Search
Total
6314 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-4282 | 1 Sun | 1 Sunos | 2015-11-06 | 7.2 HIGH | N/A |
| Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, integrity, and availability via vectors related to Kernel/X86. | |||||
| CVE-2014-6498 | 1 Oracle | 1 Supply Chain Products Suite | 2015-11-06 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1, 6.2, 6.3, 6.3.1, 6.3.2, 6.3.3, 6.3.4, and 6.3.5 allows remote attackers to affect confidentiality via unknown vectors related to Security. | |||||
| CVE-2014-6516 | 1 Oracle | 1 Jd Edwards Products | 2015-11-06 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 8.98 allows local users to affect confidentiality, integrity, and availability via vectors related to Installation SEC. | |||||
| CVE-2014-6533 | 1 Oracle | 1 Supply Chain Products Suite | 2015-11-06 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1 and 6.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security. | |||||
| CVE-2014-6499 | 1 Oracle | 1 Fusion Middleware | 2015-11-06 | 6.8 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to WebLogic Tuxedo Connector. | |||||
| CVE-2014-6461 | 1 Oracle | 1 Supply Chain Products Suite | 2015-11-06 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Roles & Privileges. | |||||
| CVE-2014-6467 | 1 Oracle | 1 Database Server | 2015-11-06 | 9.0 HIGH | N/A |
| Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2014-6453, CVE-2014-6545, and CVE-2014-6560. | |||||
| CVE-2014-6460 | 1 Oracle | 1 Peoplesoft Products | 2015-11-06 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52, 8.53, and 8.54 allows remote authenticated users to affect confidentiality and integrity via vectors related to QUERY. | |||||
| CVE-2014-6462 | 1 Oracle | 1 Fusion Middleware | 2015-11-06 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.2.1 and 11.1.2.2 allows remote attackers to affect integrity via unknown vectors related to Admin Console. | |||||
| CVE-2014-6488 | 1 Oracle | 2 Enterprise Manager Database Control, Enterprise Manager Grid Control | 2015-11-06 | 2.1 LOW | N/A |
| Unspecified vulnerability in the Enterprise Manager for Oracle Database component in Oracle Enterprise Manager Grid Control EM Base Platform: 10.2.0.5, 11.1.0.1 EM DB Control: 11.1.0.7, 11.2.0.3, 11.2.0.4 EM Plugin for DB: 12.1.0.4, 12.1.0.5, and 12.1.0.6 allows remote authenticated users to affect integrity via unknown vectors related to Content Management. | |||||
| CVE-2014-6465 | 1 Oracle | 1 Communications Applications | 2015-11-06 | 6.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Communications Session Border Controller component in Oracle Communications Applications SCX640m5 allows remote authenticated users to affect availability via unknown vectors related to Lawful Intercept. | |||||
| CVE-2014-6486 | 1 Oracle | 1 Peoplesoft Products | 2015-11-06 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect integrity via unknown vectors related to Talent Acquisition Manager - Security. | |||||
| CVE-2014-6475 | 1 Oracle | 1 Peoplesoft Products | 2015-11-06 | 3.5 LOW | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.52, 8.53, and 8.54 allows remote authenticated users to affect confidentiality via unknown vectors related to Security. | |||||
| CVE-2014-6482 | 1 Oracle | 1 Peoplesoft Products | 2015-11-06 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PT PeopleTools component in Oracle PeopleSoft Products 8.53 and 8.54 allows remote authenticated users to affect integrity via unknown vectors related to Updates Change Assistant. | |||||
| CVE-2014-6483 | 1 Oracle | 1 Database Server | 2015-11-06 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2014-4298 | 1 Oracle | 1 Database Server | 2015-11-05 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4299, CVE-2014-4300, CVE-2014-6452, CVE-2014-6454, and CVE-2014-6542. | |||||
