CVE List - 2015 / April
Showing 1 - 100 of 538 CVEs for April 2015 (Page 1 of 6)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-2808 | 2015-04-01 | The RC4 algorithm, as used in the TLS protocol and... |
| CVE-2015-1892 | 2015-04-01 | The Multicast DNS (mDNS) responder in IBM Security Access Manager... |
| CVE-2015-2809 | 2015-04-01 | The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM)... |
| CVE-2012-2808 | 2015-04-01 | The PRNG implementation in the DNS resolver in Bionic in... |
| CVE-2015-0800 | 2015-04-01 | The PRNG implementation in the DNS resolver in Mozilla Firefox... |
| CVE-2015-0801 | 2015-04-01 | Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and... |
| CVE-2015-0802 | 2015-04-01 | Mozilla Firefox before 37.0 relies on docshell type information instead... |
| CVE-2015-0803 | 2015-04-01 | The HTMLSourceElement::AfterSetAttr function in Mozilla Firefox before 37.0 does not... |
| CVE-2015-0804 | 2015-04-01 | The HTMLSourceElement::BindToTree function in Mozilla Firefox before 37.0 does not... |
| CVE-2015-0805 | 2015-04-01 | The Off Main Thread Compositing (OMTC) implementation in Mozilla Firefox... |
| CVE-2015-0806 | 2015-04-01 | The Off Main Thread Compositing (OMTC) implementation in Mozilla Firefox... |
| CVE-2015-0807 | 2015-04-01 | The navigator.sendBeacon implementation in Mozilla Firefox before 37.0, Firefox ESR... |
| CVE-2015-0808 | 2015-04-01 | The webrtc::VPMContentAnalysis::Release function in the WebRTC implementation in Mozilla Firefox... |
| CVE-2015-0810 | 2015-04-01 | Mozilla Firefox before 37.0 on OS X does not ensure... |
| CVE-2015-0811 | 2015-04-01 | The QCMS implementation in Mozilla Firefox before 37.0 allows remote... |
| CVE-2015-0812 | 2015-04-01 | Mozilla Firefox before 37.0 does not require an HTTPS session... |
| CVE-2015-0813 | 2015-04-01 | Use-after-free vulnerability in the AppendElements function in Mozilla Firefox before... |
| CVE-2015-0814 | 2015-04-01 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2015-0815 | 2015-04-01 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2015-0816 | 2015-04-01 | Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and... |
| CVE-2014-9713 | 2015-04-01 | The default slapd configuration in the Debian openldap package 2.4.23-3... |
| CVE-2015-0259 | 2015-04-01 | OpenStack Compute (Nova) before 2014.1.4, 2014.2.x before 2014.2.3, and kilo... |
| CVE-2015-2294 | 2015-04-01 | Multiple cross-site scripting (XSS) vulnerabilities in the WebGUI in pfSense... |
| CVE-2015-2751 | 2015-04-01 | Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows... |
| CVE-2015-2752 | 2015-04-01 | The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using... |
| CVE-2015-2755 | 2015-04-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in the AB Google... |
| CVE-2015-2756 | 2015-04-01 | QEMU, as used in Xen 3.3.x through 4.5.x, does not... |
| CVE-2015-2811 | 2015-04-01 | XML external entity (XXE) vulnerability in ReportXmlViewer in SAP NetWeaver... |
| CVE-2015-2812 | 2015-04-01 | XML external entity (XXE) vulnerability in XMLValidationComponent in SAP NetWeaver... |
| CVE-2015-2813 | 2015-04-01 | XML external entity (XXE) vulnerability in SAP Mobile Platform allows... |
| CVE-2015-2814 | 2015-04-01 | SAP EMR Unwired (com.sap.mobile.healthcare.emr.v2) and Clinical Task Tracker (com.sap.mobile.healthcare.ctt) does... |
| CVE-2015-2815 | 2015-04-01 | Buffer overflow in the C_SAPGPARAM function in the NetWeaver Dispatcher... |
| CVE-2015-2816 | 2015-04-01 | The XcListener in SAP Afaria 7.0.6001.5 does not properly restrict... |
