CVEs from 2016
Total
8,459
critical
critical 1,164
high
high 3,521
medium
medium 3,173
low
low 248
% Critical
13.8%
% with KEV
0.7%
% with exploit
6.8%
Top vendors
Top products
- phpmyadmin 3,382
- php 1,748
- squid 1,549
- samba 1,093
- drupal 868
- firefox 757
- moodle 700
- openssl 664
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-2887 | high | 8.1 | 8.1 | 10y ago | IBM IMS Enterprise Suite Data Provider before 3.2.0.1 for Microsoft .NET allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. | |||
| CVE-2016-1251 | high | 8.1 | 8.1 | 10y ago | There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysql_server_prepare… | |||
| CVE-2016-2929 | high | 8.1 | 8.1 | 10y ago | IBM BigFix Remote Control before 9.1.3 does not properly restrict password choices, which makes it easier for remote attackers to obtain access via a brute-force approach. | |||
| CVE-2016-3025 | high | 8.1 | 8.1 | 10y ago | IBM Security Access Manager for Mobile 8.x before 8.0.1.4 IF3 and Security Access Manager 9.x before 9.0.1.0 IF5 do not properly restrict failed login attempts, which makes it easier for remote attac… | |||
| CVE-2016-8331 | high | 8.1 | 8.1 | 10y ago | An exploitable remote code execution vulnerability exists in the handling of TIFF images in LibTIFF version 4.0.6. A crafted TIFF document can lead to a type confusion vulnerability resulting in remo… | |||
| CVE-2016-6432 | high | 8.1 | 8.1 | 10y ago | A vulnerability in the Identity Firewall feature of Cisco ASA Software before 9.6(2.1) could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute … | |||
| CVE-2016-5619 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenti… | |||
| CVE-2016-5518 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integr… | |||
| CVE-2016-6380 | high | 8.1 | 8.1 | 10y ago | The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of ser… | |||
| CVE-2016-4390 | high | 8.1 | 8.1 | 10y ago | The Filter SDK in HPE KeyView 10.18 through 10.24 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4387, CVE-2016-4388, and CVE-2016-… | |||
| CVE-2016-4389 | high | 8.1 | 8.1 | 10y ago | The Filter SDK in HPE KeyView 10.18 through 10.24 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4387, CVE-2016-4388, and CVE-2016-… | |||
| CVE-2016-4388 | high | 8.1 | 8.1 | 10y ago | The Filter SDK in HPE KeyView 10.18 through 10.24 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4387, CVE-2016-4389, and CVE-2016-… | |||
| CVE-2016-4387 | high | 8.1 | 8.1 | 10y ago | The Filter SDK in HPE KeyView 10.18 through 10.24 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4388, CVE-2016-4389, and CVE-2016-… | |||
| CVE-2016-7191 | high | 8.1 | 8.1 | 10y ago | Authentication Bypass in passport-azure-ad | |||
| CVE-2016-4725 | high | 8.1 | 8.1 | 10y ago | IOAcceleratorFamily in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory or cause a denial of se… | |||
| CVE-2016-7143 | high | 8.1 | 8.1 | 10y ago | The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE … | |||
| CVE-2016-5017 | high | 8.1 | 8.1 | 10y ago | Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the "cmd:" batch mode syntax, allows attackers to have unspecified impact via a long command str… | |||
| CVE-2016-7412 | high | 8.1 | 8.1 | 10y ago | ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag, which allows remote MySQL servers to cause a denial of servi… | |||
| CVE-2016-1482 | high | 8.1 | 8.1 | 10y ago | Cisco WebEx Meetings Server 2.6 allows remote attackers to execute arbitrary commands by injecting these commands into an application script, aka Bug ID CSCuy83130. | |||
| CVE-2016-7133 | high | 8.1 | 8.1 | 10y ago | Zend/zend_alloc.c in PHP 7.x before 7.0.10, when open_basedir is enabled, mishandles huge realloc operations, which allows remote attackers to cause a denial of service (integer overflow) or possibly… | |||
| CVE-2016-6377 | high | 8.1 | 8.1 | 10y ago | Media Origination System Suite Software 2.6 and earlier in Cisco Virtual Media Packager (VMP) allows remote attackers to bypass authentication and make arbitrary Platform and Applications Manager (PA… | |||
| CVE-2016-4377 | high | 8.1 | 8.1 | 10y ago | HPE Smart Update in Storage Sizing Tool before 13.0, Converged Infrastructure Solution Sizer Suite (CISSS) before 2.13.1, Power Advisor before 7.8.2, Insight Management Sizer before 16.12.1, Synergy … | |||
