Latest CVE Feed
-
6.1
MEDIUMCVE-2016-4334
Jive before 2016.3.1 has an open redirect from the external-link.jspa page.... Read more
Affected Products : jive- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
4.3
MEDIUMCVE-2016-4320
Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.... Read more
Affected Products : bitbucket- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
8.8
HIGHCVE-2016-4319
Atlassian JIRA Server before 7.1.9 has CSRF in auditing/settings.... Read more
Affected Products : jira- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
4.8
MEDIUMCVE-2016-4318
Atlassian JIRA Server before 7.1.9 has XSS in project/ViewDefaultProjectRoleActors.jspa via a role name.... Read more
Affected Products : jira- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
5.4
MEDIUMCVE-2016-4317
Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page.... Read more
Affected Products : confluence- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2016-1517
OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks.... Read more
Affected Products : opencv- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
8.8
HIGHCVE-2016-1516
OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2015-8276
LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to read arbitrary files via crafted EDOC files.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2015-8275
LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to write to arbitrary files via crafted EDOC files.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2015-8258
AXIS Communications products with firmware through 5.80.x allow remote attackers to modify arbitrary files as root via vectors involving Open Script Editor, aka a "resource injection vulnerability."... Read more
Affected Products : axis_communications_firmware- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
8.8
HIGHCVE-2015-8255
AXIS Communications products allow CSRF, as demonstrated by admin/pwdgrp.cgi, vaconfig.cgi, and admin/local_del.cgi.... Read more
Affected Products : axis_communications_firmware- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
10.0
HIGHCVE-2015-7292
Stack-based buffer overflow in the havok_write function in drivers/staging/havok/havok.c in Amazon Fire OS before 2016-01-15 allows attackers to cause a denial of service (panic) or possibly have unspecified other impact via a long string to /dev/hv.... Read more
Affected Products : fire_os- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
6.1
MEDIUMCVE-2015-7275
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 has XSS.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
8.8
HIGHCVE-2015-7274
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 allows remote attackers to execute arbitrary administrative HTTP commands.... Read more
Affected Products : integrated_remote_access_controller_firmware integrated_remote_access_controller_6- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2015-7273
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2015-7272
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2015-7271
Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has a format string issue in racadm getsystinfo.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2015-7270
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows directory traversal.... Read more
- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
7.5
HIGHCVE-2015-7265
Facebook Proxygen before 2015-11-09 mismanages HTTPMessage.request state, which allows remote attackers to conduct hijacking attacks and bypass ACL checks.... Read more
Affected Products : proxygen- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2015-7264
The SPDY/2 codec in Facebook Proxygen before 2015-11-09 truncates a certain field to two bytes, which allows hijacking and injection attacks.... Read more
Affected Products : proxygen- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025