Securityvulns - Page 5 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2015/10/05 12:0 a.m.•41 views

[SYSS-2015-006] Kaspersky Total Security - Use of One-Way Hash withouth a Salt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-006 Product: Kaspersky Total Security KTS Vendor: Kaspersky Lab ZAO Affected Versions: 15.0.1.415 Tested Versions: 15.0.1.415 Vulnerability Type: Use of a One-Way Hash without a Salt CWE-759 Risk Level: Low Solution Status:...

securityvulns•added 2015/10/05 12:0 a.m.•132 views

[SYSS-2015-004] Kaspersky Small Office Security - Use of One-Way Hash withouth a Salt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-004 Product: Kaspersky Small Office Security KSOS Vendor: Kaspersky Lab ZAO Affected Versions: 13.0.4.233 Tested Versions: 13.0.4.233 Vulnerability Type: Use of a One-Way Hash without a Salt CWE-759 Risk Level: Low Solution...

securityvulns•added 2015/10/05 12:0 a.m.•80 views

Apple Safari FTP PASV manipulation vulnerability (CVE-2015-5912)

Full details: http://www.securitygalore.com/site3/safari-pasv Thanks, -Amit Klein http://www.securitygalore.com/...

0.3AI score0.01658EPSS

securityvulns•added 2015/10/05 12:0 a.m.•74 views

[SECURITY] [DSA 3364-1] linux security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3364-1 [email protected] https://www.debian.org/security/ Ben Hutchings September 21, 2015 https://www.debian.org/security/faq...

7.8CVSS0.7AI score0.05059EPSS

securityvulns•added 2015/10/05 12:0 a.m.•38 views

rpcbind use-after-free

User-after-free conditions...

5CVSS1AI score0.06408EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/10/05 12:0 a.m.•231 views

[SYSS-2015-001] Kaspersky Endpoint Security - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-001 Product: Kaspersky Endpoint Security for Windows KES Manufacturer: Kaspersky Lab ZAO Affected Versions: 8.1.0.1042, 10.2.1.23 Tested Versions: 8.1.0.1042, 10.2.1.23 Vulnerability Type: Authentication Bypass Using an...

securityvulns•added 2015/10/05 12:0 a.m.•133 views

[SYSS-2015-005] Kaspersky Total Security - Authentication Bypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-005 Product: Kaspersky Total Security KTS Vendor: Kaspersky Lab ZAO Affected Versions: 15.0.1.415 Tested Versions: 15.0.1.415 Vulnerability Type: Authentication Bypass Using an Alternate Path or Channel CWE-288 Risk Level:...

securityvulns•added 2015/10/05 12:0 a.m.•31 views

[SYSS-2015-008] Kaspersky Internet Security - Use of One-Way Hash withouth a Salt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2015-008 Product: Kaspersky Internet Security KIS Vendor: Kaspersky Lab ZAO Affected Versions: 15.0.2.361 Tested Versions: 15.0.2.361 Vulnerability Type: Use of a One-Way Hash without a Salt CWE-759 Risk Level: Low Solution Status:...

securityvulns•added 2015/10/05 12:0 a.m.•33 views

Kapersky applications security vulnerabilities

Weak authentication, weak hashing...

Exploits0References10Affected Software5

securityvulns•added 2015/10/05 12:0 a.m.•127 views

APPLE-SA-2015-09-21-1 watchOS 2

APPLE-SA-2015-09-21-1 watchOS 2 watchOS 2 is now available and addresses the following: Apple Pay Available for: Apple Watch Sport, Apple Watch, and Apple Watch Edition Impact: Some cards may allow a terminal to retrieve limited recent transaction information when making a payment Description: Th...

