search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2015-11-13 2015-01-28 2018-08-27 VU#576313 6.4 Apache Commons Collections Java library insecurely deserializes data
2015-11-20 2015-11-20 2015-11-23 VU#419568 6.7 ARRIS cable modems generate passwords deterministically and contain XSS and CSRF vulnerabilities
2015-11-23 2015-11-23 2015-11-23 VU#428280 2.0 CSL DualCom GPRS CS2300-R alarm signalling boards contain multiple vulnerabilties
2015-11-24 2015-11-23 2015-12-01 VU#870761 6.5 Dell Foundation Services installs root certificate and private key (eDellRoot)
2015-11-24 2015-11-24 2015-12-01 VU#925497 6.4 Dell System Detect installs root certificate and private key (DSDTestProvider)
2015-11-25 2015-11-25 2016-09-06 VU#566724 3.5 Embedded devices use non-unique X.509 certificates and SSH host keys
2015-11-30 2015-11-30 2015-11-30 VU#792004 5.5 RSI Video Technologies Videofied security system Frontel software uses an insecure custom protocol
2015-12-01 2015-11-30 2015-12-09 VU#630239 4.9 Epiphany Cardio Server is vulnerable to SQL and LDAP injection
2015-12-04 2015-12-03 2017-03-22 VU#294607 6.7 Lenovo Solution Center LSCTaskService privilege escalation, directory traversal, and CSRF
2015-12-08 2015-12-08 2015-12-08 VU#439016 4.4 TaxiHail Android mobile app contains multiple vulnerabilties
2015-12-08 2015-12-08 2016-05-16 VU#377260 4.1 Up.time agent for Windows contains multiple vulnerabilities
2015-12-10 2015-12-10 2015-12-10 VU#763576 1.6 Amped Wireless R10000 router contains multiple vulnerabilities
2015-12-10 2015-12-10 2015-12-10 VU#167992 1.6 ReadyNet WRT300N-DD Wireless Router contains multiple vulnerabilities
2015-12-10 2015-12-10 2015-12-10 VU#330000 1.6 ZyXEL NBG-418N router uses default credentials and is vulnerable to cross-site request forgery
2015-12-10 2015-12-10 2016-01-25 VU#646008 1.1 Buffalo AirStation Extreme N600 Router WZR-600DHP2 uses insufficiently random values for DNS queries

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis