CVEs from 2016
Total
8,461
critical
critical 1,164
high
high 3,521
medium
medium 3,173
low
low 248
% Critical
13.8%
% with KEV
0.7%
% with exploit
6.8%
Top vendors
Top products
- phpmyadmin 3,382
- php 1,748
- squid 1,549
- samba 1,093
- drupal 868
- firefox 757
- moodle 700
- openssl 664
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-9956 | high | 7.5 | 7.5 | 9y ago | The route manager in FlightGear before 2016.4.4 allows remote attackers to write to arbitrary files via a crafted Nasal script. | |||
| CVE-2016-9049 | high | 7.5 | 7.5 | 9y ago | An exploitable denial-of-service vulnerability exists in the fabric-worker component of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause the server process to dereference a nu… | |||
| CVE-2016-10227 | high | 7.5 | 7.5 | 9y ago | Zyxel USG50 Security Appliance and NWA3560-N Access Point allow remote attackers to cause a denial of service (CPU consumption) via a flood of ICMPv4 Port Unreachable packets. | |||
| CVE-2016-7667 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a de… | |||
| CVE-2016-7662 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Security" component, which … | |||
| CVE-2016-4693 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "Security" component, which … | |||
| CVE-2016-4689 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.2 is affected. The issue involves the "Mail" component, which does not alert the user to an S/MIME email signature that used a revoked… | |||
| CVE-2016-5044 | high | 7.5 | 7.5 | 9y ago | The WRITE_UNALIGNED function in dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write and crash) via a crafted DWARF section. | |||
| CVE-2016-5043 | high | 7.5 | 7.5 | 9y ago | The dwarf_dealloc function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section. | |||
| CVE-2016-5042 | high | 7.5 | 7.5 | 9y ago | The dwarf_get_aranges_list function in libdwarf before 20160923 allows remote attackers to cause a denial of service (infinite loop and crash) via a crafted DWARF section. | |||
| CVE-2016-5040 | high | 7.5 | 7.5 | 9y ago | libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a large length value in a compilation unit header. | |||
| CVE-2016-5039 | high | 7.5 | 7.5 | 9y ago | The get_attr_value function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted object with all-bits on. | |||
| CVE-2016-5038 | high | 7.5 | 7.5 | 9y ago | The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted string offset for .deb… | |||
| CVE-2016-5036 | high | 7.5 | 7.5 | 9y ago | The dump_block function in print_sections.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds read) via crafted frame data. | |||
| CVE-2016-9637 | high | 7.5 | 7.5 | 9y ago | The (1) ioport_read and (2) ioport_write functions in Xen, when qemu is used as a device model within Xen, might allow local x86 HVM guest OS administrators to gain qemu process privileges via vector… | |||
| CVE-2016-5417 | high | 7.5 | 7.5 | 9y ago | Memory leak in the __res_vinit function in the IPv6 name server management code in libresolv in GNU C Library (aka glibc or libc6) before 2.24 allows remote attackers to cause a denial of service (me… | |||
| CVE-2016-5919 | high | 7.5 | 7.5 | 9y ago | IBM Security Access Manager for Web 7.0.0, 8.0.0, and 9.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM Reference #: 1… | |||
| CVE-2016-8689 | high | 7.5 | 7.5 | 9y ago | The read_Header function in archive_read_support_format_7zip.c in libarchive 3.2.1 allows remote attackers to cause a denial of service (out-of-bounds read) via multiple EmptyStream attributes in a h… | |||
| CVE-2016-8687 | high | 7.5 | 7.5 | 9y ago | Stack-based buffer overflow in the safe_fprintf function in tar/util.c in libarchive 3.2.1 allows remote attackers to cause a denial of service via a crafted non-printable multibyte character in a fi… | |||
| CVE-2016-8682 | high | 7.5 | 7.5 | 9y ago | The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header. | |||
| CVE-2016-6866 | high | 7.5 | 7.5 | 9y ago | slock allows attackers to bypass the screen lock via vectors involving an invalid password hash, which triggers a NULL pointer dereference and crash. | |||
| CVE-2016-1888 | high | 7.5 | 7.5 | 9y ago | The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation fa… | |||
| CVE-2016-9367 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPor… | |||
| CVE-2016-9364 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Fidelix FX-20 series controllers, versions prior to 11.50.19. Arbitrary file reading via path traversal allows an attacker to access arbitrary files and directories on the … | |||
