Skip to main content
CVE-2015-5445 HIGH This Week

Cross-site request forgery (CSRF) vulnerability in HP StoreOnce Backup system software before 3.13.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

HP CSRF Storeonce Backup System Software
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2015-6860 HIGH PATCH This Week

HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6859. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity.

Privilege Escalation Network Switch Software J8692A J8693A J8697A +50
NVD
CVSS 3.0
8.4
EPSS
0.0%
CVE-2015-6859 HIGH PATCH This Week

HPE Network Switches with software 15.16.x and 15.17.x allow local users to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2015-6860. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Network Switch Software
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2015-6432 HIGH This Week

Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation Elements (PCEs) for OSPF LSA opaque area updates, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Cisco Denial Of Service Ios Xr
NVD
CVSS 3.0
7.5
EPSS
0.9%
CVE-2015-5446 HIGH This Week

HP StoreOnce Backup system software before 3.13.1 allows remote attackers to execute arbitrary code via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is no authentication required. No vendor patch available.

HP RCE Storeonce Backup System Software
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2015-6861 HIGH This Week

HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated users to bypass an intended AssumeRole permission requirement and assume an IAM role by leveraging a policy setting for a user's. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Eucalyptus
NVD
CVSS 3.0
7.5
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy