| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
651 |
CVE-2015-4822 |
|
|
|
2015-10-21 |
2016-12-24 |
1.2 |
None |
Local |
High |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Sun Solaris 11.2 allows local users to affect availability via unknown vectors related to Solaris Kernel Zones, a different vulnerability than CVE-2015-4831. |
|
652 |
CVE-2015-4811 |
|
|
|
2015-10-21 |
2016-12-07 |
1.5 |
None |
Local |
Medium |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via vectors related to Outside In PDF Export SDKutside In PDF Export SDK, a different vulnerability than CVE-2015-4809. |
|
653 |
CVE-2015-4809 |
|
|
|
2015-10-21 |
2016-12-07 |
1.5 |
None |
Local |
Medium |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via vectors related to Outside In PDF Export SDK, a different vulnerability than CVE-2015-4811. |
|
654 |
CVE-2015-4808 |
|
|
|
2016-01-21 |
2017-09-10 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via vectors related to Outside In Filters, a different vulnerability than CVE-2015-6013, CVE-2015-6014, CVE-2015-6015, and CVE-2016-0432. |
|
655 |
CVE-2015-4792 |
|
|
|
2015-10-21 |
2019-12-27 |
1.7 |
None |
Remote |
High |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Partition, a different vulnerability than CVE-2015-4802. |
|
656 |
CVE-2015-4767 |
|
|
|
2015-07-16 |
2018-01-05 |
1.7 |
None |
Remote |
High |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Firewall, a different vulnerability than CVE-2015-4769. |
|
657 |
CVE-2015-4766 |
|
|
|
2015-10-21 |
2016-12-24 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle MySQL Server 5.6.25 and earlier allows local users to affect availability via unknown vectors related to Server : Security : Firewall. |
|
658 |
CVE-2015-4037 |
17 |
|
DoS |
2015-08-26 |
2016-12-24 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
The slirp_smb function in net/slirp.c in QEMU 2.3.0 and earlier creates temporary files with predictable names, which allows local users to cause a denial of service (instantiation failure) by creating /tmp/qemu-smb.*-* files before the program. |
|
659 |
CVE-2015-3785 |
|
|
Bypass |
2015-10-09 |
2016-12-08 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
The Telephony component in Apple OS X before 10.11, when the Continuity feature is enabled, allows local users to bypass intended telephone-call restrictions via unspecified vectors. |
|
660 |
CVE-2015-3142 |
200 |
|
+Info |
2017-06-26 |
2018-01-05 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The kernel-invoked coredump processor in Automatic Bug Reporting Tool (ABRT) does not properly check the ownership of files before writing core dumps to them, which allows local users to obtain sensitive information by leveraging write permissions to the working directory of a crashed application. |
|
661 |
CVE-2015-2830 |
264 |
|
Bypass |
2015-05-27 |
2018-01-05 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the (1) fork or (2) close system call, as demonstrated by an attack against seccomp before 3.16. |
|
662 |
CVE-2015-2687 |
284 |
|
|
2017-08-09 |
2017-08-24 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
OpenStack Compute (nova) Icehouse, Juno and Havana when live migration fails allows local users to access VM volumes that they would normally not have permissions for. |
|
663 |
CVE-2015-2662 |
|
|
|
2015-07-16 |
2017-09-22 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.2 allows local users to affect availability via vectors related to DHCP Server. |
|
664 |
CVE-2015-2580 |
|
|
|
2015-07-16 |
2017-09-22 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.2 allows local users to affect availability via vectors related to NFSv4. |
|
665 |
CVE-2015-2534 |
284 |
|
Bypass |
2015-09-09 |
2019-05-14 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 improperly processes ACL settings, which allows local users to bypass intended network-traffic restrictions via a crafted application, aka "Hyper-V Security Feature Bypass Vulnerability." |
|
666 |
CVE-2015-2152 |
264 |
|
|
2015-03-18 |
2018-10-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by (1) setting the DISPLAY environment variable, when compiled with SDL support, or connecting to the VNC server on (2) ::1 or (3) 127.0.0.1, when not compiled with SDL support. |
|
667 |
CVE-2015-1985 |
284 |
|
Bypass |
2016-01-03 |
