CVSS: 10.0EPSS: 53%CPEs: 22EXPL: 1CVE-2015-3113 – Adobe Flash Player Heap-Based Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2015-3113
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015. Desbordamiento de buffer basado en memoria dinámica en Adobe Flash Player anterior a 13.0.0.296 y 14.x hasta 18.x anterior a 18.0.0.194 en Windows y OS X y anterior a 11.2.202.468 en Linux permite a atacantes remotos ejecutar código arbitrario a través de vectores no especificados, tal y como fue utilizado activamente en junio del 2015. Heap-based buffer overflow vulnerability in Adobe Flash Player allows remote attackers to execute code. • https://www.exploit-db.com/exploits/37536 http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00020.html http://lists.opensuse.org/opensuse-security-announce/2015-06/msg00025.html http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00002.html http://marc.info/?l=bugtraq&m=144050155601375&w=2 http://rhn.redhat.com/errata/RHSA-2015-1184.html http://www.securityfocus.com/bid/75371 http://www.securitytracker.com/id/1032696 https://bugzilla.redhat.com/show_bug. • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2014-2643
https://notcve.org/view.php?id=CVE-2014-2643
Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote authenticated users to gain privileges via unknown vectors. Vulnerabilidad no especificada en HP Systems Insight Manager (SIM) anterior a 7.4 permite a usuarios remotos autenticados ganar privilegios a través de vectores desconocidos. • http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 •
CVSS: 4.3EPSS: 5%CPEs: 4EXPL: 0CVE-2014-2644
https://notcve.org/view.php?id=CVE-2014-2644
Cross-site scripting (XSS) vulnerability in HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. Vulnerabilidad de XSS en HP Systems Insight Manager (SIM) anterior a 7.4 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores desconocidos. • http://www.securityfocus.com/bid/70223 http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.3EPSS: 1%CPEs: 4EXPL: 0CVE-2014-2645
https://notcve.org/view.php?id=CVE-2014-2645
HP Systems Insight Manager (SIM) before 7.4 allows remote attackers to conduct clickjacking attacks via unknown vectors. HP Systems Insight Manager (SIM) anterior a 7.4 permite a atacantes remotos realizar ataques de clickjacking a través de vectores desconocidos. • http://www.securitytracker.com/id/1030970 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04468121 • CWE-20: Improper Input Validation •
CVSS: 3.2EPSS: 0%CPEs: 11EXPL: 0CVE-2012-1995
https://notcve.org/view.php?id=CVE-2012-1995
Unspecified vulnerability in HP Systems Insight Manager (SIM) before 7.0 allows local users to obtain sensitive information or modify data via unknown vectors. Vulnerabilidad sin especificar en HP Systems Insight Manager (SIM) anterior a v7.0 permite a usuarios locales obtener información sensible o modificar datos a través de vectores desconocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03298151 •