10CVSS0.6AI score0.24286EPSS

securityvulns•added 2015/10/05 12:0 a.m.•140 views

APPLE-SA-2015-09-16-1 iOS 9

APPLE-SA-2015-09-16-1 iOS 9 iOS 9 is now available and addresses the following: Apple Pay Available for: iPhone 6, iPad mini 3, and iPad Air 2 Impact: Some cards may allow a terminal to retrieve limited recent transaction information when making a payment Description: The transaction log...

10CVSS0.1AI score0.24286EPSS

securityvulns•added 2015/10/05 12:0 a.m.•135 views

APPLE-SA-2015-09-16-3 iTunes 12.3

APPLE-SA-2015-09-16-3 iTunes 12.3 iTunes 12.3 is now available and addresses the following: iTunes Available for: Windows 7 and later Impact: Applications that use CoreText may be vulnerable to unexpected application termination or arbitrary code execution Description: Multiple memory corruption...

9.3CVSS0.6AI score0.24286EPSS

securityvulns•added 2015/10/05 12:0 a.m.•206 views

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11 OS X El Capitan 10.11 is now available and addresses the following: Address Book Available for: Mac OS X v10.6.8 and later Impact: A local attacker may be able to inject arbitrary code to processes loading the Address Book framework Description: An issu...

10CVSS0.2AI score0.94859EPSS

securityvulns•added 2015/10/05 12:0 a.m.•54 views

libicu memory corruption

Memory corruption on symbols parsing...

10CVSS3.4AI score0.08185EPSS

Exploits0References1

securityvulns•added 2015/09/21 12:0 a.m.•95 views

Linux kernel multiple security vulnerabilities

Multiple USB over WiFi memory corruptions, DoS, race conditions...

9CVSS2.3AI score0.08339EPSS

Exploits6References5Affected Software1

securityvulns•added 2015/09/15 12:0 a.m.•114 views

Microsoft Windows multiple security vulnerabilities

Multiple vulnerabilities in Edge and Internet Explorer, code execution in graphics and journaling, mediascenter, .Net framework, task management, Active Directory, Hyper-V...

9.3CVSS3AI score0.71044EPSS

Exploits19Affected Software1

securityvulns•added 2015/09/15 12:0 a.m.•86 views

[security bulletin] HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization Bypass

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04762372 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04762372 Version: 2 HPSBMU03392 rev.2 - HP ArcSight Logger, Remote Authorization...

4CVSS0.5AI score0.0184EPSS

securityvulns•added 2015/09/15 12:0 a.m.•61 views

Microsoft Office multiple security vulnerabilities

Multiple memory corruptions...

9.3CVSS2.2AI score0.86053EPSS

Exploits2Affected Software1

securityvulns•added 2015/09/15 12:0 a.m.•189 views

[SECURITY] [DSA 3358-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3358-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 13, 2015 https://www.debian.org/security/faq...

7.5CVSS1.1AI score0.46801EPSS

securityvulns•added 2015/09/15 12:0 a.m.•21 views

vzctl privilege escalation

It's possible to get control over ploop-based containers...

Exploits0References1Affected Software1

securityvulns•added 2015/09/15 12:0 a.m.•42 views

[SECURITY] [DSA 3357-1] vzctl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3357-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 13, 2015 https://www.debian.org/security/faq -...

securityvulns•added 2015/09/15 12:0 a.m.•36 views

Microsoft Lync Server / Skype for Business crossite scripting

Multiple crossite scripting possibilities...

4.3CVSS1.5AI score0.10889EPSS

Exploits0Affected Software2

securityvulns•added 2015/09/15 12:0 a.m.•75 views

PHP multiple security vulnerabilities

No description provided...

7.5CVSS1.4AI score0.46801EPSS

Exploits7References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•27 views

Netgear Prosafe multiple security vulnerabilities

Authentication bypass, privilege escalation...

Exploits0References1

securityvulns•added 2015/09/14 12:0 a.m.•41 views

OpenSLP double free() vulnerability

No description provided...

5CVSS1.1AI score0.0631EPSS

Exploits1References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•32 views

HP lt4112 4G adapters code execution

No description provided...

