|
264561
|
5.5 |
MEDIUM
Local
|
jasper_project
redhat
debian
|
jasper
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
debian_linux
|
JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.
|
CWE-416
Use After Free
|
CVE-2016-9591
|
2024-11-21 12:01 |
2018-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264562
|
5.3 |
MEDIUM
Network
|
redhat
|
jboss_enterprise_application_platform
|
Red Hat JBoss EAP version 5 is vulnerable to a deserialization of untrusted data in the JMX endpoint when deserializes the credentials passed to it. An attacker could exploit this vulnerability resul…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2016-9585
|
2024-11-21 12:01 |
2018-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264563
|
9.8 |
CRITICAL
Network
|
carbonblack
|
carbon_black
|
A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions.
|
CWE-254
7PK - Security Features
|
CVE-2016-9568
|
2024-11-21 12:01 |
2018-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264564
|
7.5 |
HIGH
Network
|
carbonblack
|
carbon_black
|
cb.exe in Carbon Black 5.1.1.60603 allows attackers to cause a denial of service (out-of-bounds read, invalid pointer dereference, and application crash) by leveraging access to the NetMon named pipe.
|
CWE-125
CWE-476
Out-of-bounds Read
NULL Pointer Dereference
|
CVE-2016-9570
|
2024-11-21 12:01 |
2018-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264565
|
4.4 |
MEDIUM
Local
|
carbonblack
|
carbon_black
|
The cbstream.sys driver in Carbon Black 5.1.1.60603 allows local users with admin privileges to cause a denial of service (out-of-bounds read and system crash) via a large counter value in an 0x62430…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9569
|
2024-11-21 12:01 |
2018-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264566
|
4.2 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 119737.
|
CWE-284
Improper Access Control
|
CVE-2016-9722
|
2024-11-21 12:01 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264567
|
5.4 |
MEDIUM
Network
|
ibm
|
curam_social_program_management
|
IBM Curam Social Program Management 6.0, 6.1, 6.2 and 7.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9732
|
2024-11-21 12:01 |
2017-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264568
|
5.7 |
MEDIUM
Network
|
ibm
|
infosphere_master_data_management_server
|
IBM InfoSphere Master Data Management Server 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malici…
|
CWE-20
Improper Input Validation
|
CVE-2016-9719
|
2024-11-21 12:01 |
2017-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264569
|
5.4 |
MEDIUM
Network
|
ibm
|
infosphere_master_data_management_server
|
IBM InfoSphere Master Data Management Server 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the We…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9718
|
2024-11-21 12:01 |
2017-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264570
|
6.5 |
MEDIUM
Network
|
ibm
|
infosphere_master_data_management_server
|
HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 product. It enables attackers by exposing the presence of duplicated pa…
|
CWE-20
Improper Input Validation
|
CVE-2016-9717
|
2024-11-21 12:01 |
2017-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
