CVE-2015-0499
- EPSS 4.76%
- Veröffentlicht 16.04.2015 16:59:48
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Federated.
- EPSS 4.51%
- Veröffentlicht 16.04.2015 16:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Security : Encryption.
- EPSS 5.42%
- Veröffentlicht 16.04.2015 16:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to InnoDB : DML.
CVE-2013-7439
- EPSS 4.28%
- Veröffentlicht 16.04.2015 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.
CVE-2015-2775
- EPSS 7.96%
- Veröffentlicht 13.04.2015 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name.
CVE-2015-0840
- EPSS 1.84%
- Veröffentlicht 13.04.2015 14:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
- EPSS 7.8%
- Veröffentlicht 10.04.2015 15:00:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Stack-based buffer overflow in asn1_der_decoding in libtasn1 before 4.4 allows remote attackers to have unspecified impact via unknown vectors.
CVE-2015-1317
- EPSS 2.98%
- Veröffentlicht 08.04.2015 18:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in Oxide before 1.5.6 and 1.6.x before 1.6.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code by deleting all WebContents while a RenderProcessHost instance still exists.
CVE-2015-1473
- EPSS 2.13%
- Veröffentlicht 08.04.2015 10:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during a risk-management decision for use of the alloca function, which might allow context-dependent attackers t...
CVE-2015-1472
- EPSS 4.69%
- Veröffentlicht 08.04.2015 10:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during memory allocation, which allows context-dependent attackers to cause a denial of service (buffer overflow)...