7.8CVSS2.9AI score0.07099EPSS

Exploits0References1

securityvulns•added 2015/09/14 12:0 a.m.•39 views

NETGEAR Wireless Management System - Authentication Bypass and Privilege Escalation.

NETGEAR Wireless Management System - Authentication Bypass and Privilege Escalation. WMS5316 ProSafe 16AP Wireless Management System - Firmware 2.1.4.15 Build 1236. - Vulnerability Information: ============================== Title: NETGEAR Wireless Management System - Authentication Bypass and...

securityvulns•added 2015/09/14 12:0 a.m.•50 views

[SECURITY] [DSA 3356-1] openldap security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3356-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 12, 2015 https://www.debian.org/security/faq...

5CVSS2.6AI score0.19628EPSS

securityvulns•added 2015/09/14 12:0 a.m.•40 views

ESA-2015-140: RSA® Identity Management & Governance Multiple Cross-Site Scripting Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-140: RSA® Identity Management & Governance Multiple Cross-Site Scripting Vulnerabilities EMC Identifier: ESA-2015-140 CVE Identifier: CVE-2015-4539, CVE-2015-4540 Severity Rating: CVSS v2 Base Score: See below for individual scores Affected...

4.3CVSS0.5AI score0.01586EPSS

securityvulns•added 2015/09/14 12:0 a.m.•30 views

libvpau multiple security vulnerabilities

Privilege escalation because of incorrect envorionment variables handling...

7.2CVSS2.7AI score0.00505EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•56 views

[security bulletin] HPSBGN03504 rev.1 - HP UCMDB, Local Disclosure of Sensitive Information

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04790231 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04790231 Version: 1 HPSBGN03504 rev.1 - HP UCMDB, Local Disclosure of Sensitive...

4.9CVSS0.5AI score0.00574EPSS

securityvulns•added 2015/09/14 12:0 a.m.•33 views

Synology Video Station command injection and multiple SQL injection vulnerabilities

------------------------------------------------------------------------ Synology Video Station command injection and multiple SQL injection vulnerabilities ------------------------------------------------------------------------ Han Sahin, September 2015...

securityvulns•added 2015/09/14 12:0 a.m.•63 views

[USN-2736-1] Spice vulnerability

========================================================================== Ubuntu Security Notice USN-2736-1 September 08, 2015 spice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.9CVSS0.6AI score0.01144EPSS

securityvulns•added 2015/09/14 12:0 a.m.•42 views

OpenLDAP DoS

Crash on processing BER data...

5CVSS1.8AI score0.19628EPSS

Exploits1References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•171 views

EMC Documentum multiple security vulnerabilities

Code injection, privilege escalation...

9CVSS3.2AI score0.04364EPSS

Exploits11References30Affected Software5

securityvulns•added 2015/09/14 12:0 a.m.•55 views

[security bulletin] HPSBMU03339 rev.1 - HP LoadRunner Controller, Local Execution of Arbitrary Code

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04692147 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04692147 Version: 1 HPSBMU03339 rev.1 - HP LoadRunner Controller, Local Execution...

4.6CVSS0.7AI score0.00825EPSS

securityvulns•added 2015/09/14 12:0 a.m.•66 views

[security bulletin] HPSBHF03408 rev.2 - HP PCs with HP lt4112 LTE/HSPA+ Gobi 4G Module, Remote Execution of Arbitrary Code

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04773272 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04773272 Version: 2 HPSBHF03408 rev.2 - HP PCs with HP lt4112 LTE/HSPA+ Gobi 4G...

7.8CVSS0.4AI score0.07099EPSS

securityvulns•added 2015/09/14 12:0 a.m.•45 views

FreeType uninitilized memory access

Uninitialized memory access on fonts parsing...

