CVE-2015-8631
- EPSS 4.64%
- Veröffentlicht 13.02.2016 02:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple memory leaks in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (memory consumption) via a request specifying a NULL pr...
CVE-2015-8629
- EPSS 3.66%
- Veröffentlicht 13.02.2016 02:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 does not verify whether '\0' characters exist as expected, which allows remote authenticated users to obtain sensit...
CVE-2015-1779
- EPSS 7.39%
- Veröffentlicht 12.01.2016 19:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service (memory and CPU consumption) via a large (1) websocket payload or (2) HTTP headers section.
- EPSS 7.73%
- Veröffentlicht 08.01.2016 21:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU, when a guest NIC has a larger MTU, allows remote attackers to cause a denial of service (guest OS crash) or execute arbitrary code via a large packet.
CVE-2015-3276
- EPSS 5.33%
- Veröffentlicht 07.12.2015 20:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be used and allow remote attackers to have unspecified...
CVE-2015-8391
- EPSS 6.4%
- Veröffentlicht 02.12.2015 01:59:15
- Zuletzt bearbeitet 06.05.2026 22:30:45
The pcre_compile function in pcre_compile.c in PCRE before 8.38 mishandles certain [: nesting, which allows remote attackers to cause a denial of service (CPU consumption) or possibly have unspecified other impact via a crafted regular expression, as...
CVE-2015-8126
- EPSS 10.34%
- Veröffentlicht 13.11.2015 03:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple buffer overflows in the (1) png_set_PLTE and (2) png_get_PLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a den...
CVE-2015-4913
- EPSS 3.55%
- Veröffentlicht 22.10.2015 00:00:16
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier and 5.6.26 and earlier allows remote authenticated users to affect availability via vectors related to Server : DML, a different vulnerability than CVE-2015-4858.
- EPSS 13.35%
- Veröffentlicht 22.10.2015 00:00:03
- Zuletzt bearbeitet 22.04.2026 13:04:08
Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to Deployment.
CVE-2015-4879
- EPSS 4.17%
- Veröffentlicht 21.10.2015 23:59:42
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.44 and earlier, and 5.6.25 and earlier, allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to DML.