|
265621
|
7.5 |
HIGH
Network
|
ibm
|
cognos_business_intelligence
|
IBM Cognos TM1 10.1 and 10.2 is vulnerable to a denial of service, caused by a stack-based buffer overflow when parsing packets. A remote attacker could exploit this vulnerability to cause a denial o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-3036
|
2024-11-21 11:49 |
2017-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265622
|
7.5 |
HIGH
Network
|
mongodb
|
mongodb
|
mongod in MongoDB 2.6, when using 2.4-style users, and 2.4 allow remote attackers to cause a denial of service (memory consumption and process termination) by leveraging in-memory database representa…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-3104
|
2024-11-21 11:49 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265623
|
5.3 |
MEDIUM
Network
|
pulpproject
|
pulp
|
Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner.
|
CWE-362
Race Condition
|
CVE-2016-3106
|
2024-11-21 11:49 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265624
|
5.4 |
MEDIUM
Network
|
ibm
|
cognos_analytics
|
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially …
|
CWE-79
Cross-site Scripting
|
CVE-2016-3031
|
2024-11-21 11:49 |
2017-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265625
|
5.4 |
MEDIUM
Network
|
ibm
|
cognos_analytics
|
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially …
|
CWE-79
Cross-site Scripting
|
CVE-2016-3015
|
2024-11-21 11:49 |
2017-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265626
|
5.5 |
MEDIUM
Local
|
miniupnp_project
|
minissdpd
|
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (invalid free and daemon crash) via vectors related to error handling.
|
CWE-416
Use After Free
|
CVE-2016-3179
|
2024-11-21 11:49 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265627
|
5.5 |
MEDIUM
Local
|
miniupnp_project
|
minissdpd
|
The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (out-of-bounds memory access and daemon crash) via vectors involving a negative …
|
CWE-125
Out-of-bounds Read
|
CVE-2016-3178
|
2024-11-21 11:49 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265628
|
6.8 |
MEDIUM
Physics
|
ibm
|
rational_collaborative_lifecycle_management
|
An undisclosed vulnerability in the CLM applications in IBM Jazz Team Server may allow unauthorized access to user credentials. IBM Reference #: 1999965.
|
CWE-200
Information Exposure
|
CVE-2016-2981
|
2024-11-21 11:49 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265629
|
7.5 |
HIGH
Network
|
blackberry
|
good_control_server
|
An information disclosure vulnerability in the logging implementation of BlackBerry Good Control Server versions earlier than 2.3.53.62 allows remote attackers to gain and use logged encryption keys …
|
CWE-200
Information Exposure
|
CVE-2016-3127
|
2024-11-21 11:49 |
2017-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265630
|
5.9 |
MEDIUM
Network
|
ibm
|
websphere_mq
|
Under non-standard configurations, IBM WebSphere MQ might send password data in clear text over the network. This data could be intercepted using man in the middle techniques.
|
CWE-200
Information Exposure
|
CVE-2016-3052
|
2024-11-21 11:49 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