| CVE-2014-4300 | 1 Oracle | 1 Database Server | 2015-11-05 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4298, CVE-2014-4299, CVE-2014-6452, CVE-2014-6454, and CVE-2014-6542. | |||||
| CVE-2014-4295 | 1 Oracle | 1 Database Server | 2015-11-05 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4294, CVE-2014-6538, and CVE-2014-6563. | |||||
| CVE-2014-4299 | 1 Oracle | 1 Database Server | 2015-11-05 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4298, CVE-2014-4300, CVE-2014-6452, CVE-2014-6454, and CVE-2014-6542. | |||||
| CVE-2014-4285 | 1 Oracle | 1 E-business Suite | 2015-11-05 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to Reports Configuration. | |||||
| CVE-2014-4294 | 1 Oracle | 1 Database Server | 2015-11-05 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4295, CVE-2014-6538, and CVE-2014-6563. | |||||
| CVE-2014-4281 | 1 Oracle | 1 E-business Suite | 2015-11-05 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Portal Integration. | |||||
| CVE-2014-4278 | 1 Oracle | 1 E-business Suite | 2015-11-05 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms. | |||||
| CVE-2014-6561 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Payments component in Oracle E-Business Suite 12.0.4, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality via unknown vectors related to Separate Remittance Advice. | |||||
| CVE-2014-6550 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Object Library component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to iHelp. | |||||
| CVE-2014-6523 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via vectors related to REST Interface. | |||||
| CVE-2014-6479 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect confidentiality via vectors related to OC4J Configuration. | |||||
| CVE-2014-6539 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6472. | |||||
| CVE-2014-6471 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to OAM Diagnostics. | |||||
| CVE-2014-6472 | 1 Oracle | 1 E-business Suite | 2015-11-04 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6539. | |||||
| CVE-2015-0659 | 1 Cisco | 1 Ios | 2015-11-02 | 5.0 MEDIUM | N/A |
| The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS allows remote attackers to trigger self-referential adjacencies via a crafted Autonomic Networking (AN) message, aka Bug ID CSCup62157. | |||||
| CVE-2015-5669 | 1 Techno Project Japan | 1 Enisys Gw | 2015-10-30 | 6.5 MEDIUM | N/A |
| Techno Project Japan Enisys Gw before 1.4.1 allows remote authenticated users to write to arbitrary files and consequently execute arbitrary code via unspecified vectors. | |||||
| CVE-2013-1461 | 1 Miniupnp Project | 1 Miniupnpd | 2015-10-08 | 7.8 HIGH | N/A |
| The ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to cause a denial of service (NULL pointer dereference and service crash) via a SOAPAction header that lacks a # (pound sign) character, a different vulnerability than CVE-2013-0230. | |||||
| CVE-2013-0372 | 1 Oracle | 3 Enterprise Manager Database Control, Enterprise Manager Grid Control, Enterprise Manager Plugin For Database Control | 2015-10-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11.1.0.1 and 12.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Distributed/Cross DB Features. | |||||
| CVE-2013-0352 | 1 Oracle | 3 Enterprise Manager Database Control, Enterprise Manager Grid Control, Enterprise Manager Plugin For Database Control | 2015-10-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.1 and 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Content Management. | |||||
| CVE-2013-0229 | 1 Miniupnp Project | 1 Miniupnpd | 2015-10-08 | 7.8 HIGH | N/A |
| The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd before 1.4 allows remote attackers to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read. | |||||
| CVE-2015-7718 | 1 Google | 1 Android | 2015-10-07 | 5.0 MEDIUM | N/A |
| mediaserver in Android 5.x before 5.1.1 LMY48T and 6.0 before 2015-10-01 allows attackers to cause a denial of service (process crash) via unspecified vectors, aka internal bug 22278703, a different vulnerability than CVE-2015-6605. | |||||
