|
264821
|
7.8 |
HIGH
Local
|
artifex
|
mupdf
|
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corrup…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8729
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264822
|
7.8 |
HIGH
Local
|
artifex
|
mupdf
|
An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap m…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-8728
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264823
|
8.8 |
HIGH
Network
|
marklogic
|
marklogic
|
An exploitable heap corruption vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8384
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264824
|
8.8 |
HIGH
Network
|
marklogic
|
marklogic
|
An exploitable heap corruption vulnerability exists in the Doc_GetFontTable functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8383
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264825
|
8.8 |
HIGH
Network
|
marklogic
|
marklogic
|
An exploitable heap corruption vulnerability exists in the Doc_SetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8382
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264826
|
7.5 |
HIGH
Network
|
pivotal_software
|
gemfire
|
Pivotal Gemfire for PCF, versions 1.6.x prior to 1.6.5.0 and 1.7.x prior to 1.7.1.0, contain an information disclosure vulnerability. The application inadvertently exposed WAN replication credentials…
|
CWE-200
Information Exposure
|
CVE-2016-8220
|
2024-11-21 11:59 |
2018-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264827
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the NVIDIA GPU driver. Product: Android. Versions: Android kernel. Android ID: A-31799863. References: N-CVE-2016-8482.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8482
|
2024-11-21 11:59 |
2018-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264828
|
7.3 |
HIGH
Network
|
phoenixcontact
|
ilc_plcs_firmware
|
The web server in Phoenix Contact ILC PLCs allows access to read and write PLC variables without authentication.
|
CWE-287
Improper Authentication
|
CVE-2016-8380
|
2024-11-21 11:59 |
2018-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264829
|
7.3 |
HIGH
Network
|
phoenixcontact
|
ilc_plcs_firmware
|
The web server in Phoenix Contact ILC PLCs can be accessed without authenticating even if the authentication mechanism is enabled.
|
CWE-287
Improper Authentication
|
CVE-2016-8371
|
2024-11-21 11:59 |
2018-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264830
|
7.3 |
HIGH
Network
|
phoenixcontact
|
ilc_plcs_firmware
|
Webvisit in Phoenix Contact ILC PLCs offers a password macro to protect HMI pages on the PLC against casual or coincidental opening of HMI pages by the user. The password macro can be configured in a…
|
CWE-255
Credentials Management
|
CVE-2016-8366
|
2024-11-21 11:59 |
2018-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
