|
264651
|
6.5 |
MEDIUM
Network
|
openstack
|
glance
|
A vulnerability was found in Openstack Glance. No limits are enforced within the Glance image service for both v1 and v2 `/images` API POST method for authenticated users, resulting in possible denia…
|
-
|
CVE-2016-8611
|
2024-11-21 11:59 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264652
|
7.8 |
HIGH
Local
|
redhat
|
jboss_enterprise_application_platform
|
It was discovered that EAP packages in certain versions of Red Hat Enterprise Linux use incorrect permissions for /etc/sysconfig/jbossas configuration files. The file is writable to jboss group (root…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8657
|
2024-11-21 11:59 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264653
|
6.5 |
MEDIUM
Network
|
redhat
|
ceph
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
|
A flaw was found in Red Hat Ceph before 0.94.9-8. The way Ceph Object Gateway handles POST object requests permits an authenticated attacker to launch a denial of service attack by sending null or sp…
|
CWE-20
Improper Input Validation
|
CVE-2016-8626
|
2024-11-21 11:59 |
2018-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264654
|
4.9 |
MEDIUM
Network
|
redhat
|
ansible_engine
virtualization
|
An input validation vulnerability was found in Ansible's mysql_user module before 2.2.1.0, which may fail to correctly change a password in certain circumstances. Thus the previous password would sti…
|
-
|
CVE-2016-8647
|
2024-11-21 11:59 |
2018-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264655
|
7.8 |
HIGH
Local
|
cryptic-apps
|
hopper_disassembler
|
An exploitable out of bounds write vulnerability exists in the parsing of ELF Section Headers of Hopper Disassembler 3.11.20. A specially crafted ELF file can cause attacker controlled pointer arithm…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-8390
|
2024-11-21 11:59 |
2018-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264656
|
7.8 |
HIGH
Local
|
redhat
|
jboss_enterprise_application_platform
|
Jboss jbossas before versions 5.2.0-23, 6.4.13, 7.0.5 is vulnerable to an unsafe file handling in the jboss init script which could result in local privilege escalation.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8656
|
2024-11-21 11:59 |
2018-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264657
|
6.5 |
MEDIUM
Network
|
redhat
|
jboss_enterprise_application_platform
keycloak
|
admin-cli before versions 3.0.0.alpha25, 2.2.1.cr2 is vulnerable to an EAP feature to download server log files that allows logs to be available via GET requests making them vulnerable to cross-origi…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-8627
|
2024-11-21 11:59 |
2018-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264658
|
7.8 |
HIGH
Local
|
sophos
|
invincea_dell_protected_workspace
|
Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. Weak restrictions on the driver communication channel and additional insufficient…
|
CWE-275
Permission Issues
|
CVE-2016-8732
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264659
|
7.8 |
HIGH
Local
|
corel
|
coreldraw_photo_paint_x8
|
An of bound write / memory corruption vulnerability exists in the GIF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. A specially crafted GIF file can cause a vulnerability resulting in pote…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-8730
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264660
|
7.8 |
HIGH
Local
|
artifex
|
mupdf
|
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corrup…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8729
|
2024-11-21 11:59 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
