CVE List - 2015 / November
Showing 1 - 100 of 361 CVEs for November 2015 (Page 1 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-1775 | 2015-11-02 | Server-side request forgery (SSRF) vulnerability in the proxy endpoint (api/v1/proxy)... |
| CVE-2015-3186 | 2015-11-02 | Cross-site scripting (XSS) vulnerability in Apache Ambari before 2.1.0 allows... |
| CVE-2015-3270 | 2015-11-02 | Apache Ambari before 2.0.2 or 2.1.x before 2.1.1 allows remote... |
| CVE-2015-5210 | 2015-11-02 | Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote... |
| CVE-2015-5291 | 2015-11-02 | Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM... |
| CVE-2015-5308 | 2015-11-02 | Multiple SQL injection vulnerabilities in cs_admin_users.php in the wp-championship plugin... |
| CVE-2015-5470 | 2015-11-02 | The label decompression functionality in PowerDNS Recursor before 3.6.4 and... |
| CVE-2015-5534 | 2015-11-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall before 1.8... |
| CVE-2015-6031 | 2015-11-02 | Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the... |
| CVE-2015-8036 | 2015-11-02 | Heap-based buffer overflow in ARM mbed TLS (formerly PolarSSL) 1.3.x... |
| CVE-2015-8039 | 2015-11-02 | Samsung SmartViewer allows remote attackers to execute arbitrary code via... |
| CVE-2015-8040 | 2015-11-02 | The rtsp_getdlsendtime method in the CNC_Ctrl control in Samsung SmartViewer... |
| CVE-2015-8037 | 2015-11-02 | Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface... |
| CVE-2015-8038 | 2015-11-02 | Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface... |
| CVE-2015-6608 | 2015-11-03 | mediaserver in Android 5.x before 5.1.1 LMY48X and 6.0 before... |
| CVE-2015-6609 | 2015-11-03 | libutils in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01... |
| CVE-2015-6610 | 2015-11-03 | libstagefright in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01... |
| CVE-2015-6611 | 2015-11-03 | mediaserver in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01... |
| CVE-2015-6612 | 2015-11-03 | libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01... |
| CVE-2015-6613 | 2015-11-03 | Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01... |
| CVE-2015-6614 | 2015-11-03 | Telephony in Android 5.x before 5.1.1 LMY48X allows attackers to... |
| CVE-2015-8072 | 2015-11-03 | mediaserver in Android 4.4 through 5.x before 5.1.1 LMY48X and... |
| CVE-2015-8073 | 2015-11-03 | mediaserver in Android 4.4 and 5.1 before 5.1.1 LMY48X allows... |
| CVE-2015-8074 | 2015-11-03 | mediaserver in Android before 5.1.1 LMY48X allows remote attackers to... |
| CVE-2015-2902 | 2015-11-04 | HP ArcSight SmartConnectors before 7.1.6 do not verify X.509 certificates... |
| CVE-2015-2903 | 2015-11-04 | The CWSAPI SOAP service in HP ArcSight SmartConnectors before 7.1.6... |
| CVE-2015-4927 | 2015-11-04 | The Reporting and Monitoring component in Tivoli Monitoring in IBM... |
| CVE-2015-5021 | 2015-11-04 | IBM InfoSphere Information Server 11.3 and 11.5 allows remote authenticated... |
| CVE-2015-5673 | 2015-11-04 | eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal (aka eventapp) web application... |
| CVE-2015-6029 | 2015-11-04 | HP ArcSight Logger before 6.0 P2 does not limit attempts... |
| CVE-2015-6030 | 2015-11-04 | HP ArcSight Logger 6.0.0.7307.1, ArcSight Command Center 6.8.0.1896.0, and ArcSight... |
| CVE-2015-6355 | 2015-11-04 | The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A... |
