Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
canonical ubuntu linux 15.10 vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2016-1572
mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated by /proc/$pid.
Ecryptfs Ecryptfs-utils
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 15.10
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Fedoraproject Fedora 22
Fedoraproject Fedora 23
409
VMScore
CVE-2015-1342
LXCFS prior to 0.12 does not properly enforce directory escapes, which might allow local users to gain privileges by (1) querying or (2) updating a cgroup.
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 15.10
Canonical Lxcfs
409
VMScore
CVE-2015-8222
The lxd-unix.socket systemd unit file in the Ubuntu lxd package prior to 0.20-0ubuntu4.1 uses world-readable permissions for /var/lib/lxd/unix.socket, which allows local users to gain privileges via unspecified vectors.
Canonical Ubuntu Linux 15.10
384
VMScore
CVE-2016-2825
Mozilla Firefox prior to 47.0 allows remote malicious users to bypass the Same Origin Policy and modify the location.host property via an invalid data: URL.
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
384
VMScore
CVE-2016-4008
The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 prior to 4.8, when used without the ASN1_DECODE_FLAG_STRICT_DER flag, allows remote malicious users to cause a denial of service (infinite recursion) via a crafted certificate.
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 13.2
Gnu Libtasn1
Fedoraproject Fedora 22
Fedoraproject Fedora 24
Fedoraproject Fedora 23
383
VMScore
CVE-2016-3615
Unspecified vulnerability in Oracle MySQL 5.5.49 and previous versions, 5.6.30 and previous versions, and 5.7.12 and previous versions and MariaDB prior to 5.5.50, 10.0.x prior to 10.0.26, and 10.1.x prior to 10.1.15 allows remote authenticated users to affect availability via ve...
Oracle Linux 7
Mariadb Mariadb
Oracle Mysql
Ibm Powerkvm 3.1
Ibm Powerkvm 2.1
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
383
VMScore
CVE-2012-6702
Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent malicious users to defeat cryptographic protection mechanisms via vectors involving use of the srand function.
Libexpat Project Libexpat
Google Android 5.0.2
Google Android 6.0.1
Google Android 6.0
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Google Android 4.4.4
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Google Android 5.1.1
383
VMScore
CVE-2016-2832
Mozilla Firefox prior to 47.0 allows remote malicious users to discover the list of disabled plugins via a fingerprinting attack involving Cascading Style Sheets (CSS) pseudo-classes.
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 15.10
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Leap 42.1
383
VMScore
CVE-2016-2829
Mozilla Firefox prior to 47.0 allows remote malicious users to spoof permission notifications via a crafted web site that rapidly triggers permission requests, as demonstrated by the microphone permission or the geolocation permission.
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Mozilla Firefox
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
383
VMScore
CVE-2016-2833
Mozilla Firefox prior to 47.0 ignores Content Security Policy (CSP) directives for cross-domain Java applets, which makes it easier for remote malicious users to conduct cross-site scripting (XSS) attacks via a crafted applet.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »