|
265071
|
7.5 |
HIGH
Network
|
opensuse
atheme
debian
|
leap
opensuse
atheme
debian_linux
|
Buffer overflow in the xmlrpc_char_encode function in modules/transport/xmlrpc/xmlrpclib.c in Atheme before 7.2.7 allows remote attackers to cause a denial of service via vectors related to XMLRPC re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4478
|
2024-11-21 11:52 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265072
|
7.5 |
HIGH
Network
|
opensuse
quassel-irc
fedoraproject
|
leap
opensuse
quassel
fedora
|
The onReadyRead function in core/coreauthhandler.cpp in Quassel before 0.12.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via invalid handshake data.
|
NVD-CWE-Other
|
CVE-2016-4414
|
2024-11-21 11:52 |
2016-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265073
|
5.9 |
MEDIUM
Network
|
opensuse
gnu
canonical
|
leap
opensuse
glibc
ubuntu_linux
|
Stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to cause a denial of service (crash) or possibly unspecif…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-4429
|
2024-11-21 11:52 |
2016-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265074
|
3.3 |
LOW
Local
|
abb
|
pcm600
|
ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2016-4527
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265075
|
6.5 |
MEDIUM
Local
|
abb
|
pcm600
|
ABB PCM600 before 2.7 improperly stores OPC Server IEC61850 passwords in unspecified temporary circumstances, which allows local users to obtain sensitive information via unknown vectors.
|
CWE-310
CWE-284
Cryptographic Issues
Improper Access Control
|
CVE-2016-4524
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265076
|
3.3 |
LOW
Local
|
abb
|
pcm600
|
ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-4516
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265077
|
2.8 |
LOW
Local
|
abb
|
pcm600
|
ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to t…
|
CWE-310
Cryptographic Issues
|
CVE-2016-4511
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265078
|
5.3 |
MEDIUM
Network
|
kmc_controls
|
bac-5051e_firmware
|
KMC Controls BAC-5051E devices with firmware before E0.2.0.2 allow remote attackers to bypass intended access restrictions and read a configuration file via unspecified vectors.
|
CWE-310
CWE-284
Cryptographic Issues
Improper Access Control
|
CVE-2016-4495
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265079
|
8.8 |
HIGH
Network
|
kmc_controls
|
bac-5051e_firmware
|
Cross-site request forgery (CSRF) vulnerability on KMC Controls BAC-5051E devices with firmware before E0.2.0.2 allows remote attackers to hijack the authentication of unspecified victims for request…
|
CWE-352
Origin Validation Error
|
CVE-2016-4494
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265080
|
7.1 |
HIGH
Local
|
debian
canonical
xmlsoft
|
debian_linux
ubuntu_linux
libxml2
|
XML external entity (XXE) vulnerability in the xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.4, when not in validating mode, allows context-dependent attackers to read arbitra…
|
CWE-20
Improper Input Validation
|
CVE-2016-4449
|
2024-11-21 11:52 |
2016-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
