|
269271
|
7.5 |
HIGH
Network
|
iconics
|
webhmi
|
Directory traversal vulnerability in ICONICS WebHMI 9 and earlier allows remote attackers to read configuration files, and consequently discover password hashes, via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2016-2289
|
2024-11-21 11:48 |
2016-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269272
|
7.8 |
HIGH
Local
|
cogentdatahub
|
cogent_datahub
|
Cogent DataHub before 7.3.10 allows local users to gain privileges by leveraging the user or guest role to modify a file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2288
|
2024-11-21 11:48 |
2016-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269273
|
7.5 |
HIGH
Network
|
autodesk
|
autodesk_backburner
|
Stack-based buffer overflow in manager.exe in Backburner Manager in Autodesk Backburner 2016 2016.0.0.2150 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-2344
|
2024-11-21 11:48 |
2016-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269274
|
5.4 |
MEDIUM
Network
|
graniteds
|
granite_data_services
|
The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows remote authenticated users to read arbitrary files, send TCP requests to intranet servers, or cause a denial of service via an XML ext…
|
NVD-CWE-Other
|
CVE-2016-2340
|
2024-11-21 11:48 |
2016-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269275
|
9.8 |
CRITICAL
Network
|
hp
|
support_assistant
|
HP Support Assistant before 8.1.52.1 allows remote attackers to bypass authentication via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2016-2245
|
2024-11-21 11:48 |
2016-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269276
|
6.1 |
MEDIUM
Network
|
xzeres
|
442sr_os
|
Cross-site scripting (XSS) vulnerability in XZERES 442SR OS on 442SR wind turbines allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-2287
|
2024-11-21 11:48 |
2016-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269277
|
7.2 |
HIGH
Local
|
abb
|
panel_builder_800
|
Untrusted search path vulnerability in ABB Panel Builder 800 5.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-2281
|
2024-11-21 11:48 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269278
|
9.8 |
CRITICAL
Network
|
dameware
|
mini_remote_control
|
Stack-based buffer overflow in dwrcs.exe in the dwmrcs daemon in SolarWinds DameWare Mini Remote Control 12.0 allows remote attackers to execute arbitrary code via a crafted string.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-2345
|
2024-11-21 11:48 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269279
|
8.1 |
HIGH
Network
|
quagga
debian
|
quagga
debian_linux
|
The bgp_nlri_parse_vpnv4 function in bgp_mplsvpn.c in the VPNv4 NLRI parser in bgpd in Quagga before 1.0.20160309, when a certain VPNv4 configuration is used, relies on a Labeled-VPN SAFI routes-data…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-2342
|
2024-11-21 11:48 |
2016-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269280
|
6.5 |
MEDIUM
Network
|
siemens
|
simatic_s7_cpu_1200_firmware
|
Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors.
|
CWE-254
7PK - Security Features
|
CVE-2016-2846
|
2024-11-21 11:48 |
2016-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
