|
269011
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in Qualcomm components including the camera driver and video driver could enable a local malicious application to access data outside of its permission levels.…
|
CWE-200
Information Exposure
|
CVE-2016-6757
|
2024-11-21 11:56 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269012
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in Qualcomm components including the camera driver and video driver could enable a local malicious application to access data outside of its permission levels.…
|
CWE-200
Information Exposure
|
CVE-2016-6756
|
2024-11-21 11:56 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269013
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the Qualcomm camera driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Hig…
|
CWE-284
Improper Access Control
|
CVE-2016-6755
|
2024-11-21 11:56 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269014
|
7.5 |
HIGH
Network
|
netapp
|
metrocluster_tiebreaker
|
MetroCluster Tiebreaker for clustered Data ONTAP in versions before 1.2 discloses sensitive information in cleartext which may be viewed by an unauthenticated user.
|
CWE-200
Information Exposure
|
CVE-2016-6820
|
2024-11-21 11:56 |
2017-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269015
|
6.1 |
MEDIUM
Network
|
mantisbt
|
mantisbt
|
Cross-site scripting (XSS) vulnerability in MantisBT Filter API in MantisBT versions before 1.2.19, and versions 2.0.0-beta1, 1.3.0-beta1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6837
|
2024-11-21 11:56 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269016
|
7.5 |
HIGH
Network
|
call-cc
|
chicken
|
The "process-execute" and "process-spawn" procedures did not free memory correctly when the execve() call failed, resulting in a memory leak. This could be abused by an attacker to cause resource exh…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2016-6831
|
2024-11-21 11:56 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269017
|
9.8 |
CRITICAL
Network
|
call-cc
|
chicken
|
The "process-execute" and "process-spawn" procedures in CHICKEN Scheme used fixed-size buffers for holding the arguments and environment variables to use in its execve() call. This would allow user-s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6830
|
2024-11-21 11:56 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269018
|
7.5 |
HIGH
Network
|
python
|
hpack
hyper
|
A HTTP/2 implementation built using any version of the Python HPACK library between v1.0.0 and v2.2.0 could be targeted for a denial of service attack, specifically a so-called "HPACK Bomb" attack. T…
|
CWE-399
Resource Management Errors
|
CVE-2016-6581
|
2024-11-21 11:56 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269019
|
7.5 |
HIGH
Network
|
python
|
python_priority_library
|
A HTTP/2 implementation built using any version of the Python priority library prior to version 1.2.0 could be targeted by a malicious peer by having that peer assign priority information for every p…
|
CWE-399
Resource Management Errors
|
CVE-2016-6580
|
2024-11-21 11:56 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269020
|
6.5 |
MEDIUM
Network
|
docker
|
docker
|
The SwarmKit toolkit 1.12.0 for Docker allows remote authenticated users to cause a denial of service (prevention of cluster joins) via a long sequence of join and quit actions. NOTE: the vendor dis…
|
CWE-399
Resource Management Errors
|
CVE-2016-6595
|
2024-11-21 11:56 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
