|
264561
|
9.8 |
CRITICAL
Network
|
ibm
|
system_storage_ts3100-ts3200_tape_library
|
IBM System Storage TS3100-TS3200 Tape Library could allow an unauthenticated user with access to the company network, to change a user's password and gain remote access to the system.
|
CWE-284
Improper Access Control
|
CVE-2016-9005
|
2024-11-21 12:00 |
2017-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264562
|
9.8 |
CRITICAL
Network
|
ibm
|
dashdb_local
|
IBM dashDB Local uses hard-coded credentials that could allow a remote attacker to gain access to the Docker container or database.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2016-8954
|
2024-11-21 12:00 |
2017-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264563
|
7.5 |
HIGH
Network
|
fedoraproject
artifex
|
fedora
mujs
|
Integer overflow in the js_regcomp function in regexp.c in Artifex Software, Inc. MuJS before commit b6de34ac6d8bb7dd5461c57940acfbd3ee7fd93e allows attackers to cause a denial of service (applicatio…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9108
|
2024-11-21 12:00 |
2017-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264564
|
3.3 |
LOW
Local
|
webmproject
fedoraproject
|
libwebp
fedora
|
Multiple integer overflows in libwebp allows attackers to have unspecified impact via unknown vectors.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9085
|
2024-11-21 12:00 |
2017-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264565
|
5.5 |
MEDIUM
Local
|
cairographics
|
cairo
|
Integer overflow in the write_png function in cairo 1.14.6 allows remote attackers to cause a denial of service (invalid pointer dereference) via a large svg file.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9082
|
2024-11-21 12:00 |
2017-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264566
|
7.5 |
HIGH
Network
|
ibm
|
urbancode_deploy
|
IBM UrbanCode Deploy could allow a malicious user to access the Agent Relay ActiveMQ Broker JMX interface and run plugins on the agent.
|
CWE-284
Improper Access Control
|
CVE-2016-9008
|
2024-11-21 12:00 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264567
|
6.1 |
MEDIUM
Network
|
ibm
|
infosphere_information_server_on_cloud
infosphere_datastage
|
IBM InfoSphere DataStage is vulnerable to cross-frame scripting, caused by insufficient HTML iframe protection. A remote attacker could exploit this vulnerability using a specially-crafted URL to nav…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9000
|
2024-11-21 12:00 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264568
|
5.4 |
MEDIUM
Network
|
ibm
|
infosphere_information_server
infosphere_information_server_on_cloud
infosphere_datastage
|
IBM InfoSphere Information Server contains a Path-relative stylesheet import vulnerability that allows attackers to render a page in quirks mode thereby facilitating an attacker to inject malicious C…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8999
|
2024-11-21 12:00 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264569
|
5.3 |
MEDIUM
Network
|
ibm
|
infosphere_datastage
|
IBM InfoSphere Information Server stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer hea…
|
CWE-200
Information Exposure
|
CVE-2016-8982
|
2024-11-21 12:00 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264570
|
5.3 |
MEDIUM
Network
|
ibm
|
license_metric_tool
bigfix_inventory
|
IBM BigFix Inventory v9 could disclose sensitive information to an unauthorized user using HTTP GET requests. This information could be used to mount further attacks against the system.
|
CWE-200
Information Exposure
|
CVE-2016-8977
|
2024-11-21 12:00 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