| CVE-2016-0915 | high | 8.1 | 8.1 | 10y ago | The Self-Service Portal in EMC RSA Authentication Manager (AM) Prime Self-Service 3.0 and 3.1 before 3.1 1915.42871 allows remote authenticated users to cause a denial of service (PIN change for an a… | |||
| CVE-2016-5421 | high | 8.1 | 8.1 | 10y ago | Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly have unspecified other impact via unknown vectors. | |||
| CVE-2016-3851 | high | 8.1 | 8.1 | 10y ago | The LG Electronics bootloader Android before 2016-08-05 on Nexus 5X devices allows attackers to gain privileges by leveraging access to a privileged process, aka internal bug 29189941. | |||
| CVE-2016-6144 | high | 8.1 | 8.1 | 10y ago | The SQL interface in SAP HANA before Revision 102 does not limit the number of login attempts for the SYSTEM user when the password_lock_for_system_user is not supported or is configured as "False," … | |||
| CVE-2016-5266 | high | 8.1 | 8.1 | 10y ago | Mozilla Firefox before 48.0 does not properly restrict drag-and-drop (aka dataTransfer) actions for file: URIs, which allows user-assisted remote attackers to access local files via a crafted web sit… | |||
| CVE-2016-5672 | high | 8.1 | 8.1 | 10y ago | Intel Crosswalk before 19.49.514.5, 20.x before 20.50.533.11, 21.x before 21.51.546.0, and 22.x before 22.51.549.0 interprets a user's acceptance of one invalid X.509 certificate to mean that all inv… | |||
| CVE-2016-4834 | high | 8.1 | 8.1 | 10y ago | modules/Users/actions/Save.php in Vtiger CRM 6.4.0 and earlier does not properly restrict user-save actions, which allows remote authenticated users to create or modify user accounts via unspecified … | |||
| CVE-2016-5451 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity … | |||
| CVE-2016-3564 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the Oracle TopLink component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows remote attackers to affect confidentiality, integrity, and availability v… | |||
| CVE-2016-3552 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in Oracle Java SE 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install. | |||
| CVE-2016-3506 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the JDBC component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2; the Oracle Retail Xstore Point of Service 5.5, 6.0, 6.5, 7.0, 7.1, 15.0, and 16.0; the Orac… | |||
| CVE-2016-3487 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via… | |||
| CVE-2016-3477 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users… | |||
| CVE-2016-5388 | high | 8.1 | 8.1 | 10y ago | Improper Access Control in Apache Tomcat | |||
| CVE-2016-5387 | high | 8.1 | 8.1 | 10y ago | The Apache HTTP Server through 2.4.23 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, wh… | |||
| CVE-2016-5386 | high | 8.1 | 8.1 | 10y ago | Improper input validation in net/http and net/http/cgi | |||
| CVE-2016-5385 | high | 8.1 | 8.1 | 10y ago | HTTP Proxy header vulnerability | |||
| CVE-2016-3039 | high | 8.1 | 8.1 | 10y ago | IBM Traveler 8.x and 9.x before 9.0.1.12 allows remote authenticated users to read arbitrary files or cause a denial of service (memory consumption) via XML data containing an external entity declara… | |||
| CVE-2016-5807 | high | 8.1 | 8.1 | 10y ago | Tollgrade LightHouse SMS before 5.1 patch 3 allows remote authenticated users to bypass an intended administrative-authentication requirement, and read or change parameter values, via a direct reques… | |||
| CVE-2016-3238 | high | 8.1 | 8.1 | 10y ago | The Print Spooler service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511… | |||
| CVE-2016-5774 | high | 8.1 | 8.1 | 10y ago | The HTTPS server in Blue Coat PacketShaper S-Series 11.5.x before 11.5.3.2 might allow remote attackers to obtain sensitive credentials and other information via unspecified vectors, related to use o… | |||
| CVE-2016-1443 | high | 8.1 | 8.1 | 10y ago | The virtual network stack on Cisco AMP Threat Grid Appliance devices before 2.1.1 allows remote attackers to bypass a sandbox protection mechanism, and consequently obtain sensitive interprocess info… | |||
| CVE-2016-1181 | high | 8.1 | 8.1 | 10y ago | Improper Input Validation in Apache Struts | |||
| CVE-2016-4998 | high | 7.1 | 8.1 | 10y ago | The IPT_SO_SET_REPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service (out-of-bounds read) or possibly obtain sens… | |||