| CVE-2015-6356 | 2015-11-04 | Cross-site scripting (XSS) vulnerability in the WeChat page in Cisco... |
| CVE-2015-6867 | 2015-11-04 | The vertica-udx-zygote process in HP Vertica 7.1.1 UDx does not... |
| CVE-2015-7244 | 2015-11-04 | The default configuration of the server in MobaXterm before 8.3... |
| CVE-2015-7253 | 2015-11-04 | The Web Console in Commvault Edge Server 10 R2 allows... |
| CVE-2015-7650 | 2015-11-04 | Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before... |
| CVE-2015-4513 | 2015-11-05 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2015-4514 | 2015-11-05 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2015-4515 | 2015-11-05 | Mozilla Firefox before 42.0, when NTLM v1 is enabled for... |
| CVE-2015-4518 | 2015-11-05 | The Reader View implementation in Mozilla Firefox before 42.0 has... |
| CVE-2015-7181 | 2015-11-05 | The sec_asn1d_parse_leaf function in Mozilla Network Security Services (NSS) before... |
| CVE-2015-7182 | 2015-11-05 | Heap-based buffer overflow in the ASN.1 decoder in Mozilla Network... |
| CVE-2015-7183 | 2015-11-05 | Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime... |
| CVE-2015-7185 | 2015-11-05 | Mozilla Firefox before 42.0 on Android does not ensure that... |
| CVE-2015-7186 | 2015-11-05 | Mozilla Firefox before 42.0 on Android allows user-assisted remote attackers... |
| CVE-2015-7187 | 2015-11-05 | The Add-on SDK in Mozilla Firefox before 42.0 misinterprets a... |
| CVE-2015-7188 | 2015-11-05 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4... |
| CVE-2015-7189 | 2015-11-05 | Race condition in the JPEGEncoder function in Mozilla Firefox before... |
| CVE-2015-7190 | 2015-11-05 | The Search feature in Mozilla Firefox before 42.0 on Android... |
| CVE-2015-7191 | 2015-11-05 | Mozilla Firefox before 42.0 on Android improperly restricts URL strings... |
| CVE-2015-7192 | 2015-11-05 | The accessibility-tools feature in Mozilla Firefox before 42.0 on OS... |
| CVE-2015-7193 | 2015-11-05 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4... |
| CVE-2015-7194 | 2015-11-05 | Buffer underflow in libjar in Mozilla Firefox before 42.0 and... |
| CVE-2015-7195 | 2015-11-05 | The URL parsing implementation in Mozilla Firefox before 42.0 improperly... |
| CVE-2015-7196 | 2015-11-05 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4,... |
| CVE-2015-7197 | 2015-11-05 | Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4... |
| CVE-2015-7198 | 2015-11-05 | Buffer overflow in the rx::TextureStorage11 class in ANGLE, as used... |
| CVE-2015-7199 | 2015-11-05 | The (1) AddWeightedPathSegLists and (2) SVGPathSegListSMILType::Interpolate functions in Mozilla Firefox... |
| CVE-2015-7200 | 2015-11-05 | The CryptoKey interface implementation in Mozilla Firefox before 42.0 and... |
| CVE-2015-6291 | 2015-11-06 | Cisco AsyncOS before 8.5.7-043, 9.x before 9.1.1-023, and 9.5.x and... |
| CVE-2015-6293 | 2015-11-06 | Cisco AsyncOS 8.x before 8.0.8-113, 8.1.x and 8.5.x before 8.5.3-051,... |
| CVE-2015-6321 | 2015-11-06 | Cisco AsyncOS before 8.5.7-042, 9.x before 9.1.0-032, 9.1.x before 9.1.1-023,... |
| CVE-2015-4282 | 2015-11-06 | Cisco Mobility Services Engine (MSE) through 8.0.120.7 uses weak permissions... |
| CVE-2015-5672 | 2015-11-06 | TYPE-MOON Fate/stay night, Fate/hollow ataraxia, Witch on the Holy Night,... |
| CVE-2015-6292 | 2015-11-06 | The proxy-cache implementation in Cisco AsyncOS 8.0.x before 8.0.7-151, 8.1.x... |
