|
265321
|
5.9 |
MEDIUM
Network
|
f5
|
big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<…
|
Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1 and 12.1.x before 12.1.2, when configured to parse RADIUS messages via an iRule, allow remote attackers to cause a denial of service (Tra…
|
CWE-20
Improper Input Validation
|
CVE-2016-5024
|
2024-11-21 11:53 |
2017-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265322
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 54.0 for iOS had insufficient validation of URLs for windows open by DOM, which allowed a remote attacker to bypass restrictions on navigation to certain URL schemes via crafte…
|
CWE-20
Improper Input Validation
|
CVE-2016-5193
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265323
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Blink in Google Chrome prior to 54.0.2840.59 for Windows missed a CORS check on redirect in TextTrackLoader, which allowed a remote attacker to bypass cross-origin restrictions via crafted HTML pages.
|
CWE-284
Improper Access Control
|
CVE-2016-5192
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265324
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Bookmark handling in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android had insufficient validation of supplied data, which allowed a remote attacker to inject …
|
CWE-79
Cross-site Scripting
|
CVE-2016-5191
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265325
|
6.3 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled object lifecycles during shutdown, which allowed a remote attacker to perform an out of b…
|
CWE-416
Use After Free
|
CVE-2016-5190
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265326
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android permitted navigation to blob URLs with non-canonical origins, which allowed a remote attacker to spoof the co…
|
CWE-284
Improper Access Control
|
CVE-2016-5189
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265327
|
4.3 |
MEDIUM
Network
|
google
|
chrome
|
Multiple issues in Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux allow a remote attacker to spoof various parts of browser UI via crafted HTML pages.
|
CWE-20
Improper Input Validation
|
CVE-2016-5188
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265328
|
6.5 |
MEDIUM
Network
|
google
|
chrome
|
Google Chrome prior to 54.0.2840.85 for Android incorrectly handled rapid transition into and out of full screen mode, which allowed a remote attacker to spoof the contents of the Omnibox (URL bar) v…
|
CWE-20
Improper Input Validation
|
CVE-2016-5187
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265329
|
5.3 |
MEDIUM
Local
|
google
|
chrome
|
Devtools in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly handled objects after a tab crash, which allowed a remote attacker to perform an out …
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5186
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265330
|
8.8 |
HIGH
Network
|
google
|
chrome
|
Blink in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android incorrectly allowed reentrance of FrameView::updateLifecyclePhasesInternal(), which allowed a remote…
|
CWE-416
Use After Free
|
CVE-2016-5185
|
2024-11-21 11:53 |
2016-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