| CVE-2016-4472 | high | 8.1 | 8.1 | 10y ago | The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via … | |||
| CVE-2016-0304 | high | 8.1 | 8.1 | 10y ago | The Java Console in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass … | |||
| CVE-2016-3707 | high | 8.1 | 8.1 | 10y ago | The icmp_check_sysrq function in net/ipv4/icmp.c in the kernel.org projects/rt patches for the Linux kernel, as used in the kernel-rt package before 3.10.0-327.22.1 in Red Hat Enterprise Linux for Re… | |||
| CVE-2016-1189 | high | 8.1 | 8.1 | 10y ago | Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated users to bypass intended restrictions on reading, creating, or modifying a portlet via unspecified vectors. | |||
| CVE-2016-3698 | high | 8.1 | 8.1 | 10y ago | libndp before 1.6, as used in NetworkManager, does not properly validate the origin of Neighbor Discovery Protocol (NDP) messages, which allows remote attackers to conduct man-in-the-middle attacks o… | |||
| CVE-2016-5234 | high | 8.1 | 8.1 | 10y ago | Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100,… | |||
| CVE-2016-1419 | high | 8.1 | 8.1 | 10y ago | Cisco Access Point devices with software 8.2(102.43) allow remote attackers to cause a denial of service (device reload) via crafted ARP packets, aka Bug ID CSCuy55803. | |||
| CVE-2016-4362 | high | 8.1 | 8.1 | 10y ago | HPE Insight Control server deployment allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. | |||
| CVE-2016-4358 | high | 8.1 | 8.1 | 10y ago | HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2029. | |||
| CVE-2016-4357 | high | 8.1 | 8.1 | 10y ago | HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2028. | |||
| CVE-2016-2030 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, … | |||
| CVE-2016-2028 | high | 8.1 | 8.1 | 10y ago | HPE Matrix Operating Environment before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-4357. | |||
| CVE-2016-2022 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, … | |||
| CVE-2016-2021 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, … | |||
| CVE-2016-2020 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, … | |||
| CVE-2016-2019 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2017, … | |||
| CVE-2016-2017 | high | 8.1 | 8.1 | 10y ago | HPE Systems Insight Manager (SIM) before 7.5.1 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-2019, … | |||
| CVE-2016-0376 | high | 8.1 | 8.1 | 10y ago | The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40… | |||
| CVE-2016-0363 | high | 8.1 | 8.1 | 10y ago | The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (6.0.16.25), 6 R1 before SR8 FP25 (6.1.8.25), 7 before SR9 FP40 (7.0.9.40), 7 R1 before SR3 FP40 (7.… | |||
| CVE-2016-4087 | high | 8.1 | 8.1 | 10y ago | Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of se… | |||
| CVE-2016-1671 | high | 8.1 | 8.1 | 10y ago | Google Chrome before 50.0.2661.102 on Android mishandles / (slash) and \ (backslash) characters, which allows attackers to conduct directory traversal attacks via a file: URL, related to net/base/esc… | |||
| CVE-2016-2014 | high | 8.1 | 8.1 | 10y ago | HPE Network Node Manager i (NNMi) 9.20, 9.23, 9.24, 9.25, 10.00, and 10.01 allows remote authenticated users to modify data or cause a denial of service via unspecified vectors. | |||
| CVE-2016-2346 | high | 8.1 | 8.1 | 10y ago | Allround Automations PL/SQL Developer 11 before 11.0.6 relies on unverified HTTP data for updates, which allows man-in-the-middle attackers to execute arbitrary code by modifying fields in the client… | |||
| CVE-2016-4054 | high | 8.1 | 8.1 | 10y ago | Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses. | |||
| CVE-2016-4052 | high | 8.1 | 8.1 | 10y ago | Multiple stack-based buffer overflows in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote HTTP servers to cause a denial of service or execute arbitrary code via crafted Edge Side Includes (… | |||
| CVE-2016-3693 | high | 8.1 | 8.1 | 10y ago | safemode gem allows context-dependent attackers to obtain sensitive information via the inspect method | |||
| CVE-2016-1651 | high | 8.1 | 8.1 | 10y ago | fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420_to_rgb and sycc422_to_rgb functions, which allows remote attackers … | |||
| CVE-2016-2409 | high | 8.1 | 8.1 | 10y ago | A Texas Instruments (TI) haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this d… | |||
