CVE-2015-1237
- EPSS 1.69%
- Veröffentlicht 19.04.2015 10:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the RenderFrameImpl::OnMessageReceived function in content/renderer/render_frame_impl.cc in Google Chrome before 42.0.2311.90 allows remote attackers to cause a denial of service or possibly have unspecified other impa...
CVE-2015-1236
- EPSS 1.51%
- Veröffentlicht 19.04.2015 10:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MediaElementAudioSourceNode::process function in modules/webaudio/MediaElementAudioSourceNode.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy...
- EPSS 1.65%
- Veröffentlicht 19.04.2015 10:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in the HTML parser in Blink, as used in Google Chrome before 42.0.2311.90, allows remote attackers to bypass the Same Origin Policy via a crafted HTML document with an IFRAME...
CVE-2015-1856
- EPSS 3.95%
- Veröffentlicht 17.04.2015 17:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
OpenStack Object Storage (Swift) before 2.3.0, when allow_version is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container.
CVE-2015-1852
- EPSS 2.59%
- Veröffentlicht 17.04.2015 17:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The s3_token middleware in OpenStack keystonemiddleware before 1.6.0 and python-keystoneclient before 1.4.0 disables certification verification when the "insecure" option is set in a paste configuration (paste.ini) file regardless of the value, which...
- EPSS 5.11%
- Veröffentlicht 16.04.2015 17:00:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.
- EPSS 5.25%
- Veröffentlicht 16.04.2015 17:00:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.
- EPSS 7.15%
- Veröffentlicht 16.04.2015 17:00:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.
CVE-2015-0505
- EPSS 5.05%
- Veröffentlicht 16.04.2015 16:59:54
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.
CVE-2015-0501
- EPSS 9.98%
- Veröffentlicht 16.04.2015 16:59:50
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Compiling.