Search
14,631 CVEs · Low severity
CVEs (14,631, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 376–400 of 14,631 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↑ | Published | Description |
|---|---|---|---|---|---|
| CVE-2015-2830 | LOW | Patched | 1.9 | 2015-05-27 | arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the… |
| CVE-2015-1681 | LOW | 1.9 | 2015-05-13 | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow l… | |
| CVE-2015-1146 | LOW | Patched | 1.9 | 2015-04-10 | The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a cr… |
| CVE-2015-1145 | LOW | Patched | 1.9 | 2015-04-10 | The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a cr… |
| CVE-2015-1114 | LOW | Patched | 1.9 | 2015-04-10 | The Sandbox Profiles component in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to discover hardware identifiers via a crafted app. |
| CVE-2015-1113 | LOW | Patched | 1.9 | 2015-04-10 | The Sandbox Profiles component in Apple iOS before 8.3 allows attackers to read the (1) telephone number or (2) e-mail address of a recent contact via a crafted app. |
| CVE-2015-1107 | LOW | Patched | 1.9 | 2015-04-10 | The Lock Screen component in Apple iOS before 8.3 does not properly implement the erasure feature for incorrect passcode-authentication attempts, which makes it easier for … |
| CVE-2015-1097 | LOW | Patched | 1.9 | 2015-04-10 | IOMobileFramebuffer in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
| CVE-2015-1096 | LOW | Patched | 1.9 | 2015-04-10 | IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
| CVE-2015-1094 | LOW | Patched | 1.9 | 2015-04-10 | IOAcceleratorFamily in Apple iOS before 8.3 and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app. |
| CVE-2015-1085 | LOW | Patched | 1.9 | 2015-04-10 | AppleKeyStore in Apple iOS before 8.3 does not properly restrict a certain passcode-confirmation interface, which makes it easier for attackers to verify correct passcode g… |
| CVE-2014-8923 | LOW | Patched | 1.9 | 2015-03-25 | The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Ide… |
| CVE-2015-2152 | LOW | Patched | 1.9 | 2015-03-18 | Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local g… |
| CVE-2015-1420 | LOW | Patched | 1.9 | 2015-03-16 | Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read op… |
| CVE-2015-1064 | LOW | Patched | 1.9 | 2015-03-12 | Springboard in Apple iOS before 8.2 allows physically proximate attackers to bypass an intended activation requirement and read the home screen by leveraging an application… |
| CVE-2015-1197 | LOW | 1.9 | 2015-02-19 | cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive. | |
| CVE-2014-6195 | LOW | Patched | 1.9 | 2015-02-14 | The (1) Java GUI and (2) Web GUI components in the IBM Tivoli Storage Manager (TSM) Backup-Archive client 5.4 and 5.5 before 5.5.4.4 on AIX, Linux, and Solaris; 5.4.x and 5… |
| CVE-2015-0245 | LOW | Patched | 1.9 | 2015-02-13 | D-Bus 1.4.x through 1.6.x before 1.6.30, 1.8.x before 1.8.16, and 1.9.x before 1.9.10 does not validate the source of ActivationFailure signals, which allows local users to… |
| CVE-2015-0010 | LOW | 1.9 | 2015-02-11 | The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2,… | |
| CVE-2015-0430 | LOW | 1.9 | 2015-01-21 | Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows local users to affect confidentiality via vectors related to RPC Utility. | |
| CVE-2015-0413 | LOW | 1.9 | 2015-01-21 | Unspecified vulnerability in Oracle Java SE 7u72 and 8u25 allows local users to affect integrity via unknown vectors related to Serviceability. | |
| CVE-2014-5233 | LOW | Patched | 1.9 | 2015-01-14 | The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the crede… |
| CVE-2014-5232 | LOW | Patched | 1.9 | 2015-01-14 | The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the ap… |
| CVE-2015-0001 | LOW | 1.9 | 2015-01-13 | The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass t… | |
| CVE-2014-9415 | LOW | Patched | 1.9 | 2014-12-24 | Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES file. |