Skip to main content
CVE-2015-7244 HIGH PATCH This Week

The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Mobaxterm
NVD
CVSS 2.0
7.5
EPSS
4.4%
CVE-2015-6867 HIGH This Week

The vertica-udx-zygote process in HP Vertica 7.1.1 UDx does not require authentication, which allows remote attackers to execute arbitrary commands via a crafted packet, aka ZDI-CAN-2914. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Authentication Bypass Vertica
NVD
CVSS 2.0
7.5
EPSS
0.9%
CVE-2015-6030 HIGH This Week

HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight Connector Appliance 6.4.0.6881.3 use the root account to execute files owned by the arcsight user, which might. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

HP Privilege Escalation Arcsight Connector Appliance Arcsight Logger Arcsight Command Center +4
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-4927 HIGH This Week

The Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager 6.3 before 6.3.6 and 7.1 before 7.1.3 on Linux and AIX uses world-writable permissions for unspecified files,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

IBM Privilege Escalation Tivoli Storage Manager
NVD
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy