CVE List - 2015 / November
Showing 201 - 300 of 361 CVEs for November 2015 (Page 3 of 4)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-7660 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-7661 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-7662 | 2015-11-11 | Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on... |
| CVE-2015-7663 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-8042 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-8043 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-8044 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-8046 | 2015-11-11 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x... |
| CVE-2015-5441 | 2015-11-12 | Multiple cross-site scripting (XSS) vulnerabilities in HP ArcSight Management Center... |
| CVE-2015-6363 | 2015-11-12 | Multiple cross-site scripting (XSS) vulnerabilities in the web framework in... |
| CVE-2015-6554 | 2015-11-12 | Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote... |
| CVE-2015-6555 | 2015-11-12 | Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 allows remote... |
| CVE-2015-7817 | 2015-11-12 | Race condition in the administration-panel web service in IBM System... |
| CVE-2015-7818 | 2015-11-12 | The administration-panel web service in IBM System Networking Switch Center... |
| CVE-2015-7819 | 2015-11-12 | The DB service in IBM System Networking Switch Center (SNSC)... |
| CVE-2015-7820 | 2015-11-12 | Race condition in the administration-panel web service in IBM System... |
| CVE-2015-8113 | 2015-11-12 | Untrusted search path vulnerability in the client in Symantec Endpoint... |
| CVE-2015-2698 | 2015-11-13 | The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka... |
| CVE-2015-6045 | 2015-11-13 | Use-after-free vulnerability in the CElement object implementation in Microsoft Internet... |
| CVE-2015-6366 | 2015-11-13 | Cisco IOS 15.2(04)M6 and 15.4(03)S lets physical-interface ACLs supersede tunnel-interface... |
| CVE-2015-6478 | 2015-11-13 | Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict... |
| CVE-2015-7905 | 2015-11-13 | Unitronics VisiLogic OPLC IDE before 9.8.02 allows remote attackers to... |
| CVE-2015-8126 | 2015-11-13 | Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE... |
| CVE-2013-5229 | 2015-11-14 | The Remote Desktop full-screen feature in Apple OS X before... |
| CVE-2015-6364 | 2015-11-14 | Cisco Content Delivery System Manager Software 3.2 on Videoscape Distribution... |
| CVE-2015-6365 | 2015-11-14 | Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs supersede virtual... |
| CVE-2015-6367 | 2015-11-14 | Cisco Aironet 1800 devices with software 8.1(131.0) allow remote attackers... |
| CVE-2015-7404 | 2015-11-14 | IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft... |
| CVE-2015-7419 | 2015-11-14 | IBM WebSphere Portal 8.0.0.1 before CF19 and 8.5.0 before CF09... |
| CVE-2015-7427 | 2015-11-14 | IBM DataPower Gateway appliances with firmware 6.x before 6.0.0.17, 6.0.1.x... |
| CVE-2015-7774 | 2015-11-14 | PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x,... |
| CVE-2015-3977 | 2015-11-15 | Buffer overflow in Schneider Electric IMT25 Magnetic Flow DTM before... |
| CVE-2015-7830 | 2015-11-15 | The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in... |
| CVE-2015-8104 | 2015-11-16 | The KVM subsystem in the Linux kernel through 4.2.6, and... |
| CVE-2015-2925 | 2015-11-16 | The prepend_path function in fs/dcache.c in the Linux kernel before... |
| CVE-2015-5257 | 2015-11-16 | drivers/usb/serial/whiteheat.c in the Linux kernel before 4.2.4 allows physically proximate... |
| CVE-2015-5307 | 2015-11-16 | The KVM subsystem in the Linux kernel through 4.2.6, and... |
| CVE-2015-7312 | 2015-11-16 | Multiple race conditions in the Advanced Union Filesystem (aufs) aufs3-mmap.patch... |
| CVE-2015-7872 | 2015-11-16 | The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through... |
| CVE-2014-9752 | 2015-11-16 | Unrestricted file upload vulnerability in mods/_core/properties/lib/course.inc.php in ATutor before 2.2... |
| CVE-2015-7712 | 2015-11-16 | Multiple eval injection vulnerabilities in mods/_standard/gradebook/edit_marks.php in ATutor 2.2 and... |
| CVE-2015-7815 | 2015-11-16 | Directory traversal vulnerability in core/ViewDataTable/Factory.php in Piwik before 2.15.0 allows... |
| CVE-2015-7816 | 2015-11-16 | The DisplayTopKeywords function in plugins/Referrers/Controller.php in Piwik before 2.15.0 allows... |
| CVE-2015-7897 | 2015-11-16 | The media scanning functionality in the face recognition library in... |
| CVE-2015-2924 | 2015-11-16 | The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND)... |
| CVE-2015-8215 | 2015-11-16 | net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel before... |
| CVE-2015-8216 | 2015-11-17 | The ljpeg_decode_yuv_scan function in libavcodec/mjpegdec.c in FFmpeg before 2.8.2 omits... |
| CVE-2015-8217 | 2015-11-17 | The ff_hevc_parse_sps function in libavcodec/hevc_ps.c in FFmpeg before 2.8.2 does... |
| CVE-2015-8218 | 2015-11-17 | The decode_uncompressed function in libavcodec/faxcompr.c in FFmpeg before 2.8.2 does... |
