Shodan
Vulnerabilities
Vulnerable Software
Fedoraproject:  >> Fedora  >> 22  Security Vulnerabilities
CVE-2015-5704
scripts/licensecheck.pl in devscripts before 2.15.7 allows local users to execute arbitrary shell commands.
CVSS Score
7.8
EPSS Score
0.001
Published
2017-09-25
CVE-2015-5607
Cross-site request forgery in the REST API in IPython 2 and 3.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-09-20
CVE-2015-1854
389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-09-19
CVE-2015-3420
The ssl-proxy-openssl.c function in Dovecot before 2.2.17, when SSLv3 is disabled, allow remote attackers to cause a denial of service (login process crash) via vectors related to handshake failures.
CVSS Score
5.9
EPSS Score
0.092
Published
2017-09-19
CVE-2015-5705
Argument injection vulnerability in devscripts before 2.15.7 allows remote attackers to write to arbitrary files via a crafted symlink and crafted filename.
CVSS Score
7.5
EPSS Score
0.008
Published
2017-09-06
CVE-2015-5146
ntpd in ntp before 4.2.8p3 with remote configuration enabled allows remote authenticated users with knowledge of the configuration password and access to a computer entrusted to perform remote configuration to cause a denial of service (service crash) via a NULL byte in a crafted configuration directive packet.
CVSS Score
5.3
EPSS Score
0.019
Published
2017-08-24
CVE-2015-1783
The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access and application crash) via unspecified vectors.
CVSS Score
7.5
EPSS Score
0.011
Published
2017-08-11
CVE-2015-6816
ganglia-web before 3.7.1 allows remote attackers to bypass authentication.
CVSS Score
9.8
EPSS Score
0.021
Published
2017-08-09
CVE-2015-5194
The log_config_command function in ntp_parser.y in ntpd in NTP before 4.2.7p42 allows remote attackers to cause a denial of service (ntpd crash) via crafted logconfig commands.
CVSS Score
7.5
EPSS Score
0.118
Published
2017-07-21
CVE-2015-5195
ntp_openssl.m4 in ntpd in NTP before 4.2.7p112 allows remote attackers to cause a denial of service (segmentation fault) via a crafted statistics or filegen configuration command that is not enabled during compilation.
CVSS Score
7.5
EPSS Score
0.104
Published
2017-07-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved