Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0
Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9
Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9
High Vulnerabilities
Primary
Vendor -- Product
chiyutw -- bf-660c
chiyutw -- bf-630
Published
CVE-20157.5 2871
CERT-VN
Description
7.5 CVE-20155618
CERT-VN
Primary
Vendor -- Product
Description
Published
cisco -- ios_xe
2015-0731
CVE-20157.8 4291
CISCO
dell -- bios
CVE-20152890
7.2
CONFIRM
CERT-VN
7.2 CVE-20153959
MISC
garrettcom -- magnum_10k_firmware
Primary
Vendor -- Product
Description
has a hardcoded serial-console
password for a privileged
account, which might allow
physically proximate attackers to
obtain access by establishing a
console session to a nonstandard
installation on which this account
is enabled, and leveraging
knowledge of this password.
gehealthcare -- entegra_p&r_firmware
gehealthcare -- millennium_mg
Published
CONFIRM
Primary
Vendor -- Product
Description
service user, (3) admin.genie for
the admin user, (4) reboot for the
reboot user, and (5) shutdown for
the shutdwon user, which has
unspecified impact and attack
vectors.
Published
CONFIRM
CONFIRM
gehealthcare -- millennium_mg_firmware
gehealthcare -- discovery_vh
CVE-20022446
2015-08MISC
10.0
04
MISC
CONFIRM
CONFIRM
gehealthcare -- centricity_image_vault_firmware GE Healthcare Centricity Image 2015-08- 10.0 CVE-2004Vault 3.x has a password of (1)
04
2777
gemnet for the administrator
MISC
account, (2) webadmin for the
MISC
webadmin administrator account
CONFIRM
of the ASACA DVD library, (3) an
empty value for the gemsservice
Primary
Vendor -- Product
Description
Published
gehealthcare -- infinia_ii_firmware
gehealthcare -- centricity_dms_firmware
Primary
Vendor -- Product
Description
Published
gehealthcare -- discovery_530c_firmware
gehealthcare -- optima_ct520_firmware
gehealthcare -- optima_mr360_firmware
The HIPAA configuration interface 2015-08- 10.0 CVE-2010in GE Healthcare Optima MR360
04
5307
has a password of (1) operator for
MISC
the root account, (2) adw2.0 for
MISC
the admin account, and (3)
CONFIRM
adw2.0 for the sdc account, which
has unspecified impact and attack
vectors. NOTE: it is not clear
whether these passwords are
default, hardcoded, or dependent
on another system or product that
Primary
Vendor -- Product
Description
Published
gehealthcare -- optima_mr360_firmware
gehealthcare -- cadstream_server_firmware
GE Healthcare CADStream
CVE-2010Server has a default password of
5309
2015-08confirma for the admin user,
10.0 MISC
04
which has unspecified impact and
MISC
attack vectors.
CONFIRM
gehealthcare -- revolution_xq/i
Primary
Vendor -- Product
Description
Published
gehealthcare -- centricity_analytics_server
GE Healthcare Centricity
Analytics Server 1.1 has a default
password of (1) V0yag3r for the
SQL Server sa user, (2) G3car3s
CVE-2011for the analyst user, (3) G3car3s
5322
2015-08for the ccg user, (4) V0yag3r for
10.0 MISC
04
the viewer user, and (5) geservice
MISC
for the geservice user in the
CONFIRM
Webmin interface, which has
unspecified impact and attack
vectors.
gehealthcare -- centricity_pacs-iw
gehealthcare -- centricity_pacs-iw
The TeraRecon server, as used in 2015-08- 10.0 CVE-2011GE Healthcare Centricity PACS04
5324
IW 3.7.3.7, 3.7.3.8, and possibly
MISC
other versions, has a password of
MISC
(1) shared for the shared user
CONFIRM
and (2) scan for the scan user,
CONFIRM
which has unspecified impact and
Primary
Vendor -- Product
Description
Published
gehealthcare -- precision_mpi
gehealthcare -- centricity_pacs_server
gehealthcare -- centricity_pacs_server
Primary
Vendor -- Product
Description
Published
gehealthcare -- centricity_pacs_workstation
gehealthcare -- discovery_nm_750b
GE Healthcare Discovery NM
750b has a password of 2getin for
the insite account for (1) Telnet
CVE-2013and (2) FTP, which has
7404
unspecified impact and attack
2015-0810.0 MISC
vectors. NOTE: it is not clear
04
MISC
whether this password is default,
CONFIRM
hardcoded, or dependent on
another system or product that
requires a fixed value.
gehealthcare -- centricity_dms
CVE-20126695
2015-08MISC
10.0
04
MISC
CONFIRM
CONFIRM
The Ad Hoc Reporting feature in 2015-08- 10.0 CVE-2013GE Healthcare Centricity DMS
04
7405
4.2 has a password of Never!
