|
265011
|
8.8 |
HIGH
Network
|
gnu
canonical
oracle
paloaltonetworks
|
wget
ubuntu_linux
solaris
pan-os
|
GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource.
|
NVD-CWE-noinfo
|
CVE-2016-4971
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265012
|
7.5 |
HIGH
Network
|
dotcms
|
dotcms
|
CRLF injection vulnerability in the send email functionality in dotCMS before 3.3.2 allows remote attackers to inject arbitrary email headers via CRLF sequences in the subject.
|
NVD-CWE-Other
|
CVE-2016-4803
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265013
|
8.8 |
HIGH
Network
|
f5
|
big-ip_wan_optimization_manager
big-ip_protocol_security_module
big-ip_application_acceleration_manager
big-ip_edge_gateway
big-ip_webaccelerator
big-ip_domain_name_system
big-ip_an…
|
F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended App…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5020
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265014
|
7.8 |
HIGH
Local
|
lenovo
|
solution_center
|
Lenovo Solution Center (LSC) before 3.3.003 allows local users to execute arbitrary code with LocalSystem privileges via vectors involving the LSC.Services.SystemService StartProxy command with a nam…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5249
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265015
|
5.5 |
MEDIUM
Local
|
lenovo
|
solution_center
|
The StopProxy command in LSC.Services.SystemService in Lenovo Solution Center before 3.3.003 allows local users to terminate arbitrary processes via the PID argument.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5248
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265016
|
5.5 |
MEDIUM
Local
|
huawei
|
mate_8_firmware
|
Buffer overflow in Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to cause a denial of se…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5232
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265017
|
7.8 |
HIGH
Local
|
huawei
|
mate_8_firmware
|
Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and delete use…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5231
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265018
|
8.8 |
HIGH
Network
|
huawei
|
mate_8_firmware
|
Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and control pa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5230
|
2024-11-21 11:53 |
2016-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265019
|
8.8 |
HIGH
Network
|
opera
|
opera_mail
|
Unspecified vulnerability in Opera Mail before 2016-02-16 on Windows allows user-assisted remote attackers to execute arbitrary code via a crafted e-mail message.
|
CWE-284
Improper Access Control
|
CVE-2016-5101
|
2024-11-21 11:53 |
2016-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265020
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The tipc_nl_compat_link_dump function in net/tipc/netlink_compat.c in the Linux kernel through 4.6.3 does not properly copy a certain string, which allows local users to obtain sensitive information …
|
CWE-200
Information Exposure
|
CVE-2016-5243
|
2024-11-21 11:53 |
2016-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