| CVE-2016-9344 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. An attacker may be able to brute force an active session cookie to be able … | |||
| CVE-2016-8374 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU Universal Panel, all versions, Magelis STO5xx and STU Small panels, all versio… | |||
| CVE-2016-8370 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. Weakly encrypte… | |||
| CVE-2016-8346 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Moxa EDR-810 Industrial Secure Router. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access configuration and log fi… | |||
| CVE-2016-7987 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Siemens ETA4 firmware (all versions prior to Revision 08) of the SM-2558 extension module for: SICAM AK, SICAM TM 1703, SICAM BC 1703, and SICAM AK 3. Specially crafted pac… | |||
| CVE-2016-5801 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in OmniMetrix OmniView, Version 1.2. Insufficient password requirements for the OmniView web application may allow an attacker to gain access by brute forcing account password… | |||
| CVE-2016-5798 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in Fatek Automation PM Designer V3 Version 2.1.2.2, and Automation FV Designer Version 1.2.8.0. By sending additional valid packets, an attacker could trigger a stack-based bu… | |||
| CVE-2016-5786 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in OmniMetrix OmniView, Version 1.2. The OmniView web application transmits credentials with the HTTP protocol, which could be sniffed by an attacker that may result in the co… | |||
| CVE-2016-6129 | high | 7.5 | 7.5 | 9y ago | The rsa_verify_hash_ex function in rsa_verify_hash.c in LibTomCrypt, as used in OP-TEE before 2.2.0, does not validate that the message length is equal to the ASN.1 encoded data length, which makes i… | |||
| CVE-2016-4547 | high | 7.5 | 7.5 | 9y ago | Samsung devices with Android KK(4.4), L(5.0/5.1), or M(6.0) allow attackers to cause a denial of service (system crash) via a crafted system call to TvoutService_C. | |||
| CVE-2016-3995 | high | 7.5 | 7.5 | 9y ago | The timing attack protection in Rijndael::Enc::ProcessAndXorBlock and Rijndael::Dec::ProcessAndXorBlock in Crypto++ (aka cryptopp) before 5.6.4 may be optimized out by the compiler, which allows atta… | |||
| CVE-2016-10026 | high | 7.5 | 7.5 | 9y ago | ikiwiki 3.20161219 does not properly check if a revision changes the access permissions for a page on sites with the git and recentchanges plugins and the CGI interface enabled, which allows remote a… | |||
| CVE-2016-6173 | high | 7.5 | 7.5 | 9y ago | NSD before 4.1.11 allows remote DNS master servers to cause a denial of service (/tmp disk consumption and slave server crash) via a zone transfer with unlimited data. | |||
| CVE-2016-4986 | high | 7.5 | 7.5 | 9y ago | Jenkins TAP Plugin allows Path Traversal | |||
| CVE-2016-2147 | high | 7.5 | 7.5 | 9y ago | Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-o… | |||
| CVE-2016-10199 | high | 7.5 | 7.5 | 9y ago | The qtdemux_tag_add_str_full function in gst/isomp4/qtdemux.c in gst-plugins-good in GStreamer before 1.10.3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a … | |||
| CVE-2016-4341 | high | 7.5 | 7.5 | 9y ago | NetApp Clustered Data ONTAP before 8.3.2P7 allows remote attackers to obtain SMB share information via unspecified vectors. | |||
| CVE-2016-3063 | high | 7.5 | 7.5 | 9y ago | Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified ve… | |||
| CVE-2016-7164 | high | 7.5 | 7.5 | 9y ago | The construct function in puff.cpp in Libtorrent 1.1.0 allows remote torrent trackers to cause a denial of service (segmentation fault and crash) via a crafted GZIP response. | |||
| CVE-2016-6131 | high | 7.5 | 7.5 | 9y ago | The demangler in GNU Libiberty allows remote attackers to cause a denial of service (infinite loop, stack overflow, and crash) via a cycle in the references of remembered mangled types. | |||
| CVE-2016-1504 | high | 7.5 | 7.5 | 9y ago | dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length. | |||
| CVE-2016-7800 | high | 7.5 | 7.5 | 9y ago | Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, wh… | |||
| CVE-2016-7449 | high | 7.5 | 7.5 | 9y ago | The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string. | |||
| CVE-2016-7448 | high | 7.5 | 7.5 | 9y ago | The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service (CPU consumption or large memory allocations) via vectors involving the header information and… | |||
