Search
Total
6314 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-0375 | 1 Sun | 1 Sunos | 2017-09-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows remote attackers to affect confidentiality via unknown vectors related to Network. | |||||
| CVE-2015-0385 | 1 Oracle | 1 Mysql | 2017-09-08 | 3.5 LOW | N/A |
| Unspecified vulnerability in Oracle MySQL Server 5.6.21 and earlier allows remote authenticated users to affect availability via unknown vectors related to Pluggable Auth. | |||||
| CVE-2015-0419 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Portal Framework, a different vulnerability than CVE-2013-1510. | |||||
| CVE-2015-0424 | 1 Oracle | 1 Integrated Lights Out Manager Firmware | 2017-09-08 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) component in Oracle Sun Systems Products Suite ILOM prior to 3.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to IPMI. | |||||
| CVE-2015-0422 | 1 Oracle | 1 Supply Chain Products Suite | 2017-09-08 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1, 6.2, 6.3.0, 6.3.1, 6.3.2, 6.3.3, 6.3.4, and 6.3.5 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Infrastructure. | |||||
| CVE-2015-0425 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Enterprise Asset Management component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Siebel Core - Unix/Windows. | |||||
| CVE-2015-0393 | 1 Oracle | 1 E-business Suite | 2017-09-08 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to DB Privileges. NOTE: the previous information is from the January 2015 CPU. Oracle has not commented on the researcher's claim that the PUBLIC role is granted the INDEX privilege for the DUAL table during a "seeded install," which allows remote authenticated users to gain SYSDBA privileges and execute arbitrary code. | |||||
| CVE-2015-0394 | 1 Oracle | 1 Peoplesoft Products | 2017-09-08 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote authenticated users to affect confidentiality via unknown vectors related to Report Distribution. | |||||
| CVE-2015-0417 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Portal Framework, a different vulnerability than CVE-2015-0388. | |||||
| CVE-2015-0373 | 1 Oracle | 1 Database Server | 2017-09-08 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the OJVM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2015-0369 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect integrity via unknown vectors related to AX/HI Web UI. | |||||
| CVE-2015-0370 | 1 Oracle | 1 Database Server | 2017-09-08 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2013-5858. | |||||
| CVE-2015-0380 | 1 Oracle | 1 E-business Suite | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Telecommunications Billing Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to OA Based UI for Bill Summary. | |||||
| CVE-2015-0371 | 1 Oracle | 1 Database Server | 2017-09-08 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect integrity and availability via unknown vectors. | |||||
| CVE-2015-0429 | 1 Sun | 1 Sunos | 2017-09-08 | 3.3 LOW | N/A |
| Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect integrity and availability via vectors related to RPC Utility. | |||||
| CVE-2015-0366 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel Core - EAI component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Java Integration, a different vulnerability than CVE-2014-0369. | |||||
| CVE-2015-0428 | 1 Sun | 1 Sunos | 2017-09-08 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect availability via unknown vectors related to Resource Control. | |||||
| CVE-2015-0367 | 1 Oracle | 1 Fusion Middleware | 2017-09-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.7, 11.1.2.1, and 11.1.2.2 allows remote attackers to affect integrity via vectors related to SSO Engine. | |||||
| CVE-2015-0368 | 1 Oracle | 1 Supply Chain Products Suite | 2017-09-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1, 6.2, 6.3, 6.3.1, 6.3.2, 6.3.3, 6.3.4, and 6.3.5 allows remote attackers to affect availability via unknown vectors related to Security. | |||||
| CVE-2015-0372 | 1 Oracle | 1 Fusion Middleware | 2017-09-08 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality via unknown vectors. | |||||
