B)((?P=B)(?J:(?P<B>c)… | |||
| CVE-2015-1000011 | critical | 9.8 | 9.8 | 10y ago | Blind SQL Injection in wordpress plugin dukapress v2.5.9 | |||
| CVE-2015-1000003 | critical | 9.8 | 9.8 | 10y ago | Blind SQL Injection in filedownload v1.4 wordpress plugin | |||
| CVE-2015-1000001 | critical | 9.8 | 9.8 | 10y ago | Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin | |||
| CVE-2015-1000000 | critical | 9.8 | 9.8 | 10y ago | Remote file upload vulnerability in mailcwp v1.99 wordpress plugin | |||
| CVE-2015-8871 | critical | 9.8 | 9.8 | 10y ago | Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG before 2.1.1 allows remote attackers to have unspecified impact via unknown vectors. |