MISC
Mind for the Administrator user,
MISC
which has unspecified impact and
CONFIRM
Primary
Vendor -- Product
Description
Published
gehealthcare -- centricity_pacs_workstation
gehealthcare -- discovery_xr656
gehealthcare -- precision_thunis-800+
GE Healthcare Precision
THUNIS-800+ has a default
password of (1) 1973 for the
Primary
Vendor -- Product
Description
Published
MISC
CONFIRM
ibm -- websphere_mq_light
CVE-20157.8 1955
CONFIRM
Primary
Vendor -- Product
Published
ibm -- websphere_mq_light
CVE-20157.8 1956
CONFIRM
ibm -- websphere_mq_light
CVE-20157.8 1958
CONFIRM
ibm -- websphere_mq_light
CVE-20157.8 1987
CONFIRM
ibm -- tivoli_storage_manager_fastback
Description
Primary
Vendor -- Product
Description
Published
ibm -- tivoli_storage_manager_fastback
ibm -- tivoli_storage_manager_fastback
ibm -- tivoli_storage_manager_fastback
ibm -- tivoli_storage_manager_fastback
Stack-based buffer overflow in the 2015-08- 10.0 CVE-2015server in IBM Tivoli Storage
03
4935
Manager FastBack 6.1 before
CONFIRM
Primary
Vendor -- Product
Published
CVE-20155600
FULLDISC
8.5
MLIST
CONFIRM
CONFIRM
Description
6.1.12.1 allows remote attackers
to execute arbitrary code via a
crafted packet, a different
vulnerability than CVE-20154931, CVE-2015-4932, CVE2015-4933, and CVE-2015-4934.
openbsd -- openssh
symantec -- endpoint_protection_manager
2015-0731
7.5 CVE-20151486
CONFIRM
BID
Primary
Vendor -- Product
Published
symantec -- endpoint_protection_manager
CVE-20151489
8.5
CONFIRM
BID
symantec -- endpoint_protection_manager
CVE-20151492
8.5
CONFIRM
BID
timedoctor -- timedoctor
CVE-20159.3 4674
FULLDISC
Description
session.
Back to top
Medium Vulnerabilities
Primary
Vendor -- Product
Published
chiyutw -- bf-630
Cross-site scripting
(XSS) vulnerability
on Chiyu BF-630,
BF-630W, and BF660C fingerprint
2015-07access-control
31
devices allows
remote attackers to
inject arbitrary web
script or HTML via a
SCRIPT element.
CVE-20154.3 2870
CERT-VN
cisco -- anyconnect_secure_mobility_client
Directory traversal
vulnerability in
Cisco AnyConnect
Secure Mobility
Client 4.0(2049)
allows remote head- 2015-07end systems to
31
write to arbitrary
files via a crafted
configuration
attribute, aka Bug
ID CSCut93920.
CVE-20156.4 4289
CISCO
cisco -prime_central_for_hosted_collaboration_solution_assurance
Description
4.3 CVE-20154292
CISCO
Primary
Vendor -- Product
Published
Cross-site scripting
(XSS) vulnerability
in Cisco IM and
Presence Service
before 10.5 MR1
allows remote
attackers to inject
cisco -arbitrary web script 2015-07unified_communications_manager_im_and_presence_service or HTML by
31
constructing a
crafted URL that
leverages
incomplete filtering
of HTML elements,
aka Bug ID
CSCut41766.
