Latest CVE Feed
-
9.3
HIGHCVE-2015-0691
A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows remote attackers to execute arbitrary commands via a crafted web site, aka Bug ID CSCup83001.... Read more
Affected Products : secure_desktop- EPSS Score: %0.71
- Published: Apr. 17, 2015
- Modified: Apr. 12, 2025
-
7.2
HIGHCVE-2015-0530
Buffer overflow in an unspecified function in nsr_render_log in EMC NetWorker before 8.0.4.3, 8.1.x before 8.1.2.6, and 8.2.x before 8.2.1.2 allows local users to gain privileges via unknown vectors.... Read more
Affected Products : networker- EPSS Score: %0.06
- Published: Apr. 17, 2015
- Modified: Apr. 12, 2025
-
4.3
MEDIUMCVE-2015-3324
The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "encrypted remote KVM session," which allows man-in-the-m... Read more
- EPSS Score: %0.14
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
5.0
MEDIUMCVE-2015-3323
The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 allows remote attackers to cause a denial of service (web interface crash) via a malformed HTTP request d... Read more
- EPSS Score: %0.72
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
5.0
MEDIUMCVE-2015-3322
Lenovo ThinkServer RD350, RD450, RD550, RD650, and TD350 servers before 1.26.0 use weak encryption to store (1) user and (2) administrator BIOS passwords, which allows attackers to decrypt the passwords via unspecified vectors.... Read more
- EPSS Score: %0.14
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-3320
Lenovo USB Enhanced Performance Keyboard software before 2.0.2.2 includes active debugging code in SKHOOKS.DLL, which allows local users to obtain keypress information by accessing debug output.... Read more
Affected Products : usb_enhanced_performance_keyboard- EPSS Score: %0.06
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-1314
The USAA Mobile Banking application before 7.10.1 for Android displays the most recently-used screen before prompting the user for login, which might allow physically proximate users to obtain banking account numbers and balances.... Read more
Affected Products : mobile_banking- EPSS Score: %0.07
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
3.3
LOWCVE-2013-4866
The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate attackers to trigger physical resource consumption (water or heat) or user discomfort.... Read more
Affected Products : my_satis_genius_toilet- EPSS Score: %0.14
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-2579
Unspecified vulnerability in the Oracle Health Sciences Argus Safety component in Oracle Health Sciences Applications 8.0 allows local users to affect confidentiality via vectors related to BIP Installer.... Read more
Affected Products : health_sciences_applications- EPSS Score: %0.17
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
7.1
HIGHCVE-2015-2578
Unspecified vulnerability in Oracle Sun Solaris 11.2 allows remote attackers to affect availability via vectors related to Kernel IDMap.... Read more
Affected Products : solaris- EPSS Score: %1.38
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
7.2
HIGHCVE-2015-2577
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Accounting commands.... Read more
Affected Products : solaris- EPSS Score: %0.19
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-2576
Unspecified vulnerability in the MySQL Utilities component in Oracle MySQL 1.5.1 and earlier, when running on Windows, allows local users to affect integrity via unknown vectors related to Installation.... Read more
- EPSS Score: %0.09
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
4.9
MEDIUMCVE-2015-2575
Unspecified vulnerability in the MySQL Connectors component in Oracle MySQL 5.1.34 and earlier allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Connector/J.... Read more
- EPSS Score: %0.44
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2015-2574
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality via unknown vectors related to Text Utilities.... Read more
Affected Products : solaris- EPSS Score: %0.16
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2015-2573
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.... Read more
- EPSS Score: %0.56
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
4.6
MEDIUMCVE-2015-2572
Unspecified vulnerability in the Oracle Hyperion Smart View for Office component in Oracle Hyperion 11.1.2.5.216 and earlier, when running on Windows, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to... Read more
- EPSS Score: %0.63
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
4.0
MEDIUMCVE-2015-2571
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.... Read more
- EPSS Score: %0.56
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
6.5
MEDIUMCVE-2015-2570
Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 11.5.10, 12.0, 12.1, and 12.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to S... Read more
Affected Products : supply_chain_products_suite- EPSS Score: %0.91
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
5.0
MEDIUMCVE-2015-2568
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.... Read more
- EPSS Score: %4.41
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025
-
3.5
LOWCVE-2015-2567
Unspecified vulnerability in Oracle MySQL Server 5.6.23 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Privileges.... Read more
- EPSS Score: %0.84
- Published: Apr. 16, 2015
- Modified: Apr. 12, 2025