| CVE-2015-6605 | 1 Google | 1 Android | 2015-10-07 | 5.0 MEDIUM | N/A |
| mediaserver in Android before 5.1.1 LMY48T allows attackers to cause a denial of service (process crash) via unspecified vectors, aka internal bugs 20915134 and 23142203, a different vulnerability than CVE-2015-7718. | |||||
| CVE-2015-3862 | 1 Google | 1 Android | 2015-10-07 | 5.0 MEDIUM | N/A |
| mediaserver in Android before 5.1.1 LMY48T allows attackers to cause a denial of service (process crash) via unspecified vectors, aka internal bug 22954006. | |||||
| CVE-2015-2016 | 1 Ibm | 1 Qradar Security Information And Event Manager | 2015-10-05 | 9.0 HIGH | N/A |
| Unspecified vulnerability in IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 Patch 4 allows remote authenticated users to execute arbitrary commands with root privileges via unknown vectors. | |||||
| CVE-2012-6467 | 1 Opera | 1 Opera Browser | 2015-09-29 | 4.3 MEDIUM | N/A |
| Opera before 12.10 follows Internet shortcuts that are referenced by a (1) IMG element or (2) other inline element, which makes it easier for remote attackers to conduct phishing attacks via a crafted web site, as exploited in the wild in November 2012. | |||||
| CVE-2015-6470 | 1 Resource Data Management Data Manager | 1 Data Manager | 2015-09-29 | 5.5 MEDIUM | N/A |
| Resource Data Management Data Manager before 2.2 allows remote authenticated users to modify arbitrary passwords via unspecified vectors. | |||||
| CVE-2015-1141 | 1 Apple | 1 Mac Os X | 2015-09-17 | 4.9 MEDIUM | N/A |
| The mach_vm_read functionality in the kernel in Apple OS X before 10.10.3 allows local users to cause a denial of service (system crash) via unspecified vectors. | |||||
| CVE-2015-6464 | 1 Moxa | 4 Eds-405a, Eds-405a Firmware, Eds-408a and 1 more | 2015-09-14 | 8.5 HIGH | N/A |
| The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web-developer plugin. | |||||
| CVE-2013-7402 | 1 C-icap Project | 1 C-icap | 2015-09-10 | 5.0 MEDIUM | N/A |
| Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request. | |||||
| CVE-2002-2445 | 1 Gehealthcare | 3 Millennium Mg, Millennium Myosight, Millennium Nc | 2015-09-03 | 10.0 HIGH | N/A |
| GE Healthcare Millennium MG, NC, and MyoSIGHT has a default password of (1) root.genie for the root user, (2) "service." for the service user, (3) admin.genie for the admin user, (4) reboot for the reboot user, and (5) shutdown for the shutdown user, which has unspecified impact and attack vectors. | |||||
| CVE-2011-1763 | 1 Xen | 1 Xen | 2015-09-03 | 7.7 HIGH | N/A |
| The get_free_port function in Xen allows local authenticated DomU users to cause a denial of service or possibly gain privileges via unspecified vectors involving a new event channel port. | |||||
| CVE-2015-2135 | 1 Hp | 1 Intelligent Provisioning | 2015-09-01 | 10.0 HIGH | N/A |
| Unspecified vulnerability in HP Intelligent Provisioning 1.00 through 1.62(a), 2.00, and 2.10 allows remote attackers to execute arbitrary code via unknown vectors. | |||||
| CVE-2015-6744 | 1 Basware | 1 Banking | 2015-08-31 | 4.3 MEDIUM | N/A |
| Basware Banking (Maksuliikenne) before 8.90.07.X relies on the client to enforce (1) login verification, (2) audit trail creation, and (3) account locking, which allows remote attackers to "disrupt security-critical functions" by "dropping network traffic." NOTE: this identifier was SPLIT from CVE-2015-0942 per ADT2 and ADT3 due to different vulnerability type and different affected versions. | |||||
| CVE-2015-5433 | 1 Hp | 2 Matrix Operating Environment, Virtual Connect Enterprise Manager Sdk | 2015-08-27 | 4.0 MEDIUM | N/A |
| HP Virtual Connect Enterprise Manager (VCEM) SDK before 7.5.0, as used in HP Matrix Operating Environment before 7.5.0 and other products, allows remote authenticated users to obtain sensitive information via unspecified vectors. | |||||