How severe is CVE-2015-10129?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.9 out of 10.

What type of vulnerability is CVE-2015-10129?

This is classified as CWE-697, which is a common weakness in software security.

CVE-2015-10129

MEDIUM Year: 2015

CVSS v3 Score

5.9

Medium

CVSS v2 Score

2.6

Low

Weakness Type

CWE-697

View all →

Vulnerability Description

A vulnerability was found in planet-freo up to 20150116 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/inc/auth.inc.php. The manipulation of the argument auth leads to incorrect comparison. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The name of the patch is 6ad38c58a45642eb8c7844e2f272ef199f59550d. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-252716.

CVE-2024-9681

MEDIUM

CVSS:5.9(Medium)

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applicatio...

CWE-6972024

CVE-2021-0295

MEDIUM

CVSS:6.1(Medium)

A vulnerability in the Distance Vector Multicast Routing Protocol (DVMRP) of Juniper Networks Junos OS on the QFX10K Series switches allows an attacker to trigger a packet forwarding loop, leading to ...

CWE-6972021

CVE-2021-1904

MEDIUM

CVSS:5.5(Medium)

Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ...

CWE-6972021

CVE-2021-20219

MEDIUM

CVSS:5.5(Medium)

A denial of service vulnerability was found in n_tty_receive_char_special in drivers/tty/n_tty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop (d...

CWE-6972021

CVE-2021-40562

MEDIUM

CVSS:5.5(Medium)

A Segmentation fault caused by a floating point exception exists in Gpac through 1.0.1 using mp4box via the naludmx_enqueue_or_dispatch function in reframe_nalu.c, which causes a denial of service.

CWE-6972021

CVE-2021-47370

MEDIUM

CVSS:5.5(Medium)

In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure tx skbs always have the MPTCP ext Due to signed/unsigned comparison, the expression: info->size_goal - skb->len > 0 ev...

CWE-6972021

CVE-2015-10129

Vulnerability Description

Related Vulnerabilities

CVE-2024-9681

CVE-2021-0295

CVE-2021-1904

CVE-2021-20219

CVE-2021-40562

CVE-2021-47370