|
268841
|
7.5 |
HIGH
Network
|
oneplus
|
oxygenos
|
An issue was discovered on OnePlus devices such as the 3T. The OnePlus OTA Updater pushes the signed-OTA image over HTTP without TLS. While it does not allow for installation of arbitrary OTAs (due t…
|
CWE-284
Improper Access Control
|
CVE-2016-10370
|
2024-11-21 11:43 |
2017-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268842
|
5.5 |
MEDIUM
Local
|
libtiff
|
libtiff
|
The TIFFWriteDirectoryTagCheckedRational function in tif_dirwrite.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF f…
|
CWE-20
Improper Input Validation
|
CVE-2016-10371
|
2024-11-21 11:43 |
2017-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268843
|
7.8 |
HIGH
Local
|
lxterminal_project
|
lxterminal
|
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypass…
|
CWE-284
Improper Access Control
|
CVE-2016-10369
|
2024-11-21 11:43 |
2017-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268844
|
6.1 |
MEDIUM
Network
|
opsview
|
opsview
|
Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote attackers …
|
CWE-601
Open Redirect
|
CVE-2016-10368
|
2024-11-21 11:43 |
2017-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268845
|
7.5 |
HIGH
Network
|
opsview
|
opsview
|
In Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch), an unauthenticated Directory Traversal vulnerabilit…
|
CWE-22
Path Traversal
|
CVE-2016-10367
|
2024-11-21 11:43 |
2017-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268846
|
9.8 |
CRITICAL
Network
|
debian
fedoraproject
tug
|
debian_linux
fedora
tex_live
|
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
|
CWE-20
Improper Input Validation
|
CVE-2016-10243
|
2024-11-21 11:43 |
2017-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268847
|
5.5 |
MEDIUM
Local
|
telegram_desktop
|
telegram_desktop
|
Telegram Desktop 0.10.19 uses 0755 permissions for $HOME/.TelegramDesktop, which allows local users to obtain sensitive authentication information via standard filesystem operations.
|
CWE-200
Information Exposure
|
CVE-2016-10351
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268848
|
5.5 |
MEDIUM
Local
|
libarchive
|
libarchive
|
The archive_read_format_cab_read_header function in archive_read_support_format_cab.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and applica…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10350
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268849
|
5.5 |
MEDIUM
Local
|
libarchive
|
libarchive
|
The archive_le32dec function in archive_endian.h in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10349
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268850
|
7.5 |
HIGH
Network
|
unrtf_project
|
unrtf
|
Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to the (1) cmd_expand function, (2) cmd_emboss function, or (3)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10091
|
2024-11-21 11:43 |
2017-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
