Skip to main content
CVE-2015-0779 CRITICAL POC THREAT Emergency

Directory traversal vulnerability in UploadServlet in Novell ZENworks Configuration Management (ZCM) 10 and 11 before 11.3.2 allows remote attackers to execute arbitrary code via a crafted directory. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 80.1%.

Path Traversal RCE Zenworks Configuration Management
NVD GitHub Exploit-DB
CVSS 2.0
10.0
EPSS
80.1%
Threat
5.9
CVE-2015-4001 CRITICAL PATCH Act Now

Integer signedness error in the oz_hcd_get_desc_cnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service RCE Linux Linux Kernel
NVD GitHub
CVSS 2.0
9.0
EPSS
5.9%
CVE-2015-4002 CRITICAL PATCH Act Now

drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through 4.0.5 does not ensure that certain length values are sufficiently large, which allows remote attackers to cause a. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Denial Of Service RCE Linux Buffer Overflow Linux Kernel +2
NVD GitHub
CVSS 2.0
9.0
EPSS
3.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy