|
266031
|
7.8 |
HIGH
Local
|
watchguard
|
rapidstream
|
WatchGuard RapidStream appliances allow local users to gain privileges and execute arbitrary commands via a crafted ifconfig command, aka ESCALATEPLOWMAN.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7089
|
2024-11-21 11:57 |
2016-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266032
|
9.8 |
CRITICAL
Network
|
fortinet
|
fortios
fortiswitch
|
Buffer overflow in the Cookie parser in Fortinet FortiOS 4.x before 4.1.11, 4.2.x before 4.2.13, and 4.3.x before 4.3.9 and FortiSwitch before 3.4.3 allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6909
|
2024-11-21 11:57 |
2016-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266033
|
6.1 |
MEDIUM
Network
|
opennms
|
opennms
|
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP agent supplied data. By creating a malicious SNMP 'sysName' or 'sysContact' response, an at…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6556
|
2024-11-21 11:56 |
2021-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266034
|
6.1 |
MEDIUM
Network
|
opennms
|
opennms
|
OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP trap supplied data. By creating a malicious SNMP trap, an attacker can store an XSS payload…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6555
|
2024-11-21 11:56 |
2021-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266035
|
7.8 |
HIGH
Local
|
symantec
|
norton_download_manager
|
A vulnerability was found in Symantec Norton Download Manager versions prior to 5.6. A remote user can create a specially crafted DLL file that, when placed on the target user's system, will cause th…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2016-6592
|
2024-11-21 11:56 |
2020-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266036
|
5.3 |
MEDIUM
Network
|
symantec
|
norton_mobile_security
|
A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a remote malicious user conduct a man-in-the-middle attack via specially crafted…
|
CWE-20
Improper Input Validation
|
CVE-2016-6585
|
2024-11-21 11:56 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266037
|
5.5 |
MEDIUM
Local
|
symantec
|
norton_mobile_security
|
An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Security for Android before 3.16, which could let a local malicious user obtain sens…
|
CWE-200
Information Exposure
|
CVE-2016-6587
|
2024-11-21 11:56 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266038
|
5.4 |
MEDIUM
Network
|
symantec
|
it_management_suite
|
A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management Suite 8.0.
|
CWE-79
Cross-site Scripting
|
CVE-2016-6588
|
2024-11-21 11:56 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266039
|
3.7 |
LOW
Network
|
symantec
|
norton_mobile_security
|
A security bypass vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add…
|
CWE-20
Improper Input Validation
|
CVE-2016-6586
|
2024-11-21 11:56 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266040
|
7.8 |
HIGH
Local
|
symantec
|
vip_access_desktop
|
A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.
|
CWE-426
Untrusted Search Path
|
CVE-2016-6593
|
2024-11-21 11:56 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
