Skip to main content
CVE-2015-3308 HIGH This Week

Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted CRL distribution. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Gnutls Ubuntu Linux
NVD
CVSS 2.0
7.5
EPSS
1.4%
CVE-2015-6805 LOW POC Monitor

Cross-site scripting (XSS) vulnerability in the MDC Private Message plugin 1.0.0 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the message field in a. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS WordPress Mdc Private Message
NVD Exploit-DB
CVSS 2.0
3.5
EPSS
0.5%
CVE-2015-4330 MEDIUM This Month

A local file script in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges for OS command execution via invalid parameters, aka Bug ID. Rated medium severity (CVSS 6.9). No vendor patch available.

Command Injection Cisco Telepresence Video Communication Server Software
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-6277 MEDIUM This Month

The ARP implementation in Cisco NX-OS on Nexus 1000V devices for VMware vSphere 5.2(1)SV3(1.4), Nexus 3000 devices 7.3(0)ZD(0.47), Nexus 4000 devices 4.1(2)E1, Nexus 9000 devices 7.3(0)ZD(0.61), and. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Cisco VMware Nx Os San Os +2
NVD
CVSS 2.0
6.1
EPSS
0.4%
CVE-2015-6274 MEDIUM This Month

The IPv4 implementation on Cisco ASR 1000 devices with software 15.5(3)S allows remote attackers to cause a denial of service (ESP QFP CPU consumption) by triggering packet fragmentation and. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Buffer Overflow Asr 1000 Series Software
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2015-6587 MEDIUM This Month

The vlserver in OpenAFS before 1.6.13 allows remote authenticated users to cause a denial of service (out-of-bounds read and crash) via a crafted regular expression in a VL_ListAttributesN2 RPC. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Openafs Debian Linux
NVD
CVSS 2.0
4.0
EPSS
0.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy