Lucene search
K

6926 matches found

UbuntuCve
UbuntuCve
added 2015/06/10 1:59 a.m.27 views

CVE-2015-3102

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

5CVSS5.9AI score0.0241EPSS
Exploits0References2
Prion
Prion
added 2015/06/10 1:59 a.m.20 views

Server side request forgery (ssrf)

The web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allow remote attackers to bypass the Same Origin Policy and send HTTP traffic to intranet servers via a crafted request, related to a Server-Side Request Forgery SSRF issue, aka "Exchange Server-Side Request Forger...

4.3CVSS7AI score0.1356EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2015/06/10 1:59 a.m.2 views

UBUNTU-CVE-2015-3098

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

5CVSS5.8AI score0.02346EPSS
Exploits0References3
OSV
OSV
added 2015/06/10 1:59 a.m.2 views

UBUNTU-CVE-2015-3099

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

5CVSS5.8AI score0.02346EPSS
Exploits0References3
OSV
OSV
added 2015/06/10 1:59 a.m.2 views

UBUNTU-CVE-2015-3102

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

5CVSS5.8AI score0.0241EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/06/10 1:0 a.m.25 views

CVE-2015-1764

The web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allow remote attackers to bypass the Same Origin Policy and send HTTP traffic to intranet servers via a crafted request, related to a Server-Side Request Forgery SSRF issue, aka "Exchange Server-Side Request Forger...

6.4AI score0.1356EPSS
Exploits0References3
Cvelist
Cvelist
added 2015/06/10 1:0 a.m.23 views

CVE-2015-3098

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

6.4AI score0.02346EPSS
Exploits0References8
Cvelist
Cvelist
added 2015/06/10 1:0 a.m.24 views

CVE-2015-3099

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...

6.4AI score0.02346EPSS
Exploits0References8
CVE
CVE
added 2015/06/10 1:0 a.m.85 views

CVE-2015-3098

Adobe Flash Player and related AIR components are affected by a vulnerability (CVE-2015-3098) that could bypass the Same Origin Policy via unspecified vectors. Mageia MGASA-2015-0248 notes a fix in Flash Player 11.2.202.468 and links CVE-2015-3098 to this update. Affected versions include Windows...

5CVSS6.5AI score0.02346EPSS
Exploits0References8Affected Software3
CVE
CVE
added 2015/06/10 1:0 a.m.79 views

CVE-2015-3102

Adobe Flash Player and related runtimes (Windows/macOS: 13.0.0.292 and 14.x–18.x before 18.0.0.160; Linux before 11.2.202.466; AIR before 18.0.0.144 on Windows and before 18.0.0.143 on macOS/Android; AIR SDKs before 18.0.0.144/18.0.0.143) are affected by CVE-2015-3102, which enables remote bypass...

5CVSS6.5AI score0.0241EPSS
Exploits0References8Affected Software2
CVE
CVE
added 2015/06/10 1:0 a.m.82 views

CVE-2015-3099

CVE-2015-3099 concerns Adobe Flash Player and related Adobe AIR components. Affected versions include Flash Player 13.0.0.292 and 14.x up to 18.x before 18.0.0.160 on Windows/macOS, and before 11.2.202.466 on Linux; Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X/Android; and...

5CVSS6.5AI score0.02346EPSS
Exploits0References8Affected Software3
CNVD
CNVD
added 2015/06/10 12:0 a.m.4 views

Microsoft Exchange Server Same-Origin Policy Bypass Vulnerability

Microsoft Exchange Server is an enterprise-class mail service program. A same-origin policy bypass vulnerability exists in Microsoft Exchange Server, which could be exploited by a remote attacker to submit a special web application request to bypass the same-origin policy and obtain sensitive...

4.3CVSS6.7AI score0.1356EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.1 views

Adobe Flash Player Same-Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-03774)

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...

5CVSS6.8AI score0.02346EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.1 views

Adobe Flash Player Same Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-03801)

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...

5CVSS6.8AI score0.0241EPSS
Exploits0References1
CNVD
CNVD
added 2015/06/10 12:0 a.m.1 views

Adobe Flash Player Homologation Policy Bypasses Information Disclosure Vulnerability

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...

5CVSS6.8AI score0.02346EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/06/10 12:0 a.m.195 views

Microsoft Exchange Server Privilege Escalation Vulnerability (3062157)

This host is missing an important security update according to Microsoft Bulletin MS15-064. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

6.8CVSS5AI score0.1356EPSS
Exploits0References5
Symantec
Symantec
added 2015/06/09 12:0 a.m.39 views

Microsoft Exchange Server CVE-2015-1764 Same Origin Policy Security Bypass Vulnerability

Description Microsoft Exchange Server is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass the same-origin policy, obtain sensitive information and perform unauthorized actions. This could be used to steal sensitive information or launch other attacks...

4.3CVSS0.7AI score0.1356EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.51 views

Google Chrome < 43.0.2357.124 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 43.0.2357.124. It is, therefore, affected by multiple vulnerabilities related to Adobe Flash : - An unspecified vulnerability exists that allows an attacker to bypass the fix for CVE-2014-5333. CVE-2015-3096 - An...

10CVSS6.7AI score0.96079EPSS
Exploits5References13
Tenable Nessus
Tenable Nessus
added 2015/06/09 12:0 a.m.32 views

Google Chrome < 43.0.2357.124 Multiple Vulnerabilities (Mac OS X)

The version of Google Chrome installed on the remote Mac OS X host is prior to 43.0.2357.124. It is, therefore, affected by multiple vulnerabilities related to Adobe Flash : - An unspecified vulnerability exists that allows an attacker to bypass the fix for CVE-2014-5333. CVE-2015-3096 - Multiple...

10CVSS7.1AI score0.96079EPSS
Exploits5References12
CNVD
CNVD
added 2015/06/05 12:0 a.m.3 views

Multiple Blue Coat Systems SSL Visibility Appliance Products Incorrectly Enter Authentication Vulnerabilities

Blue Coat Systems SSL Visibility Appliance SV800 and others are products of Blue Coat Systems, U.S.A. The Blue Coat SSL Visibility Appliance SV800 is a management platform that provides complete visibility into encrypted traffic. The appliance offers features such as a dedicated encrypted traffic...

4.3CVSS7AI score0.01411EPSS
Exploits0References1
Rows per page
Query Builder