CVE-20154.3 4294
CISCO
Description
Solution (PC4HCS)
10.6(2) allows
remote attackers to
inject arbitrary web
script or HTML via
an unspecified
value, aka Bug ID
CSCuv45818.
cisco -- unified_communications_manager
The Prime
2015-07Collaboration
31
Deployment
component in Cisco
Unified
Communications
4.0 CVE-20154295
CISCO
Primary
Vendor -- Product
Published
Multiple cross-site
scripting (XSS)
vulnerabilities in the
web-server
component in MNS
before 4.5.6 on
Belden GarrettCom 2015-08Magnum 6K and
03
Magnum 10K
switches allow
remote attackers to
inject arbitrary web
script or HTML via
unspecified vectors.
CVE-20153942
4.3
MISC
CONFIRM
Description
Manager
10.5(3.10000.9)
allows remote
authenticated users
to discover root
credentials via a
direct request to an
unspecified URL,
aka Bug ID
CSCuv21819.
garrettcom -- magnum_10k_firmware
garrettcom -- magnum_10k_firmware
The firmware in
MNS before 4.5.6
on Belden
GarrettCom
Magnum 6K and
Magnum 10K
2015-0803
4.3 CVE-20153960
MISC
CONFIRM
Primary
Vendor -- Product
Published
Unspecified
vulnerability in IBM
WebSphere
eXtreme Scale 8.6
2015-08through 8.6.0.8
03
allows remote
attackers to cause a
denial of service via
unknown vectors.
CVE-20154936
5.0
CONFIRM
AIXAPAR
The ping_unhash
function in
net/ipv4/ping.c in
the Linux kernel
before 4.0.3 does
4.9 CVE-20153636
CONFIRM
CONFIRM
MLIST
Description
switches uses
hardcoded RSA
private keys and
certificates across
different customers'
installations, which
makes it easier for
remote attackers to
defeat cryptographic
protection
mechanisms for
HTTPS sessions by
leveraging
knowledge of a
private key from
another installation.
ibm -- websphere_extreme_scale
linux -- linux_kernel
2015-0805
Primary
Vendor -- Product
Description
Published
not initialize a
certain list data
structure during an
unhash operation,
which allows local
users to gain
privileges or cause
a denial of service
(use-after-free and
system crash) by
leveraging the
ability to make a
SOCK_DGRAM
socket system call
for the
IPPROTO_ICMP or
IPPROTO_ICMPV6
protocol, and then
making a connect
system call after a
disconnect.
linux -- linux_kernel
CONFIRM
CONFIRM
4.7 CVE-20154167
CONFIRM
CONFIRM
MLIST
CONFIRM
CONFIRM
Primary
Vendor -- Product
Published
The
x11_open_helper
function in
channels.c in ssh in
OpenSSH before
6.9, when
ForwardX11Trusted
mode is not used,
lacks a check of the
2015-08refusal deadline for
02
X connections,
which makes it
easier for remote
attackers to bypass
intended access
restrictions via a
connection outside
of the permitted
time window.
CVE-20155352
4.3 CONFIRM
CONFIRM
MLIST
Description
service (incorrect
data representation
or integer overflow,
and OOPS) via a
crafted UDF
filesystem.
openbsd -- openssh
schneider-electric -- wonderware_system_platform_2014
Untrusted search
2015-08path vulnerability in
03
Schneider Electric
Wonderware
System Platform
6.9 CVE-20153940
MISC
CONFIRM
Primary
Vendor -- Product
Published
CVE-20155537
4.3
MISC
CONFIRM
Description
before 2014 R2
Patch 01 allows
local users to gain
privileges via a
Trojan horse DLL in
an unspecified
directory.
siemens -- ruggedcom_rugged_operating_system
symantec -- endpoint_protection_manager
The management
2015-07console in
31
Symantec Endpoint
Protection Manager
(SEPM) 12.1 before
12.1-RU6-MP1
allows remote
5.5 CVE-20151487
CONFIRM
BID
Primary
Vendor -- Product
Published
An unspecified
action handler in the
management
console in
Symantec Endpoint
Protection Manager
2015-07(SEPM) 12.1 before
31
12.1-RU6-MP1
allows remote
authenticated users
to read arbitrary
files via unknown
vectors.
