mysql: unspecified vulnerability related to Server:Partition (CPU July 2015)

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Partition...

mysql: unspecified vulnerability related to Server:Memcached (CPU July 2015)

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect availability via unknown vectors related to Server : Memcached...

mysql: unspecified vulnerability related to Server:Security:Privileges (CPU October 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Server : Security : Privileges...

mysql: unspecified vulnerability related to Server:Pluggable Auth (CPU July 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth...

mysql: unspecified vulnerability related to Server:Pluggable Auth (CPU July 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Pluggable Auth...

mysql: unspecified vulnerability related to Server:I_S (CPU July 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.24 and earlier allows remote authenticated users to affect availability via vectors related to Server : IS...

mysql: unspecified vulnerability related to Server:InnoDB:DML (CPU April 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to InnoDB : DML...

mysql: unspecified vulnerability related to Server:Federated (CPU April 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Federated...

mysql: unspecified vulnerability related to Server:Optimizer (CPU April 2015)

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer...

DEBIAN-CVE-2015-3289

OpenStack Glance before 2015.1.1 kilo allows remote authenticated users to cause a denial of service disk consumption by repeatedly using the import task flow API to create images and then deleting them...

CVE-2015-3235

CVE-2015-3235 affects Foreman within Red Hat Satellite (Foreman-based) where users with the edit_users permission can edit admin user passwords, enabling privilege escalation. Connected sources corroborate the issue as part of Foreman/Satellite advisories and Veracode summaries tying the CVE to F...

CVE-2015-4295

Cisco Unified Communications Manager 10.5(3.10000.9) Prime Collaboration Deployment contains an Information Disclosure vulnerability. An authenticated remote attacker can view root credentials via a direct request to an unspecified URL due to insufficient protections of data at rest, potentially ...

CVE-2015-1490

Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 is affected by CVE-2015-1490, a directory traversal vulnerability in the SEPM management console. An authenticated remote attacker can read arbitrary files via a relative pathname in a client installation package due to improp...

Design/Logic Flaw

Cisco Application Policy Infrastructure Controller APIC devices with software before 1.03o and 1.1 before 1.11j and Nexus 9000 ACI devices with software before 11.04o and 11.1 before 11.11j do not properly restrict access to the APIC filesystem, which allows remote authenticated users to obtain...

RHEL 6 : freeradius (RHSA-2015:1287)

Updated freeradius packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

CVE-2015-5464

The Gemalto SafeNet Luna HSM allows remote authenticated users to bypass intended key-export restrictions by leveraging 1 crypto-user or 2 crypto-officer access to an HSM partition...

CVE-2015-2134

Cross-site request forgery CSRF vulnerability in HP System Management Homepage SMH before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors...

CVE-2015-5610

SolarWinds N-Able N-Central (RSMWinService) is affected by CVE-2015-5610. The RSM service before version 9.5.1.4514 uses the same password decryption key across different customer installations, enabling remote authenticated users to obtain the plaintext domain-administrator password by locating ...

Moderate: Red Hat Security Advisory: freeradius security, bug fix, and enhancement update

Updated freeradius packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

CVE-2015-1883

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read certain administrative files via crafted use of an automated-maintenance policy stored procedure...