|
1281
|
7.8
4.4
|
HIGH
Local
|
pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2016-2568
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:48
2017-02-14
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1282
|
7.8
6.8
|
HIGH
Local
|
openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause the application to crash, or potentially execute arbitrary code.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-9675
|
cpe:2.3:o:redhat:enterprise_linux:7.7:* cpe:2.3:o:redhat:enterprise_linux:7.6:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 12:01
2016-12-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1283
|
7.0
7.2
|
HIGH
Local
|
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-…
|
CWE-362
Race Condition
|
CVE-2016-5195
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2026-04-22 02:43
2016-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1284
|
3.7
4.3
|
LOW
Network
|
Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks.
|
CWE-295
Improper Certificate Validation
|
CVE-2016-1000033
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 11:42
2016-10-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1285
|
9.8
10.0
|
CRITICAL
Network
|
Oracle MySQL through 5.5.52, 5.6.x through 5.6.33, and 5.7.x through 5.7.15; MariaDB before 5.5.51, 10.0.x before 10.0.27, and 10.1.x before 10.1.17; and Percona Server before 5.5.51-38.1, 5.6.x befo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6662
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 11:56
2016-09-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1286
|
7.5
5.0
|
HIGH
Network
|
The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for re…
|
CWE-200
Information Exposure
|
CVE-2016-2183
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 11:47
2016-09-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1287
|
8.8
6.8
|
HIGH
Network
|
Integer overflow in the _gd2GetHeader function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8, allows remote …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-5766
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 11:54
2016-08-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1288
|
3.7
4.3
|
LOW
Network
|
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote atta…
|
NVD-CWE-noinfo
|
CVE-2016-5444
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:54
2016-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1289
|
7.5
6.2
|
HIGH
Local
|
Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Option.
|
NVD-CWE-noinfo
|
CVE-2016-3471
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:50
2016-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1290
|
3.7
4.3
|
LOW
Network
|
Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows remote atta…
|
NVD-CWE-noinfo
|
CVE-2016-3452
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:50
2016-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|