Skip to main content
CVE-2015-2905 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Ncs01 Firmware
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2015-2873 MEDIUM PATCH This Month

Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x before 3.7.1248, 3.8.x before 3.8.1263, and other versions. Rated medium severity (CVSS 5.5), this vulnerability is remotely exploitable, low attack complexity.

Trend Micro Information Disclosure Deep Discovery Inspector
NVD
CVSS 2.0
5.5
EPSS
2.5%
CVE-2015-2014 MEDIUM PATCH This Month

Open redirect vulnerability in the web server in IBM Domino 8.5 before 8.5.3 FP6 IF9 and 9.0 before 9.0.1 FP4 allows remote attackers to redirect users to arbitrary web sites and conduct phishing. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

IBM XSS Open Redirect Domino
NVD
CVSS 2.0
5.8
EPSS
0.2%
CVE-2015-2872 MEDIUM PATCH This Month

Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS PHP Trend Micro Deep Discovery Inspector
NVD
CVSS 2.0
4.3
EPSS
2.6%
CVE-2015-2015 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in pubnames.ntf (aka the Directory template) in the web server in IBM Domino before 9.0.0 allows remote attackers to inject arbitrary web script or HTML via a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

IBM XSS Domino
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2015-4950 MEDIUM PATCH This Month

The mailbox-restore feature in IBM Tivoli Storage Manager for Mail: Data Protection for Microsoft Exchange Server 6.1 before 6.1.3.6, 6.3 before 6.3.1.3, 6.4 before 6.4.1.4, and 7.1 before 7.1.0.2;. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

IBM Information Disclosure Microsoft Tivoli Storage Fastback For Microsoft Exchange Tivoli Storage Flashcopy Manager For Microsoft Exchange Server +1
NVD
CVSS 2.0
4.0
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy