|
266191
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in libzipfile in Android 4.x before 4.4.4, 5.0.x before 5.0.2, and 5.1.x before 5.1.1 could enable a local malicious application to execute arbitrary code with…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6700
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266192
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in Qualcomm components including the GPU driver, power driver, SMSM Point-to-Point driver, and sound driver in Android before 2016-11-05 could enable a local m…
|
CWE-200
Information Exposure
|
CVE-2016-6698
|
2024-11-21 11:56 |
2016-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266193
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_communications_manager
|
A vulnerability in several parameters of the ccmivr page of Cisco Unified Communication Manager (CallManager) could allow an unauthenticated, remote attacker to launch a cross-site scripting (XSS) at…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6472
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266194
|
5.9 |
MEDIUM
Network
|
cisco
|
adaptive_security_appliance_software
|
A vulnerability in the HTTP web-based management interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to inject arbitrary XML commands on the affec…
|
CWE-20
Improper Input Validation
|
CVE-2016-6461
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266195
|
5.5 |
MEDIUM
Local
|
cisco
|
telepresence_tc_software
|
Cisco TelePresence endpoints running either CE or TC software contain a vulnerability that could allow an authenticated, local attacker to execute a local shell command injection. More Information: C…
|
CWE-78
OS Command
|
CVE-2016-6459
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266196
|
7.5 |
HIGH
Network
|
cisco
|
asr_5000_series_software
virtualized_packet_core
|
A vulnerability in the IPsec component of StarOS for Cisco ASR 5000 Series routers could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels fr…
|
CWE-399
Resource Management Errors
|
CVE-2016-6466
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266197
|
5.3 |
MEDIUM
Network
|
cisco
|
email_security_appliance_firmware
|
A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protectio…
|
CWE-20
Improper Input Validation
|
CVE-2016-6463
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266198
|
5.3 |
MEDIUM
Network
|
cisco
|
email_security_appliance_firmware
|
A vulnerability in the email filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass Advanced Malware Protectio…
|
CWE-20
Improper Input Validation
|
CVE-2016-6462
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266199
|
7.5 |
HIGH
Network
|
cisco
|
firesight_system_software
|
A vulnerability in the FTP Representational State Transfer Application Programming Interface (REST API) for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass F…
|
CWE-254
7PK - Security Features
|
CVE-2016-6460
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266200
|
7.5 |
HIGH
Network
|
cisco
|
email_security_appliance_firmware
|
A vulnerability in the content filtering functionality of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to bypass content filters configur…
|
CWE-20
Improper Input Validation
|
CVE-2016-6458
|
2024-11-21 11:56 |
2016-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