| CVE-2015-0365 | 1 Oracle | 1 Siebel Crm | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Siebel Core - Server Infrastructure component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote attackers to affect confidentiality via unknown vectors related to Security. | |||||
| CVE-2011-3278 | 1 Cisco | 2 Ios, Ios Xe | 2017-08-29 | 7.8 HIGH | N/A |
| Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload) by sending crafted SIP packets to UDP port 5060, aka Bug ID CSCti48483. | |||||
| CVE-2011-3277 | 1 Cisco | 2 Ios, Ios Xe | 2017-08-29 | 7.8 HIGH | N/A |
| Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload) by sending crafted H.323 packets to TCP port 1720, aka Bug ID CSCth11006. | |||||
| CVE-2014-4809 | 1 Ibm | 3 Security Access Manager For Web 7.0 Firmware, Security Access Manager For Web 8.0 Firmware, Security Access Manager For Web Appliance | 2017-08-29 | 7.1 HIGH | N/A |
| The WebSEAL component in IBM Security Access Manager for Web 7.x before 7.0.0-ISS-WGA-IF0009 and 8.x before 8.0.0-ISS-WGA-FP0005, when e-community SSO is enabled, allows remote attackers to cause a denial of service (component hang) via unspecified vectors. | |||||
| CVE-2014-4808 | 1 Ibm | 1 Websphere Portal | 2017-08-29 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0 through 7.0.0.2 CF28, 8.0 through 8.0.0.1 CF14, and 8.5.0 before CF03 allows remote authenticated users to execute arbitrary code via unknown vectors. | |||||
| CVE-2014-4764 | 1 Ibm | 1 Websphere Application Server | 2017-08-29 | 7.1 HIGH | N/A |
| IBM WebSphere Application Server (WAS) 8.0.x before 8.0.0.10 and 8.5.x before 8.5.5.3, when Load Balancer for IPv4 Dispatcher is enabled, allows remote attackers to cause a denial of service (Load Balancer crash) via unspecified vectors. | |||||
| CVE-2014-4948 | 1 Citrix | 1 Xenserver | 2017-08-29 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in Citrix XenServer 6.2 Service Pack 1 and earlier allows attackers to cause a denial of service and obtain sensitive information by modifying the guest virtual hard disk (VHD). | |||||
| CVE-2014-2605 | 1 Hp | 10 Storage Management Software, Storevirtual 4130, Storevirtual 4330 and 7 more | 2017-08-29 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in HP StoreVirtual 4000 Storage and StoreVirtual VSA 9.5 through 11.0 allows remote attackers to obtain sensitive information via unknown vectors. | |||||
| CVE-2014-2606 | 1 Hp | 10 Storage Management Software, Storevirtual 4130, Storevirtual 4330 and 7 more | 2017-08-29 | 9.0 HIGH | N/A |
| Unspecified vulnerability in HP StoreVirtual 4000 Storage and StoreVirtual VSA 9.5 through 11.0 allows remote authenticated users to gain privileges via unknown vectors. | |||||
| CVE-2014-2657 | 1 Papercut | 1 Papercut Mf | 2017-08-29 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to embedded MFPs. | |||||
| CVE-2014-2621 | 1 Hp | 2 Imc Branch Intelligent Management System Software Module, Intelligent Management Center | 2017-08-29 | 7.8 HIGH | N/A |
| Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2090. | |||||
| CVE-2014-2505 | 1 Emc | 1 Rsa Archer Egrc | 2017-08-29 | 5.4 MEDIUM | N/A |
| EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote attackers to trigger the download of arbitrary code, and consequently change the product's functionality, via unspecified vectors. | |||||
| CVE-2014-0191 | 1 Oracle | 1 Fusion Middleware | 2017-08-29 | 4.3 MEDIUM | N/A |
| The xmlParserHandlePEReference function in parser.c in libxml2 before 2.9.2, as used in Web Listener in Oracle HTTP Server in Oracle Fusion Middleware 11.1.1.7.0, 12.1.2.0, and 12.1.3.0 and other products, loads external parameter entities regardless of whether entity substitution or validation is enabled, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XML document. | |||||
| CVE-2014-0838 | 1 Ibm | 1 Qradar Security Information And Event Manager | 2017-08-29 | 7.5 HIGH | N/A |
| The AutoUpdate package before 6.4 for IBM Security QRadar SIEM 7.2 MR1 and earlier allows remote attackers to execute arbitrary console commands by leveraging control of the server. | |||||
| CVE-2014-2517 | 1 Emc | 1 Rsa Archer Egrc | 2017-08-29 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in EMC RSA Archer GRC Platform 5.x before 5.5 SP1 allows remote authenticated users to gain privileges via unknown vectors. | |||||