| CVE-2015-8219 | 2015-11-17 | The init_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does... |
| CVE-2015-0272 | 2015-11-17 | GNOME NetworkManager allows remote attackers to cause a denial of... |
| CVE-2015-5217 | 2015-11-17 | providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0... |
| CVE-2015-5276 | 2015-11-17 | The std::random_device class in libstdc++ in the GNU Compiler Collection... |
| CVE-2015-5301 | 2015-11-17 | providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0... |
| CVE-2015-5311 | 2015-11-17 | PowerDNS (aka pdns) Authoritative Server 3.4.4 before 3.4.7 allows remote... |
| CVE-2015-5602 | 2015-11-17 | sudoedit in Sudo before 1.8.15 allows local users to gain... |
| CVE-2015-7805 | 2015-11-17 | Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to... |
| CVE-2015-7812 | 2015-11-17 | The hypercall_create_continuation function in arch/arm/domain.c in Xen 4.4.x through 4.6.x... |
| CVE-2015-7995 | 2015-11-17 | The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not... |
| CVE-2015-7996 | 2015-11-17 | The Nitro API in Citrix NetScaler Application Delivery Controller (ADC)... |
| CVE-2015-7997 | 2015-11-17 | Multiple cross-site scripting (XSS) vulnerabilities in the Nitro API in... |
| CVE-2015-7998 | 2015-11-17 | The administration UI in Citrix NetScaler Application Delivery Controller (ADC)... |
| CVE-2015-8221 | 2015-11-17 | Integer overflow in Google Picasa before 3.9.140 Build 259 allows... |
| CVE-2015-8220 | 2015-11-17 | Stack-based buffer overflow in the URI handler in DWRCC.exe in... |
| CVE-2015-8222 | 2015-11-17 | The lxd-unix.socket systemd unit file in the Ubuntu lxd package... |
| CVE-2015-8232 | 2015-11-17 | The UC Profile module 6.x-1.x before 6.x-1.3 for Drupal does... |
| CVE-2015-8233 | 2015-11-17 | Cross-site scripting (XSS) vulnerability in the MAYO theme 7.x-1.x before... |
| CVE-2015-6330 | 2015-11-18 | Cross-site request forgery (CSRF) vulnerability in Cisco Prime Collaboration Assurance... |
| CVE-2015-6357 | 2015-11-18 | The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2... |
| CVE-2015-6847 | 2015-11-18 | The default configuration of EMC VPLEX GeoSynchrony 5.4 SP1 before... |
| CVE-2015-6372 | 2015-11-18 | Cross-site scripting (XSS) vulnerability in the web-based management interface in... |
| CVE-2015-6373 | 2015-11-18 | Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating... |
| CVE-2015-4852 | 2015-11-18 | The WLS Security component in Oracle WebLogic Server 10.3.6.0, 12.1.2.0,... |
| CVE-2015-5253 | 2015-11-18 | The SAML Web SSO module in Apache CXF before 2.7.18,... |
| CVE-2015-5999 | 2015-11-18 | Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L... |
| CVE-2015-7941 | 2015-11-18 | libxml2 2.9.2 does not properly stop parsing invalid input, which... |
| CVE-2015-7942 | 2015-11-18 | The xmlParseConditionalSections function in parser.c in libxml2 does not properly... |
| CVE-2015-8023 | 2015-11-18 | The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2... |
| CVE-2015-8035 | 2015-11-18 | The xz_decomp function in xzlib.c in libxml2 2.9.1 does not... |
| CVE-2015-5255 | 2015-11-18 | Adobe BlazeDS, as used in ColdFusion 10 before Update 18... |
| CVE-2015-8051 | 2015-11-18 | The Adobe Premiere Clip app before 1.2.1 for iOS mishandles... |
| CVE-2015-8052 | 2015-11-18 | Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update... |
| CVE-2015-8053 | 2015-11-18 | Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update... |
| CVE-2015-8090 | 2015-11-18 | The Web Server component in TIBCO LogLogic Unity before 1.1.1... |
| CVE-2015-6368 | 2015-11-19 | Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices... |
| CVE-2015-6369 | 2015-11-19 | The USB driver in Cisco Firepower Extensible Operating System 1.1(1.160)... |
| CVE-2015-6370 | 2015-11-19 | The Management I/O (MIO) component in Cisco Firepower Extensible Operating... |
| CVE-2015-6371 | 2015-11-19 | Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices... |
| CVE-2015-6374 | 2015-11-19 | The web interface in Cisco Firepower Extensible Operating System 1.1(1.160)... |
| CVE-2015-4112 | 2015-11-19 | The Management Console in BlackBerry Enterprise Server (BES) 12 before... |
| CVE-2015-7910 | 2015-11-19 | Exemys Telemetry Web Server relies on an HTTP Location header... |
| CVE-2015-8236 | 2015-11-19 | Arista EOS before 4.11.12, 4.12 before 4.12.11, 4.13 before 4.13.14M,... |
| CVE-2014-9756 | 2015-11-19 | The psf_fwrite function in file_io.c in libsndfile allows attackers to... |
| CVE-2015-0794 | 2015-11-19 | modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2... |
| CVE-2015-7385 | 2015-11-19 | Cross-site scripting (XSS) vulnerability in Open-Xchange OX Guard before 2.0.0-rev11... |
| CVE-2015-7845 | 2015-11-19 | The exception handling mechanism in the CLI Module in Huawei... |
| CVE-2015-7984 | 2015-11-19 | Multiple cross-site request forgery (CSRF) vulnerabilities in Horde before 5.2.8,... |
| CVE-2015-8083 | 2015-11-19 | An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960,... |
| CVE-2015-8087 | 2015-11-19 | Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100... |
| CVE-2015-7771 | 2015-11-20 | Cross-site scripting (XSS) vulnerability in the runtime engine in the... |