| CVE-2016-3171 | high | 8.1 | 8.1 | 10y ago | Drupal arbitrary code execution | |||
| CVE-2016-3169 | high | 8.1 | 8.1 | 10y ago | Drupal saving user accounts can sometimes grant the user all roles | |||
| CVE-2016-3162 | high | 8.1 | 8.1 | 10y ago | Drupal File upload access bypass and denial of service | |||
| CVE-2016-1866 | high | 8.1 | 8.1 | 10y ago | Salt 2015.8.x before 2015.8.4 does not properly handle clear messages on the minion, which allows man-in-the-middle attackers to execute arbitrary code by inserting packets into the minion-master dat… | |||
| CVE-2016-3675 | high | 8.1 | 8.1 | 10y ago | SQL injection vulnerability in Huawei Policy Center with software before V100R003C10SPC020 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to syste… | |||
| CVE-2016-1030 | high | 8.1 | 8.1 | 10y ago | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass intended access restrictions via unspecifi… | |||
| CVE-2016-1006 | high | 8.1 | 8.1 | 10y ago | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before 21.0.0.213 on Windows and OS X and before 11.2.202.616 on Linux allows attackers to bypass the ASLR protection mechanism via JIT data. | |||
| CVE-2016-2510 | high | 8.1 | 8.1 | 10y ago | Improper Input Validation in BeanShell | |||
| CVE-2016-1714 | high | 8.1 | 8.1 | 10y ago | The (1) fw_cfg_write and (2) fw_cfg_read functions in hw/nvram/fw_cfg.c in QEMU before 2.4, when built with the Firmware Configuration device emulation support, allow guest OS users with the CAP_SYS_… | |||
| CVE-2016-1290 | high | 8.1 | 8.1 | 10y ago | The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gai… | |||
| CVE-2016-0636 | high | 8.1 | 8.1 | 10y ago | Unspecified vulnerability in Oracle Java SE 7u97, 8u73, and 8u74 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Hotspot sub-componen… | |||
| CVE-2016-1762 | high | 8.1 | 8.1 | 10y ago | The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document. | |||
| CVE-2016-1993 | high | 8.1 | 8.1 | 10y ago | HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors. | |||
| CVE-2016-2342 | high | 8.1 | 8.1 | 10y ago | The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration is used, relies on a Labeled-VPN SAFI routes-data… | |||
| CVE-2016-1526 | high | 8.1 | 8.1 | 10y ago | The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, incorrectly validates a size value, which… | |||
| CVE-2016-0036 | high | 8.1 | 8.1 | 10y ago | The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote authenticated users to execute arbitrary code v… | |||
| CVE-2016-1567 | high | 8.1 | 8.1 | 11y ago | chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arb… | |||
| CVE-2016-0858 | high | 8.1 | 8.1 | 11y ago | Race condition in Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted request. | |||
| CVE-2016-0778 | high | 8.1 | 8.1 | 11y ago | The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when certain proxy and forward options are enabled, do not properly m… | |||
| CVE-2016-0019 | high | 8.1 | 8.1 | 11y ago | The Remote Desktop Protocol (RDP) service implementation in Microsoft Windows 10 Gold and 1511 allows remote attackers to bypass intended access restrictions and establish sessions for blank-password… | |||
| CVE-2016-8624 | high | — | 8.0 | — | curl before version 7.51.0 doesn't parse the authority component of the URL correctly when the host name part ends with a '#' character, and could instead be tricked into connecting to a different ho… | |||
| CVE-2016-8619 | high | — | 8.0 | — | The function `read_data()` in security.c in curl before version 7.51.0 is vulnerable to memory double free. | |||
| CVE-2016-8618 | high | — | 8.0 | — | The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free due to an unsafe `size_t` multiplication, on systems using 32 bit `size_t` variables. | |||
| CVE-2016-8622 | high | — | 8.0 | — | The URL percent-encoding decode function in libcurl before 7.51.0 is called `curl_easy_unescape`. Internally, even if this function would be made to allocate a unscape destination buffer larger than … | |||
| CVE-2016-6328 | high | — | 8.0 | — | A vulnerability was found in libexif. An integer overflow when parsing the MNOTE entry data of the input file. This can cause Denial-of-Service (DoS) and Information Disclosure (disclosing some criti… | |||
| CVE-2016-9778 | high | — | 8.0 | — | An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulner… |