CVE-2015-0235

Exp

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."

Published: 2015-01-28 Last update: 2026-05-06 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2015-0235 is rated High Exploit Risk (94.9/100): CVSS Critical severity, with high exploitation likelihood (EPSS 94.86%, 100th percentile). 14 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +9.99% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2015-0235

EDB-ID Source Kind Published Link
36421 exploit_db edb 2015-03-18 Exploit-DB ↗
35951 exploit_db edb 2015-01-29 Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗
nvd_ref exploit_tag Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2015-0235

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 84.87% 94.86% +9.99%
2 2026-05-21 86.66% 84.87% -1.79%
3 2026-04-23 86.66%

Full EPSS history (48 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2015-0235

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
10.0 2.0 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:C)
Complete confidentiality impact.
Integrity impact (I:C)
Complete integrity impact.
Availability impact (A:C)
Complete availability impact.
 10.0 10.0 [email protected]

Weakness enumeration for CVE-2015-0235

OS Trackers for CVE-2015-0235

vendor priority summary link
debian high CVE-2015-0235 high priority: Debian including 1 source packages (glibc), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. https://security-tracker.debian.org/tracker/CVE-2015-0235
gentoo normal CVE-2015-0235: 1 GLSA(s) (201503-04), 1 atom(s) (sys-libs/glibc); latest impact normal. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2015-0235
redhat critical https://access.redhat.com/security/cve/CVE-2015-0235
suse critical CVE-2015-0235 severity critical: SUSE including 496 source package names (apache2-mod_php5-5.6.28-1.1, apache2-mod_php7-7.0.14-1.4, …), 581 product×package rows across 30 product lines (SUSE Liberty Linux 7, SUSE Linux Enterprise Desktop 11 SP3, … (30 product lines)): Fixed 545, Known Not Affected 36. https://www.suse.com/security/cve/CVE-2015-0235/
ubuntu high CVE-2015-0235 high priority: Ubuntu including 2 source packages (eglibc, glibc), 10 status rows across 5 suites (lucid, precise, trusty, upstream, utopic): DNE 4, not-affected 4, released 2. https://ubuntu.com/security/CVE-2015-0235

Affected software / configurations for CVE-2015-0235

Vendor Product Version Raw CPE
gnu glibc >= 2.0, < 2.18 cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*
oracle communications_application_session_controller < 3.7.1 cpe:2.3:a:oracle:communications_application_session_controller:*:*:*:*:*:*:*:*
oracle communications_eagle_application_processor 16.0 cpe:2.3:a:oracle:communications_eagle_application_processor:16.0:*:*:*:*:*:*:*
oracle communications_eagle_lnp_application_processor 10.0 cpe:2.3:a:oracle:communications_eagle_lnp_application_processor:10.0:*:*:*:*:*:*:*
oracle communications_lsms 13.1 cpe:2.3:a:oracle:communications_lsms:13.1:*:*:*:*:*:*:*
oracle communications_policy_management 9.7.3 cpe:2.3:a:oracle:communications_policy_management:9.7.3:*:*:*:*:*:*:*
oracle communications_policy_management 9.9.1 cpe:2.3:a:oracle:communications_policy_management:9.9.1:*:*:*:*:*:*:*
oracle communications_policy_management 10.4.1 cpe:2.3:a:oracle:communications_policy_management:10.4.1:*:*:*:*:*:*:*
oracle communications_policy_management 11.5 cpe:2.3:a:oracle:communications_policy_management:11.5:*:*:*:*:*:*:*
oracle communications_policy_management 12.1.1 cpe:2.3:a:oracle:communications_policy_management:12.1.1:*:*:*:*:*:*:*
oracle communications_session_border_controller < 7.2.0 cpe:2.3:a:oracle:communications_session_border_controller:*:*:*:*:*:*:*:*
oracle communications_session_border_controller 7.2.0 cpe:2.3:a:oracle:communications_session_border_controller:7.2.0:-:*:*:*:*:*:*
oracle communications_session_border_controller 8.0.0 cpe:2.3:a:oracle:communications_session_border_controller:8.0.0:*:*:*:*:*:*:*
oracle communications_user_data_repository >= 10.0.0, <= 10.0.1 cpe:2.3:a:oracle:communications_user_data_repository:*:*:*:*:*:*:*:*
oracle communications_webrtc_session_controller 7.0 cpe:2.3:a:oracle:communications_webrtc_session_controller:7.0:*:*:*:*:*:*:*
oracle communications_webrtc_session_controller 7.1 cpe:2.3:a:oracle:communications_webrtc_session_controller:7.1:*:*:*:*:*:*:*
oracle communications_webrtc_session_controller 7.2 cpe:2.3:a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*
oracle exalogic_infrastructure 1.0 cpe:2.3:a:oracle:exalogic_infrastructure:1.0:*:*:*:*:*:*:*
oracle exalogic_infrastructure 2.0 cpe:2.3:a:oracle:exalogic_infrastructure:2.0:*:*:*:*:*:*:*
oracle vm_virtualbox < 5.1.24 cpe:2.3:a:oracle:vm_virtualbox:*:*:*:*:*:*:*:*
oracle linux 5 cpe:2.3:o:oracle:linux:5:-:*:*:*:*:*:*
oracle linux 7 cpe:2.3:o:oracle:linux:7:0:*:*:*:*:*:*
debian debian_linux 7.0 cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
debian debian_linux 8.0 cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
redhat virtualization 6.0 cpe:2.3:a:redhat:virtualization:6.0:*:*:*:*:*:*:*
apple mac_os_x < 10.11.1 cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
ibm pureapplication_system 1.0.0.0 cpe:2.3:a:ibm:pureapplication_system:1.0.0.0:*:*:*:*:*:*:*
ibm pureapplication_system 1.1.0.0 cpe:2.3:a:ibm:pureapplication_system:1.1.0.0:*:*:*:*:*:*:*
ibm pureapplication_system 2.0.0.0 cpe:2.3:a:ibm:pureapplication_system:2.0.0.0:*:*:*:*:*:*:*
ibm security_access_manager_for_enterprise_single_sign-on 8.2 cpe:2.3:a:ibm:security_access_manager_for_enterprise_single_sign-on:8.2:*:*:*:*:*:*:*
php php >= 5.4.0, < 5.4.38 cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
php php >= 5.5.0, < 5.5.22 cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
php php >= 5.6.0, < 5.6.6 cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

References for CVE-2015-0235

URL Tags
http://blogs.sophos.com/2015/01/29/sophos-products-and-the-ghost-vulnerability-affecting-linux/ Third Party Advisory
http://linux.oracle.com/errata/ELSA-2015-0090.html Third Party Advisory
http://linux.oracle.com/errata/ELSA-2015-0092.html Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Jun/msg00002.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Oct/msg00005.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=142296726407499&w=2 Issue Tracking Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=142721102728110&w=2 Issue Tracking Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=142722450701342&w=2 Issue Tracking Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=142781412222323&w=2 Issue Tracking Mailing List Third Party Advisory
http://marc.info/?l=bugtraq&m=143145428124857&w=2 Issue Tracking Mailing List Third Party Advisory
http://packetstormsecurity.com/files/130171/Exim-ESMTP-GHOST-Denial-Of-Service.html Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/130768/EMC-Secure-Remote-Services-GHOST-SQL-Injection-Command-Injection.html Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/130974/Exim-GHOST-glibc-gethostbyname-Buffer-Overflow.html Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.html Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html Exploit Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html Exploit Third Party Advisory VDB Entry
http://rhn.redhat.com/errata/RHSA-2015-0126.html Third Party Advisory
http://seclists.org/fulldisclosure/2015/Jan/111 Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2019/Jun/18 Exploit Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2021/Sep/0 Exploit Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2022/Jun/36 Exploit Mailing List Third Party Advisory
http://seclists.org/oss-sec/2015/q1/269 Mailing List Third Party Advisory
http://seclists.org/oss-sec/2015/q1/274 Exploit Mailing List Third Party Advisory
http://secunia.com/advisories/62517 Not Applicable
http://secunia.com/advisories/62640 Not Applicable
http://secunia.com/advisories/62667 Not Applicable
http://secunia.com/advisories/62680 Not Applicable
http://secunia.com/advisories/62681 Not Applicable
http://secunia.com/advisories/62688 Not Applicable
http://secunia.com/advisories/62690 Not Applicable
http://secunia.com/advisories/62691 Not Applicable
http://secunia.com/advisories/62692 Not Applicable
http://secunia.com/advisories/62698 Not Applicable
http://secunia.com/advisories/62715 Not Applicable
http://secunia.com/advisories/62758 Not Applicable
http://secunia.com/advisories/62812 Not Applicable
http://secunia.com/advisories/62813 Not Applicable
http://secunia.com/advisories/62816 Not Applicable
http://secunia.com/advisories/62865 Not Applicable
http://secunia.com/advisories/62870 Not Applicable
http://secunia.com/advisories/62871 Not Applicable
http://secunia.com/advisories/62879 Not Applicable
http://secunia.com/advisories/62883 Not Applicable
http://support.apple.com/kb/HT204942 Third Party Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21695695 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21695774 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21695835 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21695860 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696131 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696243 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696526 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696600 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696602 Third Party Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21696618 Third Party Advisory
http://www.debian.org/security/2015/dsa-3142 Third Party Advisory
http://www.idirect.net/Partners/~/media/Files/CVE/iDirect-Posted-Common-Vulnerabilities-and-Exposures.pdf Broken Link URL Repurposed
http://www.mandriva.com/security/advisories?name=MDVSA-2015:039 Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/05/04/7 Exploit Mailing List
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html Patch Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html Patch Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html Patch Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html Patch Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html Patch Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html Third Party Advisory
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html Third Party Advisory
http://www.securityfocus.com/archive/1/534845/100/0/threaded Exploit Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/72325 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/91787 Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032909 Third Party Advisory VDB Entry
http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0 Broken Link Permissions Required
https://bto.bluecoat.com/security-advisory/sa90 Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-994726.pdf Third Party Advisory
https://community.qualys.com/blogs/laws-of-vulnerabilities/2015/01/27/the-ghost-vulnerability Third Party Advisory
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04874668 Third Party Advisory
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes Third Party Advisory
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10671 Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10100 Third Party Advisory
https://seclists.org/bugtraq/2019/Jun/14 Exploit Mailing List Third Party Advisory
https://security.gentoo.org/glsa/201503-04 Third Party Advisory
https://security.netapp.com/advisory/ntap-20150127-0001/ Third Party Advisory
https://support.apple.com/HT205267 Third Party Advisory
https://support.apple.com/HT205375 Third Party Advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/1053-security-advisory-9 Third Party Advisory
https://www.f-secure.com/en/web/labs_global/fsc-2015-1 Third Party Advisory
https://www.qualys.com/research/security-advisories/GHOST-CVE-2015-0235.txt Third Party Advisory
https://www.sophos.com/en-us/support/knowledgebase/121879.aspx Third Party Advisory
cvelogic Threat Intelligence