Search for vulnerabilities
Vulnerability details: VCID-5ynh-zkyv-aaas
Vulnerability ID VCID-5ynh-zkyv-aaas
Aliases CVE-2015-2331
Summary Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ZIP archive that contains many entries, leading to a heap-based buffer overflow.
Status Published
Exploitability 2.0
Weighted Severity 8.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-189 Numeric Errors
CWE-190 Integer Overflow or Wraparound
System Score Found at
generic_textual MODERATE http://marc.info/?l=bugtraq&m=143403519711434&w=2
generic_textual LOW http://marc.info/?l=bugtraq&m=144050155601375&w=2
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-2331.html
generic_textual Medium http://php.net/ChangeLog-5.php
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.28547 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4211 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.4271 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.94800 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.94800 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.94996 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.94996 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
epss 0.95076 https://api.first.org/data/v1/epss?cve=CVE-2015-2331
rhbs high https://bugzilla.redhat.com/show_bug.cgi?id=1204676
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2301
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2348
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3330
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2015-2331
generic_textual Medium http://www.openwall.com/lists/oss-security/2015/03/18/1
cvssv3.1 7.5 http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
generic_textual MODERATE http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
Reference id Reference type URL
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5
http://git.php.net/?p=php-src.git;a=commit;h=ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5
http://hg.nih.at/libzip/rev/9f11d54f692e
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html
http://lists.opensuse.org/opensuse-updates/2015-03/msg00083.html
http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.html
http://marc.info/?l=bugtraq&m=143403519711434&w=2
http://marc.info/?l=bugtraq&m=143748090628601&w=2
http://marc.info/?l=bugtraq&m=144050155601375&w=2
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-2331.html
http://php.net/ChangeLog-5.php
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-2331.json
https://api.first.org/data/v1/epss?cve=CVE-2015-2331
https://bugs.php.net/bug.php?id=69253
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2301
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2348
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3330
https://support.apple.com/HT205267
http://www.debian.org/security/2015/dsa-3198
http://www.mandriva.com/security/advisories?name=MDVSA-2015:079
http://www.openwall.com/lists/oss-security/2015/03/18/1
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securitytracker.com/id/1031985
1204676 https://bugzilla.redhat.com/show_bug.cgi?id=1204676
780713 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780713
cpe:2.3:a:nih:libzip:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:nih:libzip:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha6:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha6:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:rc1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:rc2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
CVE-2015-2331 https://nvd.nist.gov/vuln/detail/CVE-2015-2331
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2015-2331
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.96238
EPSS Score 0.28547
Published At May 1, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.