Exploits0References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•48 views

[USN-2739-1] FreeType vulnerabilities

========================================================================== Ubuntu Security Notice USN-2739-1 September 10, 2015 freetype vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

securityvulns•added 2015/09/14 12:0 a.m.•37 views

HP Intelligent Provisioning code execution

No description provided...

10CVSS1.5AI score0.08861EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•45 views

ESA-2015-144: EMC Documentum Content Server Privilege Escalation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-144: EMC Documentum Content Server Privilege Escalation Vulnerability EMC Identifier: ESA-2015-144 CVE Identifier: CVE-2015-4544 Severity Rating: CVSS v2 Base Score: 8.2 AV:N/AC:M/Au:S/C:C/I:C/A:P Affected products: • EMC Documentum Content...

9CVSS1.1AI score0.03994EPSS

securityvulns•added 2015/09/14 12:0 a.m.•37 views

SAP Mobile Platform XXE injection

Few XXE injections...

7.5CVSS1.8AI score0.02885EPSS

Exploits1References3Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•35 views

Multiple Cross-Site Scripting vulnerabilities in Synology Download Station

------------------------------------------------------------------------ Multiple Cross-Site Scripting vulnerabilities in Synology Download Station ------------------------------------------------------------------------ Han Sahin, September 2015...

securityvulns•added 2015/09/14 12:0 a.m.•55 views

Webroot SecureAnywhere Mobile Protection - MITM SSL Certificate Vulnerability

Webroot SecureAnywhere Mobile Protection - MITM SSL Certificate Vulnerability -- http://www.info-sec.ca/advisories/Webroot-SecureAnywhere.html Overview "Webroot SecureAnywhere Business – Mobile Protection provides essential security for iPhones and iPads and includes lost device protection that...

securityvulns•added 2015/09/14 12:0 a.m.•58 views

Avira Mobile Security iOS Application - Cleartext Credentials Vulnerability

Avira Mobile Security iOS Application - Cleartext Credentials Vulnerability -- http://www.info-sec.ca/advisories/Avira-Mobile-Security.html Overview "Avira Mobile Security is the ideal tool to recover a lost phone and ensure that your email has not been compromised." "Avira Mobile Security helps...

securityvulns•added 2015/09/14 12:0 a.m.•29 views

HP LoadRunner Controller code execution

No description provided...

4.6CVSS1.8AI score0.00825EPSS

Exploits0References1Affected Software1

securityvulns•added 2015/09/14 12:0 a.m.•60 views

[ERPSCAN-15-014] SAP Mobile Platform 3 – XXE in Add Repository

ERPSCAN Research Advisory ERPSCAN-15-014 SAP Mobile Platform 3 – XXE in Add Repository Application: SAP Mobile Platform Versions Affected: SAP Mobile Platform 3, probably others Vendor URL: http://SAP.com Bugs: XML External Entity Sent: 13.03.2015 Reported: 14.03.2015 Vendor response: 14.03.2015...

7.5CVSS0.02885EPSS

securityvulns•added 2015/09/14 12:0 a.m.•59 views

HP Virtual Connect Enterprise Manager / HP Matrix Operating Environment multiple security vulnerabilities

Information disclosure...

7.5CVSS0.7AI score0.03922EPSS

Exploits0References2

securityvulns•added 2015/09/14 12:0 a.m.•39 views

ESA-2015-110: EMC Documentum Thumbnail Server Directory Traversal Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-110: EMC Documentum Thumbnail Server Directory Traversal Vulnerability EMC Identifier: ESA-2015-110 CVE Identifier: CVE-2015-0550 Severity Rating: CVSS Base Score 8.5 AV:N/AC:L/Au:N/C:C/I:N/A:P Affected Products : EMC Software: EMC Documentum...

8.5CVSS0.5AI score0.04364EPSS

securityvulns•added 2015/09/14 12:0 a.m.•25 views

HP UCMDB information discosure

No description provided...

4.9CVSS0.4AI score0.00574EPSS

Exploits0References1Affected Software1

Total number of security vulnerabilities47153