|
266381
|
5.3 |
MEDIUM
Network
|
emc
|
rsa_authentication_manager
|
CRLF injection vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified …
|
NVD-CWE-Other
|
CVE-2016-0902
|
2024-11-21 11:42 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266382
|
6.1 |
MEDIUM
Network
|
emc
|
rsa_authentication_manager
|
Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulne…
|
CWE-79
Cross-site Scripting
|
CVE-2016-0901
|
2024-11-21 11:42 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266383
|
6.1 |
MEDIUM
Network
|
emc
|
rsa_authentication_manager
|
Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulne…
|
CWE-79
Cross-site Scripting
|
CVE-2016-0900
|
2024-11-21 11:42 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266384
|
4.3 |
MEDIUM
Network
|
emc
|
rsa_data_loss_prevention
|
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attacks via web-site elements with crafted transparency or opacity.
|
CWE-20
Improper Input Validation
|
CVE-2016-0895
|
2024-11-21 11:42 |
2016-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266385
|
6.3 |
MEDIUM
Network
|
emc
|
rsa_data_loss_prevention
|
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended object access restrictions via a modified parameter.
|
CWE-254
7PK - Security Features
|
CVE-2016-0894
|
2024-11-21 11:42 |
2016-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266386
|
4.3 |
MEDIUM
Network
|
emc
|
rsa_data_loss_prevention
|
EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive information by reading error messages.
|
CWE-200
Information Exposure
|
CVE-2016-0893
|
2024-11-21 11:42 |
2016-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266387
|
6.1 |
MEDIUM
Network
|
emc
|
rsa_data_loss_prevention
|
Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-0892
|
2024-11-21 11:42 |
2016-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266388
|
6.8 |
MEDIUM
Local
|
linux
google
|
linux_kernel
android
|
The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in a certain Linux kernel backport in the linux package before 3.2.73-2+deb7u3 on Debian wheezy and the kernel package before 3.10.0-…
|
CWE-20
Improper Input Validation
|
CVE-2016-0774
|
2024-11-21 11:42 |
2016-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266389
|
6.1 |
MEDIUM
Network
|
oracle
|
weblogic_server
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors re…
|
NVD-CWE-noinfo
|
CVE-2016-0700
|
2024-11-21 11:42 |
2016-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266390
|
9.1 |
CRITICAL
Network
|
oracle
|
flexcube_direct_banking
|
Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.2 and 12.0.3 allows remote attackers to affect confidentiality and integrity via v…
|
NVD-CWE-noinfo
|
CVE-2016-0699
|
2024-11-21 11:42 |
2016-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
