CVE-2015-1943

HIGH Year: 2015
CVSS v2 Score
7.8
High
Weakness Type
CWE-399
View all →

Vulnerability Description

IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.x through 7.0.0.2 CF29, 8.0.x before 8.0.0.1 CF17, and 8.5.0 before CF06 allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted request.

Related Vulnerabilities

CVE-2015-8104

CRITICAL
CVSS:10.0(Critical)

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptio...

CWE-3992015

CVE-2016-10390

CRITICAL
CVSS:9.8(Critical)

In all Qualcomm products with Android releases from CAF using the Linux kernel, when downloading a file, an excessive amount of memory may be consumed.

CWE-3992016

CVE-2016-1363

CRITICAL
CVSS:9.8(Critical)

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers t...

CWE-3992016

CVE-2018-0310

CRITICAL
CVSS:9.8(Critical)

A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to obtain sensitive information from memory or ca...

CWE-3992018

CVE-2015-1832

CRITICAL
CVSS:9.1(Critical)

XML external entity (XXE) vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary file...

CWE-3992015

CVE-2016-2208

CRITICAL
CVSS:9.1(Critical)

The kernel component in Symantec Anti-Virus Engine (AVE) 20151.1 before 20151.1.1.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation and system c...

CWE-3992016