| CVE-2015-2817 | 2015-04-01 | The SAP Management Console in SAP NetWeaver 7.40 allows remote... |
| CVE-2015-2818 | 2015-04-01 | XML external entity (XXE) vulnerability in SAP Mobile Platform 3... |
| CVE-2015-2819 | 2015-04-01 | SAP Sybase SQL Anywhere 11 and 16 allows remote attackers... |
| CVE-2015-2820 | 2015-04-01 | Buffer overflow in XcListener in SAP Afaria 7.0.6001.5 allows remote... |
| CVE-2015-2821 | 2015-04-01 | TYPO3 Neos 1.1.x before 1.1.3 and 1.2.x before 1.2.3 allows... |
| CVE-2015-1233 | 2015-04-01 | Google Chrome before 41.0.2272.118 does not properly handle the interaction... |
| CVE-2015-1234 | 2015-04-01 | Race condition in gpu/command_buffer/service/gles2_cmd_decoder.cc in Google Chrome before 41.0.2272.118 allows... |
| CVE-2015-0685 | 2015-04-03 | Cisco IOS XE before 3.7.5S on ASR 1000 devices does... |
| CVE-2015-0686 | 2015-04-03 | The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000... |
| CVE-2015-0687 | 2015-04-03 | The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500... |
| CVE-2014-5400 | 2015-04-03 | The installation component in Hospira MedNet before 6.1 places cleartext... |
| CVE-2014-5403 | 2015-04-03 | Hospira MedNet before 6.1 uses hardcoded cryptographic keys for protection... |
| CVE-2014-5405 | 2015-04-03 | Hospira MedNet before 6.1 uses a hardcoded cleartext password to... |
| CVE-2014-8390 | 2015-04-03 | Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow... |
| CVE-2015-0666 | 2015-04-03 | Directory traversal vulnerability in the fmserver servlet in Cisco Prime... |
| CVE-2015-0682 | 2015-04-03 | Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users... |
| CVE-2015-0683 | 2015-04-03 | Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users... |
| CVE-2015-0684 | 2015-04-03 | SQL injection vulnerability in the Image Management component in Cisco... |
| CVE-2015-0902 | 2015-04-03 | The Semper Fi All in One SEO Pack plugin before... |
| CVE-2015-0903 | 2015-04-03 | Buffer overflow in Saitoh Kikaku Maruo Editor 8.51 and earlier... |
| CVE-2015-0976 | 2015-04-03 | Cross-site scripting (XSS) vulnerability in Inductive Automation Ignition 7.7.2 allows... |
| CVE-2015-0990 | 2015-04-03 | Untrusted search path vulnerability in Ecava IntegraXor SCADA Server before... |
| CVE-2015-0991 | 2015-04-03 | Inductive Automation Ignition 7.7.2 allows remote attackers to obtain sensitive... |
| CVE-2015-0992 | 2015-04-03 | Inductive Automation Ignition 7.7.2 stores cleartext OPC Server credentials, which... |
| CVE-2015-0993 | 2015-04-03 | Inductive Automation Ignition 7.7.2 does not terminate a session upon... |
| CVE-2015-0994 | 2015-04-03 | Inductive Automation Ignition 7.7.2 allows remote authenticated users to bypass... |
| CVE-2015-0995 | 2015-04-03 | Inductive Automation Ignition 7.7.2 uses MD5 password hashes, which makes... |
| CVE-2015-0225 | 2015-04-03 | The default configuration in Apache Cassandra 1.2.0 through 1.2.19, 2.0.0... |
| CVE-2015-2838 | 2015-04-03 | Cross-site request forgery (CSRF) vulnerability in Nitro API in Citrix... |
| CVE-2015-2839 | 2015-04-03 | The Nitro API in Citrix NetScaler before 10.5 build 52.3nc... |
| CVE-2015-2840 | 2015-04-03 | Cross-site scripting (XSS) vulnerability in help/rt/large_search.html in Citrix NetScaler before... |
| CVE-2015-2841 | 2015-04-03 | Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote... |
| CVE-2015-0612 | 2015-04-03 | The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity... |
| CVE-2015-0613 | 2015-04-03 | The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity... |
| CVE-2015-0614 | 2015-04-03 | The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity... |
| CVE-2015-0615 | 2015-04-03 | The call-handling implementation in Cisco Unity Connection 8.5 before 8.5(1)SU7,... |
| CVE-2015-0616 | 2015-04-03 | The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity... |
| CVE-2015-0688 | 2015-04-04 | Cisco IOS XE 3.10.2S on an ASR 1000 device with... |
| CVE-2015-2111 | 2015-04-04 | Unspecified vulnerability in HP Intelligent Provisioning 1.40 through 1.60 on... |
| CVE-2015-0529 | 2015-04-05 | EMC PowerPath Virtual Appliance (aka vApp) before 2.0 has default... |
| CVE-2015-0932 | 2015-04-05 | The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate... |
| CVE-2015-0950 | 2015-04-05 | Cross-site scripting (XSS) vulnerability in admin.php in X-Cart 5.1.6 through... |
| CVE-2015-0951 | 2015-04-05 | X-Cart before 5.1.11 allows remote authenticated users to read or... |
| CVE-2015-0777 | 2015-04-05 | drivers/xen/usbback/usbback.c in linux-2.6.18-xen-3.4.0 (aka the Xen 3.4.x support patches for... |
| CVE-2015-1465 | 2015-04-05 | The IPv4 implementation in the Linux kernel before 3.18.8 does... |
| CVE-2014-6221 | 2015-04-06 | The MSCAPI/MSCNG interface implementation in GSKit in IBM Rational ClearCase... |
| CVE-2015-0117 | 2015-04-06 | The LDAP Server in IBM Domino 8.5.x before 8.5.3 FP6... |
| CVE-2015-0119 | 2015-04-06 | FastBack Mount in IBM Tivoli Storage Manager FastBack 6.1.x before... |
| CVE-2015-0134 | 2015-04-06 | Buffer overflow in the SSLv2 implementation in IBM Domino 8.5.x... |
| CVE-2015-0179 | 2015-04-06 | Notes System Diagnostic (NSD) in IBM Domino 8.5.x before 8.5.3... |
| CVE-2015-1890 | 2015-04-06 | /usr/lpp/mmfs/bin/gpfs.snap in IBM General Parallel File System (GPFS) 4.1 before... |
| CVE-2015-1893 | 2015-04-06 | The IBM WebSphere DataPower XC10 appliance 2.1 before 2.1.0.3 allows... |
| CVE-2015-0877 | 2015-04-06 | Unrestricted file upload vulnerability in app/lib/mlf.pl in C-BOARD Moyuku before... |
| CVE-2015-1601 | 2015-04-06 | Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before... |
| CVE-2015-1602 | 2015-04-06 | Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before... |
| CVE-2015-1843 | 2015-04-06 | The Red Hat docker package before 1.5.0-28, when using the... |
| CVE-2015-2165 | 2015-04-06 | Multiple cross-site scripting (XSS) vulnerabilities in the Report Viewer in... |
| CVE-2015-2166 | 2015-04-06 | Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt... |
| CVE-2015-2167 | 2015-04-06 | Open redirect vulnerability in the 3PI Manager in Ericsson Drutt... |
| CVE-2015-2824 | 2015-04-06 | Multiple SQL injection vulnerabilities in the Simple Ads Manager plugin... |
| CVE-2015-0690 | 2015-04-07 | Cross-site scripting (XSS) vulnerability in the HTML help system on... |
| CVE-2015-0876 | 2015-04-07 | Multiple cross-site scripting (XSS) vulnerabilities in the print_language_selectbox function in... |
| CVE-2015-0905 | 2015-04-08 | Cross-site request forgery (CSRF) vulnerability in bBlog allows remote attackers... |
| CVE-2015-1773 | 2015-04-08 | Cross-site scripting (XSS) vulnerability in asdoc/templates/index.html in Apache Flex before... |
| CVE-2015-2827 | 2015-04-08 | Cross-site scripting (XSS) vulnerability in CA Spectrum 9.2.x and 9.3.x... |
| CVE-2015-2828 | 2015-04-08 | CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not... |
| CVE-2015-0798 | 2015-04-08 | The Reader mode feature in Mozilla Firefox before 37.0.1 on... |