2016-01-07 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The queue manager on IBM MQ M2000 appliances before 8.0.0.4 allows local users to bypass an intended password requirement and read private keys by leveraging the existence of a stash file. |
|
668 |
CVE-2015-1901 |
200 |
|
+Info |
2015-06-28 |
2016-11-30 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local users to obtain sensitive information via unspecified commands. |
|
669 |
CVE-2015-1798 |
17 |
|
|
2015-04-08 |
2018-01-05 |
1.8 |
None |
Local Network |
High |
Not required |
None |
Partial |
None |
|
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC. |
|
670 |
CVE-2015-1681 |
119 |
|
DoS Overflow |
2015-05-13 |
2019-05-14 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow local users to cause a denial of service via a crafted .msc file, aka "Microsoft Management Console File Format Denial of Service Vulnerability." |
|
671 |
CVE-2015-1420 |
362 |
|
Bypass |
2015-03-16 |
2016-12-28 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read operations on additional memory locations by changing the handle_bytes value of a file handle during the execution of this function. |
|
672 |
CVE-2015-1197 |
|
|
|
2015-02-19 |
2016-12-06 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive. |
|
673 |
CVE-2015-1146 |
310 |
|
Bypass |
2015-04-10 |
2019-01-31 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1145. |
|
674 |
CVE-2015-1145 |
310 |
|
Bypass |
2015-04-10 |
2019-01-31 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1146. |
|
675 |
CVE-2015-1114 |
200 |
|
+Info |
2015-04-10 |
2019-03-08 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The Sandbox Profiles component in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to discover hardware identifiers via a crafted app. |
|
676 |
CVE-2015-1113 |
200 |
|
+Info |
2015-04-10 |
2017-01-03 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The Sandbox Profiles component in Apple iOS before 8.3 allows attackers to read the (1) telephone number or (2) e-mail address of a recent contact via a crafted app. |
|
677 |
CVE-2015-1107 |
|
|
|
2015-04-10 |
2017-01-03 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
The Lock Screen component in Apple iOS before 8.3 does not properly implement the erasure feature for incorrect passcode-authentication attempts, which makes it easier for physically proximate attackers to obtain access by making many passcode guesses. |
|
678 |
CVE-2015-1097 |
200 |
|
+Info |
2015-04-10 |
2019-03-08 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
IOMobileFramebuffer in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
|
679 |
CVE-2015-1096 |
200 |
|
+Info |
2015-04-10 |
2019-03-08 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
|
680 |
CVE-2015-1094 |
200 |
|
+Info |
2015-04-10 |
2019-03-08 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
IOAcceleratorFamily in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
|
681 |
CVE-2015-1085 |
264 |
|
|
2015-04-10 |
2017-01-03 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
AppleKeyStore in Apple iOS before 8.3 does not properly restrict a certain passcode-confirmation interface, which makes it easier for attackers to verify correct passcode guesses via a crafted app. |
|
682 |
CVE-2015-1064 |
200 |
|
Bypass +Info |
2015-03-12 |
2015-09-11 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Springboard in Apple iOS before 8.2 allows physically proximate attackers to bypass an intended activation requirement and read the home screen by leveraging an application crash during the activation process. |
|
683 |
CVE-2015-1009 |
200 |
|
+Info |
2015-08-01 |
2015-08-04 |
1.7 |
None |
Local |
Low |
??? |
Partial |
None |
None |
|
Schneider Electric InduSoft Web Studio before 7.1.3.5 Patch 5 and Wonderware InTouch Machine Edition through 7.1 SP3 Patch 4 use cleartext for project-window password storage, which allows local users to obtain sensitive information by reading a file. |
|
684 |
CVE-2015-0875 |
200 |
|
+Info |
2015-02-15 |
2015-02-20 |
1.8 |
None |
Local Network |
High |
Not required |
Partial |
None |
None |
|
The Ogaki Kyoritsu Bank Smartphone Passbook application 1.0.0 for Android creates a log file containing input data from the user, which allows attackers to obtain sensitive information by reading a file. |
|
685 |
CVE-2015-0498 |