| CVE-2014-0433 | 1 Oracle | 1 Mysql | 2017-08-29 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote attackers to affect availability via unknown vectors related to Thread Pooling. | |||||
| CVE-2014-0419 | 1 Oracle | 1 Virtualization Secure Global Desktop | 2017-08-29 | 5.1 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization SGD before 4.63 with December 2013 PSU, 4.71, 5.0 with December 2013 PSU, and 5.10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration Console and Workspace Web Applications. | |||||
| CVE-2014-0935 | 1 Ibm | 2 Smart Analytics System 7700, Smart Analytics System 7710 | 2017-08-29 | 4.6 MEDIUM | N/A |
| Unspecified vulnerability in IBM Smart Analytics System 7700 before FP 2.1.3.0 and 7710 before FP 2.1.3.0 allows local users to gain privileges via vectors related to events. | |||||
| CVE-2014-2620 | 1 Hp | 2 Imc Branch Intelligent Management System Software Module, Intelligent Management Center | 2017-08-29 | 7.8 HIGH | N/A |
| Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2089. | |||||
| CVE-2014-0880 | 1 Ibm | 12 Flex System V7000, Flex System V7000 Software, San Volume Controller and 9 more | 2017-08-29 | 7.5 HIGH | N/A |
| IBM SAN Volume Controller; Storwize V3500, V3700, V5000, and V7000; and Flex System V7000 with software 6.3 and 6.4 before 6.4.1.8, and 7.1 and 7.2 before 7.2.0.3, allow remote attackers to obtain CLI access, and consequently cause a denial of service, via unspecified traffic to the administrative IP address. | |||||
| CVE-2014-0618 | 1 Juniper | 13 Junos, Srx100, Srx110 and 10 more | 2017-08-29 | 7.8 HIGH | N/A |
| Juniper Junos before 10.4 before 10.4R16, 11.4 before 11.4R8, 12.1R before 12.1R7, 12.1X44 before 12.1X44-D20, and 12.1X45 before 12.1X45-D10 on SRX Series service gateways, when used as a UAC enforcer and captive portal is enabled, allows remote attackers to cause a denial of service (flowd crash) via a crafted HTTP message. | |||||
| CVE-2013-7217 | 1 Zimbra | 1 Collaboration Server | 2017-08-29 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Zimbra Collaboration Server 7.2.5 and earlier, and 8.0.x through 8.0.5, has "critical" impact and unspecified vectors, a different vulnerability than CVE-2013-7091. | |||||
| CVE-2014-2619 | 1 Hp | 2 Imc Branch Intelligent Management System Software Module, Intelligent Management Center | 2017-08-29 | 7.8 HIGH | N/A |
| Unspecified vulnerability in HP Intelligent Management Center (iMC) before 7.0 E02020P03 and Branch Intelligent Management System (BIMS) before 7.0 E0201P02 allows remote attackers to obtain sensitive information via unknown vectors, aka ZDI-CAN-2088. | |||||
| CVE-2014-2216 | 1 Fortinet | 1 Fortios | 2017-08-29 | 7.5 HIGH | N/A |
| The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.0.0 before 5.0.8 on FortiGate devices allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted request. | |||||
| CVE-2014-0568 | 2 Adobe, Microsoft | 3 Acrobat, Acrobat Reader, Windows | 2017-08-29 | 10.0 HIGH | N/A |
| The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack. | |||||
| CVE-2014-0554 | 5 Adobe, Apple, Google and 2 more | 7 Adobe Air, Adobe Air Sdk, Flash Player and 4 more | 2017-08-29 | 10.0 HIGH | N/A |
| Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow attackers to bypass intended access restrictions via unspecified vectors. | |||||
| CVE-2014-3525 | 1 Apache | 1 Traffic Server | 2017-08-29 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Apache Traffic Server 3.x through 3.2.5, 4.x before 4.2.1.1, and 5.x before 5.0.1 has unknown impact and attack vectors, possibly related to health checks. | |||||
| CVE-2014-3614 | 1 Powerdns | 1 Powerdns Recursor | 2017-08-29 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in PowerDNS Recursor (aka pdns_recursor) 3.6.x before 3.6.1 allows remote attackers to cause a denial of service (crash) via an unknown sequence of malformed packets. | |||||
| CVE-2014-1673 | 1 Checkpoint | 1 Session Authentication Agent | 2017-08-29 | 5.0 MEDIUM | N/A |
| Check Point Session Authentication Agent allows remote attackers to obtain sensitive information (user credentials) via unspecified vectors. | |||||
| CVE-2014-3179 | 1 Google | 1 Chrome | 2017-08-29 | 7.5 HIGH | N/A |
| Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.120 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | |||||