|
268441
|
7.5 |
HIGH
Network
|
siemens
|
simatic_net_pc-software
|
Siemens SIMATIC NET PC-Software before 13 SP2 allows remote attackers to cause a denial of service (OPC UA service outage) via crafted TCP packets.
|
CWE-20
Improper Input Validation
|
CVE-2016-5874
|
2024-11-21 11:55 |
2016-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268442
|
3.3 |
LOW
Local
|
ecryptfs
canonical
|
ecryptfs-utils
ubuntu_linux
|
ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to obt…
|
CWE-20
Improper Input Validation
|
CVE-2016-6224
|
2024-11-21 11:55 |
2016-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268443
|
8.1 |
HIGH
Network
|
tollgrade
|
lighthouse_sms
|
Tollgrade LightHouse SMS before 5.1 patch 3 allows remote authenticated users to bypass an intended administrative-authentication requirement, and read or change parameter values, via a direct reques…
|
CWE-284
Improper Access Control
|
CVE-2016-5807
|
2024-11-21 11:55 |
2016-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268444
|
9.8 |
CRITICAL
Network
|
moxa
|
mgate_mb3180_firmware
mgate_mb3280_firmware
mgate_mb3480_firmware
mgate_mb3170_firmware
mgate_mb3270_firmware
|
Moxa MGate MB3180 before 1.8, MGate MB3280 before 2.7, MGate MB3480 before 2.6, MGate MB3170 before 2.5, and MGate MB3270 before 2.7 use weak encryption, which allows remote attackers to bypass authe…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2016-5804
|
2024-11-21 11:55 |
2016-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268445
|
5.3 |
MEDIUM
Network
|
tollgrade
|
lighthouse_sms
|
Tollgrade LightHouse SMS before 5.1 patch 3 provides different error messages for failed authentication attempts depending on whether the username exists, which allows remote attackers to enumerate a…
|
CWE-200
Information Exposure
|
CVE-2016-5797
|
2024-11-21 11:55 |
2016-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268446
|
7.5 |
HIGH
Network
|
enghousenetworks
|
lighthouse_sms
|
Tollgrade LightHouse SMS before 5.1 patch 3 allows remote attackers to bypass authentication and restart the software via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2016-5790
|
2024-11-21 11:55 |
2016-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268447
|
6.3 |
MEDIUM
Local
|
ge
|
cimplicity
|
General Electric (GE) Digital Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, which allows local users to modify a service configuration via unspecified vectors.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2016-5787
|
2024-11-21 11:55 |
2016-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268448
|
7.8 |
HIGH
Local
|
huawei
|
hisuite
|
Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a weak ACL (FILE_WRITE_DATA for BUILTIN\Users) for the HiSuite service directory, which allows local users to gain …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5821
|
2024-11-21 11:55 |
2016-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268449
|
8.1 |
HIGH
Network
|
invisioncommunity
php
|
invision_power_board
php
|
applications/core/modules/front/system/content.php in Invision Power Services IPS Community Suite (aka Invision Power Board, IPB, or Power Board) before 4.1.13, when used with PHP before 5.4.24 or 5.…
|
NVD-CWE-noinfo
|
CVE-2016-6174
|
2024-11-21 11:55 |
2016-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268450
|
5.4 |
MEDIUM
Network
|
huawei
|
public_cloud_solution
|
Cross-site scripting (XSS) vulnerability in the volume backup service module in Huawei Public Cloud Solution before 1.0.5 allows remote authenticated users to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2016-5850
|
2024-11-21 11:55 |
2016-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