CVE-20151488
4.0
CONFIRM
BID
Description
authenticated users
to write to arbitrary
files, and
consequently obtain
administrator
privileges, via a
crafted filename.
symantec -- endpoint_protection_manager
symantec -- endpoint_protection_manager
5.5 CVE-20151490
CONFIRM
BID
Primary
Vendor -- Product
Published
SQL injection
vulnerability in the
management
console in
Symantec Endpoint
Protection Manager
2015-07(SEPM) 12.1 before
31
12.1-RU6-MP1
allows remote
authenticated users
to execute arbitrary
SQL commands via
unspecified vectors.
CVE-20151491
6.0
CONFIRM
BID
Description
to read arbitrary
files via a relative
pathname in a client
installation package.
symantec -- endpoint_protection_manager
windriver -- vxworks
Wind River
2015-08VxWorks before
03
5.5.1, 6.5.x through
6.7.x before 6.7.1.1,
6.8.x before 6.8.3,
6.9.x before 6.9.4.4,
and 7.x before 7
ipnet_coreip 1.2.2.0,
as used on
Schneider Electric
SAGE RTU devices
before J2 and other
devices, does not
5.8 CVE-20153963
MISC
CONFIRM
Primary
Vendor -- Product
Published
Multiple cross-site
scripting (XSS)
vulnerabilities in
WordPress before
4.1.2, when MySQL
is used without strict
mode, allow remote
attackers to inject
arbitrary web script 2015-08or HTML via a (1)
04
four-byte UTF-8
character or (2)
invalid character
that reaches the
database layer, as
demonstrated by a
crafted character in
a comment.
CVE-20153438
4.3 CONFIRM
CONFIRM
MISC
4.3 CVE-20153439
CONFIRM
Description
properly generate
TCP initial
sequence number
(ISN) values, which
makes it easier for
remote attackers to
spoof TCP sessions
by predicting an ISN
value.
wordpress -- wordpress
wordpress -- wordpress
Primary
Vendor -- Product
Description
Published
(formerly
Moxiecode)
plupload.flash.swf
shim 2.1.2 in
Plupload, as used in
WordPress 3.9.x,
4.0.x, and 4.1.x
before 4.1.2 and
other products,
allows remote
attackers to execute
same-origin
JavaScript functions
via the target
parameter, as
demonstrated by
executing a certain
click function,
related to
_init.asand
_fireEvent.as.
wordpress -- wordpress
CONFIRM
CONFIRM
MISC
4.3 CVE-20153440
CONFIRM
MISC
CONFIRM
FULLDISC
CONFIRM
Primary
Vendor -- Product
Published
WordPress before
4.2.3 does not
properly verify the
edit_posts
capability, which
allows remote
authenticated users
to bypass intended 2015-08access restrictions
03
and create drafts by
leveraging the
Subscriber role, as
demonstrated by a
post-quickdraft-save
action to wpadmin/post.php.
CVE-20155623
CONFIRM
4.0
CONFIRM
CONFIRM
MLIST
Description
comment that is
improperly stored
because of
limitations on the
MySQL TEXT data
type.
wordpress -- wordpress
Back to top
Low Vulnerabilities
Primary
Vendor -- Product
garrettcom -- magnum_10k_firmware
Description
The web-server component in
Published
2015-08-
3.5 CVE-2015-
Primary
Vendor -- Product
Description
MNS before 4.5.6 on Belden
GarrettCom Magnum 6K and
Magnum 10K switches allows
remote authenticated users to
cause a denial of service
(memory corruption and reboot)
via a crafted URL.
Published
03
3961
MISC
CONFIRM
CVE-20151904
3.5
CONFIRM
AIXAPAR
CVE-20151970
2.1
CONFIRM
AIXAPAR
indusoft -- web_studio
1.7 CVE-2015-
ibm -- business_process_manager
Primary
Vendor -- Product
Description
Studio before 7.1.3.5 Patch 5
and Wonderware InTouch
Machine Edition through 7.1
SP3 Patch 4 use cleartext for
project-window password
storage, which allows local users
to obtain sensitive information by
reading a file.
Published
31
1009
MISC
MISC
CONFIRM
siemens -- simatic_wincc_sm@rtclient
CVE-20155084
2.1
MISC
CONFIRM
wordpress -- wordpress
CVE-20155622
CONFIRM
3.5
CONFIRM
CONFIRM
MLIST
This product is provided subject to this Notification and this Privacy & Use policy.
2015-0803