| CVE-2016-9108 | high | 7.5 | 7.5 | 9y ago | Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (applicatio… | |||
| CVE-2016-8212 | high | 7.5 | 7.5 | 9y ago | An issue was discovered in EMC RSA BSAFE Crypto-J versions prior to 6.2.2. There is an Improper OCSP Validation Vulnerability. OCSP responses have two time values: thisUpdate and nextUpdate. These sp… | |||
| CVE-2016-8211 | high | 7.5 | 7.5 | 9y ago | EMC Data Protection Advisor 6.1.x, EMC Data Protection Advisor 6.2, EMC Data Protection Advisor 6.2.1, EMC Data Protection Advisor 6.2.2, EMC Data Protection Advisor 6.2.3 prior to patch 446 has a pa… | |||
| CVE-2016-9008 | high | 7.5 | 7.5 | 10y ago | IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent. | |||
| CVE-2016-8919 | high | 7.5 | 7.5 | 10y ago | IBM WebSphere Application Server may be vulnerable to a denial of service, caused by allowing serialized objects from untrusted sources to run and cause the consumption of resources. | |||
| CVE-2016-6068 | high | 7.5 | 7.5 | 10y ago | IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties. | |||
| CVE-2016-2942 | high | 7.5 | 7.5 | 10y ago | IBM UrbanCode Deploy could allow an authenticated attacker with special permissions to craft a script on the server in a way that will cause processes to run on a remote UCD agent machine. | |||
| CVE-2016-5958 | high | 7.5 | 7.5 | 10y ago | IBM Security Privileged Identity Manager could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for the session cookie in SSL mode. By interceptin… | |||
| CVE-2016-3017 | high | 7.5 | 7.5 | 10y ago | IBM Security Access Manager for Web could allow a remote attacker to obtain sensitive information due to security misconfigurations. | |||
| CVE-2016-9418 | high | 7.5 | 7.5 | 10y ago | MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows might allow remote attackers to obtain sensitive information from ACP backups via vectors involving a … | |||
| CVE-2016-9415 | high | 7.5 | 7.5 | 10y ago | MyBB (aka MyBulletinBoard) before 1.8.8 on Windows and MyBB Merge System before 1.8.8 on Windows allow remote attackers to overwrite arbitrary CSS files via vectors related to "style import." | |||
| CVE-2016-9414 | high | 7.5 | 7.5 | 10y ago | MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 allow remote attackers to obtain sensitive information by leveraging missing directory listing protection in upload director… | |||
| CVE-2016-9410 | high | 7.5 | 7.5 | 10y ago | MyBB (aka MyBulletinBoard) before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates. | |||
| CVE-2016-9249 | high | 7.5 | 7.5 | 10y ago | An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may cause the Traffic Management Microkernel (TMM) to restart, resulting in a Denial-of-Service (DoS). | |||
| CVE-2016-10087 | high | 7.5 | 7.5 | 10y ago | The png_set_text_2 function in libpng 0.71 before 1.0.67, 1.2.x before 1.2.57, 1.4.x before 1.4.20, 1.5.x before 1.5.28, and 1.6.x before 1.6.27 allows context-dependent attackers to cause a NULL poi… | |||
| CVE-2016-9939 | high | 7.5 | 7.5 | 10y ago | Crypto++ (aka cryptopp and libcrypto++) 5.6.4 contained a bug in its ASN.1 BER decoding routine. The library will allocate a memory block based on the length field of the ASN.1 object. If there is no… | |||
| CVE-2016-7544 | high | 7.5 | 7.5 | 10y ago | Crypto++ 5.6.4 incorrectly uses Microsoft's stack-based _malloca and _freea functions. The library will request a block of memory to align a table in memory. If the table is later reallocated, then t… | |||
| CVE-2016-10186 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. /var/miniupnpd.conf has no deny rules. | |||
| CVE-2016-10185 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. A secure_mode=no line exists in /var/miniupnpd.conf. | |||
| CVE-2016-10184 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. qmiweb allows file reading with ..%2f traversal. | |||
| CVE-2016-10183 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. qmiweb allows directory listing with ../ traversal. | |||
| CVE-2016-10181 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. qmiweb provides sensitive information for CfgType=get_homeCfg requests. | |||
| CVE-2016-10180 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on srand(time(0)) seeding. | |||
| CVE-2016-10179 | high | 7.5 | 7.5 | 10y ago | An issue was discovered on the D-Link DWR-932B router. There is a hardcoded WPS PIN of 28296607. | |||