|
|
|
2015-04-16 |
2017-01-03 |
1.7 |
None |
Remote |
High |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Replication. |
|
686 |
CVE-2015-0493 |
|
|
|
2015-04-16 |
2018-10-09 |
1.5 |
None |
Local |
Medium |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.1, 8.5.0, and 8.5.1 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-0474. |
|
687 |
CVE-2015-0489 |
|
|
|
2015-04-16 |
2017-01-03 |
1.2 |
None |
Local |
High |
Not required |
Partial |
None |
None |
|
Unspecified vulnerability in the Application Management Pack for Oracle E-Business Suite component in Oracle E-Business Suite AMP 121030 and 121020 allows local users to affect confidentiality via vectors related to EBS Plugin. |
|
688 |
CVE-2015-0474 |
|
|
|
2015-04-16 |
2017-01-03 |
1.5 |
None |
Local |
Medium |
??? |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.1, 8.5.0, and 8.5.1 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-0493. |
|
689 |
CVE-2015-0430 |
|
|
|
2015-01-21 |
2017-09-08 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality via vectors related to RPC Utility. |
|
690 |
CVE-2015-0413 |
|
|
|
2015-01-21 |
2022-05-13 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability. |
|
691 |
CVE-2015-0296 |
264 |
|
|
2017-10-06 |
2017-11-01 |
1.2 |
None |
Local |
High |
Not required |
None |
Partial |
None |
|
The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in the user's home directory. |
|
692 |
CVE-2015-0245 |
362 |
|
DoS |
2015-02-13 |
2018-10-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and 1.9.x before 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to cause a denial of service (activation failure error returned) by leveraging a race condition involving sending an ActivationFailure signal before systemd responds. |
|
693 |
CVE-2015-0010 |
310 |
|
Bypass |
2015-02-11 |
2019-05-15 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1, when the CRYPTPROTECTMEMORY_SAME_LOGON option is used, does not check an impersonation token's level, which allows local users to bypass intended decryption restrictions by leveraging a service that (1) has a named-pipe planting vulnerability or (2) uses world-readable shared memory for encrypted data, aka "CNG Security Feature Bypass Vulnerability" or MSRC ID 20707. |
|
694 |
CVE-2015-0001 |
264 |
|
Bypass |
2015-01-13 |
2018-10-12 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary process-memory locations by leveraging administrative privileges, aka "Windows Error Reporting Security Feature Bypass Vulnerability." |
|
695 |
CVE-2014-9415 |
20 |
|
DoS |
2014-12-24 |
2019-05-20 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES file. |
|
696 |
CVE-2014-8923 |
200 |
|
+Info |
2015-03-25 |
2016-08-31 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity Manager on Windows, when certain log and trace levels are configured, store the cleartext administrator password in a log file, which allows local users to obtain sensitive information by reading a file. |
|
697 |
CVE-2014-8595 |
17 |
|
DoS +Priv |
2014-11-19 |
2018-10-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
arch/x86/x86_emulate/x86_emulate.c in Xen 3.2.1 through 4.4.x does not properly check privileges, which allows local HVM guest users to gain privileges or cause a denial of service (crash) via a crafted (1) CALL, (2) JMP, (3) RETF, (4) LCALL, (5) LJMP, or (6) LRET far branch instruction. |
|
698 |
CVE-2014-8178 |
20 |
|
|
2019-12-17 |
2019-12-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
Partial |
None |
|
Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers, which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands. |
|
699 |
CVE-2014-8134 |
|
|
Bypass |
2014-12-12 |
2020-08-14 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The paravirt_ops_setup function in arch/x86/kernel/kvm.c in the Linux kernel through 3.18 uses an improper paravirt_enabled setting for KVM guest kernels, which makes it easier for guest OS users to bypass the ASLR protection mechanism via a crafted application that reads a 16-bit value. |
|
700 |
CVE-2014-7170 |
362 |
|
+Info |
2014-12-17 |
2019-07-11 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Race condition in Puppet Server 0.2.0 allows local users to obtain sensitive information by accessing it in between package installation or upgrade and the start of the service. |