| CVE-2015-6298 | 2015-11-06 | The admin web interface in Cisco AsyncOS 8.x before 8.0.8-113,... |
| CVE-2015-6316 | 2015-11-06 | The default configuration of sshd_config in Cisco Mobility Services Engine... |
| CVE-2015-7770 | 2015-11-06 | Dell SonicWall TotalSecure TZ 100 devices with firmware before 5.9.1.0-22o... |
| CVE-2015-5305 | 2015-11-06 | Directory traversal vulnerability in Kubernetes, as used in Red Hat... |
| CVE-2015-6546 | 2015-11-06 | The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM,... |
| CVE-2015-7394 | 2015-11-06 | The datastor kernel module in F5 BIG-IP Analytics, APM, ASM,... |
| CVE-2015-7696 | 2015-11-06 | Info-ZIP UnZip 6.0 allows remote attackers to cause a denial... |
| CVE-2015-7697 | 2015-11-06 | Info-ZIP UnZip 6.0 allows remote attackers to cause a denial... |
| CVE-2014-9749 | 2015-11-06 | Squid 3.4.4 through 3.4.11 and 3.5.0.1 through 3.5.1, when Digest... |
| CVE-2015-5225 | 2015-11-06 | Buffer overflow in the vnc_refresh_server_surface function in the VNC display... |
| CVE-2015-6855 | 2015-11-06 | hw/ide/core.c in QEMU does not properly restrict the commands accepted... |
| CVE-2015-7762 | 2015-11-06 | rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does... |
| CVE-2015-7763 | 2015-11-06 | rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and... |
| CVE-2015-7809 | 2015-11-06 | The displayBlock function Template.php in Sensio Labs Twig before 1.20.0,... |
| CVE-2015-8081 | 2015-11-06 | The Field as Block module 7.x-1.x before 7.x-1.4 for Drupal... |
| CVE-2015-8082 | 2015-11-06 | The Login Disable module 6.x-1.x before 6.x-1.1 and 7.x-1.x before... |
| CVE-2015-6476 | 2015-11-07 | Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x devices with... |
| CVE-2015-7254 | 2015-11-07 | Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s devices... |
| CVE-2015-7395 | 2015-11-08 | IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8... |
| CVE-2015-1989 | 2015-11-08 | SQL injection vulnerability in IBM Security QRadar Incident Forensics 7.2.x... |
| CVE-2015-1993 | 2015-11-08 | IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... |
| CVE-2015-1994 | 2015-11-08 | IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... |
| CVE-2015-1995 | 2015-11-08 | Multiple cross-site scripting (XSS) vulnerabilities in IBM Security QRadar Incident... |
| CVE-2015-1996 | 2015-11-08 | IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... |
| CVE-2015-1997 | 2015-11-08 | Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar Vulnerability... |
| CVE-2015-1999 | 2015-11-08 | IBM Security QRadar Incident Forensics 7.2.x before 7.2.5 Patch 5... |
| CVE-2015-2017 | 2015-11-08 | CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 6.1... |
| CVE-2015-4928 | 2015-11-08 | Apache Ambari before 2.1, as used in IBM Infosphere BigInsights... |
| CVE-2015-4940 | 2015-11-08 | Apache Ambari before 2.1, as used in IBM Infosphere BigInsights... |
| CVE-2015-4963 | 2015-11-08 | IBM Security Access Manager for Web 7.x before 7.0.0.16 and... |
| CVE-2015-4966 | 2015-11-08 | IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.9... |
| CVE-2015-5005 | 2015-11-08 | CSPOC in IBM PowerHA SystemMirror on AIX 6.1 and 7.1... |
| CVE-2015-5015 | 2015-11-08 | IBM WebSphere Commerce Enterprise 7.0.0.9 and 8.x before Feature Pack... |
| CVE-2015-5019 | 2015-11-08 | IBM Sterling Integrator 5.1 before 5010004_8 and Sterling B2B Integrator... |