|
267681
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
IOGraphics in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerabilit…
|
CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2016-1746
|
2024-11-21 11:47 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267682
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
IOFireWireFamily in Apple OS X before 10.11.4 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2016-1745
|
2024-11-21 11:47 |
2016-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267683
|
9.8 |
CRITICAL
Network
|
hp
|
service_manager
|
HPE Service Manager (SM) 9.3x before 9.35 P4 and 9.4x before 9.41.P2 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collecti…
|
CWE-20
Improper Input Validation
|
CVE-2016-1998
|
2024-11-21 11:47 |
2016-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267684
|
9.8 |
CRITICAL
Network
|
hp
|
operations_orchestration
operations_orchestration_content
|
HPE Operations Orchestration 10.x before 10.51 and Operations Orchestration content before 1.7.0 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to …
|
CWE-20
Improper Input Validation
|
CVE-2016-1997
|
2024-11-21 11:47 |
2016-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267685
|
7.7 |
HIGH
Local
|
hp
|
system_management_homepage
|
HPE System Management Homepage before 7.5.4 allows local users to obtain sensitive information or modify data via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2016-1996
|
2024-11-21 11:47 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267686
|
9.8 |
CRITICAL
Network
|
hp
|
system_management_homepage
|
HPE System Management Homepage before 7.5.4 allows remote attackers to execute arbitrary code via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2016-1995
|
2024-11-21 11:47 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267687
|
6.5 |
MEDIUM
Network
|
hp
|
system_management_homepage
|
HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-1994
|
2024-11-21 11:47 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267688
|
8.1 |
HIGH
Network
|
hp
|
system_management_homepage
|
HPE System Management Homepage before 7.5.4 allows remote authenticated users to obtain sensitive information or modify data via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2016-1993
|
2024-11-21 11:47 |
2016-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267689
|
6.5 |
MEDIUM
Network
|
hp
|
enterprise_security_manager_express
enterprise_security_manager
|
HPE ArcSight ESM before 6.8c, and ArcSight ESM Express before 6.9.1, allows remote authenticated users to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-1992
|
2024-11-21 11:47 |
2016-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267690
|
5.4 |
MEDIUM
Network
|
vmware
|
vrealize_business_advanced_and_enterprise
|
Cross-site scripting (XSS) vulnerability in VMware vRealize Business Advanced and Enterprise 8.x before 8.2.5 on Linux allows remote authenticated users to inject arbitrary web script or HTML via uns…
|
CWE-79
Cross-site Scripting
|
CVE-2016-2075
|
2024-11-21 11:47 |
2016-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
