|
267691
|
7.5 |
HIGH
Network
|
synology
|
photo_station
|
Directory traversal vulnerability in download.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to read arbitrary files via a full pathname in the id parameter.
|
CWE-22
Path Traversal
|
CVE-2016-10331
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267692
|
7.1 |
HIGH
Local
|
synology
|
photo_station
|
Directory traversal vulnerability in synophoto_dsm_user, a SUID program, as used in Synology Photo Station before 6.5.3-3226 allows local users to write to arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2016-10330
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267693
|
9.8 |
CRITICAL
Network
|
synology
|
photo_station
|
Command injection vulnerability in login.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to execute arbitrary code via shell metacharacters in the crafted 'X-Forwarded-For' he…
|
CWE-77
Command Injection
|
CVE-2016-10329
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267694
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm shared memory driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderat…
|
CWE-200
Information Exposure
|
CVE-2016-10296
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267695
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm LED driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because …
|
CWE-200
Information Exposure
|
CVE-2016-10295
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267696
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm power driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate becaus…
|
CWE-200
Information Exposure
|
CVE-2016-10294
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267697
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate becaus…
|
CWE-200
Information Exposure
|
CVE-2016-10293
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267698
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
A denial of service vulnerability in the Qualcomm Wi-Fi driver could enable a proximate attacker to cause a denial of service in the Wi-Fi subsystem. This issue is rated as High due to the possibilit…
|
CWE-399
Resource Management Errors
|
CVE-2016-10292
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267699
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the Qualcomm Slimbus driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Hi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10291
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267700
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the Qualcomm shared memory driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10290
|
2024-11-21 11:43 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