| CVE-2016-6264 | high | 7.5 | 7.5 | 10y ago | Integer signedness error in libc/string/arm/memset.S in uClibc and uClibc-ng before 1.0.16 allows context-dependent attackers to cause a denial of service (crash) via a negative length value to the m… | |||
| CVE-2016-5827 | high | 7.5 | 7.5 | 10y ago | The icaltime_from_string function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted string to the icalparser_parse_string function. | |||
| CVE-2016-5826 | high | 7.5 | 7.5 | 10y ago | The parser_get_next_char function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) by crafting a string to the icalparser_parse_string function. | |||
| CVE-2016-5546 | high | 7.5 | 7.5 | 10y ago | Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedd… | |||
| CVE-2016-5822 | high | 7.5 | 7.5 | 10y ago | Huawei Oceanstor 5800 before V300R002C10SPC100 allows remote attackers to cause a denial of service (CPU consumption) via a large number of crafted HTTP packets. | |||
| CVE-2016-9448 | high | 7.5 | 7.5 | 10y ago | The TIFFFetchNormalTag function in LibTiff 4.0.6 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) by setting the tags TIFF_SETGET_C16ASCII or TIFF_SETGET_C32_… | |||
| CVE-2016-10003 | high | 7.5 | 7.5 | 10y ago | Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as … | |||
| CVE-2016-10002 | high | 7.5 | 7.5 | 10y ago | Incorrect processing of responses to If-None-Modified HTTP conditional requests in Squid HTTP Proxy 3.1.10 through 3.1.23, 3.2.0.3 through 3.5.22, and 4.0.1 through 4.0.16 leads to client-specific Co… | |||
| CVE-2016-10162 | high | 7.5 | 7.5 | 10y ago | The php_wddx_pop_element function in ext/wddx/wddx.c in PHP 7.0.x before 7.0.15 and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application c… | |||
| CVE-2016-10161 | high | 7.5 | 7.5 | 10y ago | The object_common1 function in ext/standard/var_unserializer.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (buffer over-read… | |||
| CVE-2016-10159 | high | 7.5 | 7.5 | 10y ago | Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or applic… | |||
| CVE-2016-10158 | high | 7.5 | 7.5 | 10y ago | The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via … | |||
| CVE-2016-9446 | high | 7.5 | 7.5 | 10y ago | The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that… | |||
| CVE-2016-9445 | high | 7.5 | 7.5 | 10y ago | Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow. | |||
| CVE-2016-9381 | high | 7.5 | 7.5 | 10y ago | Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability. | |||
| CVE-2016-9380 | high | 7.5 | 7.5 | 10y ago | The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in… | |||
| CVE-2016-7037 | high | 7.5 | 7.5 | 10y ago | The verify function in Encryption/Symmetric.php in Malcolm Fell jwt before 1.0.3 does not use a timing-safe function for hash comparison, which allows attackers to spoof signatures via a timing attac… | |||
| CVE-2016-6920 | high | 7.5 | 7.5 | 10y ago | Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile … | |||
| CVE-2016-6668 | high | 7.5 | 7.5 | 10y ago | The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA … | |||
| CVE-2016-6160 | high | 7.5 | 7.5 | 10y ago | tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266. | |||
| CVE-2016-5119 | high | 7.5 | 7.5 | 10y ago | The automatic update feature in KeePass 2.33 and earlier allows man-in-the-middle attackers to execute arbitrary code by spoofing the version check response and supplying a crafted update. | |||
| CVE-2016-5323 | high | 7.5 | 7.5 | 10y ago | The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image. | |||
| CVE-2016-10143 | high | 7.5 | 7.5 | 10y ago | A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field. | |||
| CVE-2016-9680 | high | 7.5 | 7.5 | 10y ago | Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from kernel memory via unspecified vectors. | |||
| CVE-2016-6497 | high | 7.5 | 7.5 | 10y ago | main/java/org/apache/directory/groovyldap/LDAP.java in the Groovy LDAP API in Apache allows attackers to conduct LDAP entry poisoning attacks by leveraging setting returnObjFlag to true for all searc… | |||
| CVE-2016-6271 | high | 7.5 | 7.5 | 10y ago | The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception. | |||
| CVE-2016-4019 | high | 7.5 | 7.5 | 10y ago | Unspecified vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to affect integrity via unknown vectors, aka bug 104477. | |||
| CVE-2016-3413 | high | 7.5 | 7.5 | 10y ago | Unspecified vulnerability in Zimbra Collaboration before 8.7.0 allows remote attackers to affect integrity via unknown vectors, aka bug 103996. |