Latest CVE Feed
-
1.9
LOWCVE-2014-5233
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism.... Read more
- Published: Jan. 14, 2015
- Modified: Apr. 12, 2025
-
1.9
LOWCVE-2014-5232
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state.... Read more
- Published: Jan. 14, 2015
- Modified: Apr. 12, 2025
-
2.1
LOWCVE-2014-5231
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors.... Read more
- Published: Jan. 14, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0309
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SD... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0308
Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR ... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
8.5
HIGHCVE-2015-0307
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0306
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2015-0305
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0304
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SD... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0303
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
5.0
MEDIUMCVE-2015-0302
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0301
Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before 16.0.0.257 on Windows and OS X and before 11.2.202.429 on Linux, Adobe AIR before 16.0.0.245 on Windows and OS X and before 16.0.0.272 on Android, Adobe AIR SDK before 16.0.0.272, and Adobe... Read more
Affected Products : linux_kernel flash_player mac_os_x windows adobe_air adobe_air_sdk adobe_air_sdk_and_compiler- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
9.3
HIGHCVE-2015-0016
Directory traversal vulnerability in the TS WebProxy (aka TSWbPrxy) component in Microsoft Windows Vista SP2, Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote att... Read more
Affected Products : windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_vista windows_8 windows_rt- Actively Exploited
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
7.8
HIGHCVE-2015-0015
Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2 SP1, and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (system hang and RADIUS outage) via crafted username strings to (1) Internet Authentication Service (IAS) or (2)... Read more
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
10.0
HIGHCVE-2015-0014
Buffer overflow in the Telnet service in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code... Read more
Affected Products : windows_7 windows_8.1 windows_server_2008 windows_server_2012 windows_server_2003 windows_vista windows_8- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
4.7
MEDIUMCVE-2015-0011
mrxdav.sys (aka the WebDAV driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 ... Read more
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
6.1
MEDIUMCVE-2015-0006
The Network Location Awareness (NLA) service in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not perform mutual authentication to ... Read more
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
7.2
HIGHCVE-2015-0004
The User Profile Service (aka ProfSvc) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to g... Read more
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
7.2
HIGHCVE-2015-0002
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not verify that ... Read more
Affected Products : windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_8 windows_rt- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025
-
1.9
LOWCVE-2015-0001
The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary ... Read more
- Published: Jan. 13, 2015
- Modified: Apr. 12, 2025