|
266061
|
7.5 |
HIGH
Network
|
cloud_foundry
|
diego
|
Cloud Foundry Diego 0.1468.0 through 0.1470.0 allows remote attackers to cause a denial of service.
|
CWE-19
Data Processing Errors
|
CVE-2016-3091
|
2024-11-21 11:49 |
2017-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266062
|
4.3 |
MEDIUM
Network
|
ibm
|
security_access_manager_9.0_firmware
|
IBM Security Access Manager for Web 9.0.0 could allow an authenticated user to access some privileged functionality of the server. IBM X-Force ID: 114714.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-3051
|
2024-11-21 11:49 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266063
|
6.5 |
MEDIUM
Network
|
ibm
|
security_access_manager_9.0_firmware
|
IBM Security Access Manager for Web 9.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 114462.
|
CWE-326
Inadequate Encryption Strength
|
CVE-2016-3019
|
2024-11-21 11:49 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266064
|
6.5 |
MEDIUM
Network
|
redhat
|
ovirt-engine
|
The VersionMapper.fromKernelVersionString method in oVirt Engine allows remote authenticated users to cause a denial of service (process crash) for all VMs.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-3077
|
2024-11-21 11:49 |
2017-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266065
|
6.5 |
MEDIUM
Network
|
spice-gtk_project
|
spice-gtk
|
The spice-gtk widget allows remote authenticated users to obtain information from the host clipboard.
|
CWE-200
Information Exposure
|
CVE-2016-3066
|
2024-11-21 11:49 |
2017-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266066
|
7.5 |
HIGH
Network
|
apache
|
hive
|
Apache Hive (JDBC + HiveServer2) implements SSL for plain TCP and HTTP connections (it supports both transport modes). While validating the server's certificate during the connection setup, the clien…
|
CWE-295
Improper Certificate Validation
|
CVE-2016-3083
|
2024-11-21 11:49 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266067
|
8.1 |
HIGH
Network
|
pivotal_software
cloudfoundry
|
cloud_foundry
cloud_foundry_uaa
cloud_foundry_elastic_runtime
login-server
cloud_foundry_uaa_bosh
|
The UAA reset password flow in Cloud Foundry release v236 and earlier versions, UAA release v3.3.0 and earlier versions, all versions of Login-server, UAA release v10 and earlier versions and Pivotal…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-3084
|
2024-11-21 11:49 |
2017-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266068
|
8.8 |
HIGH
Network
|
synacor
|
zimbra_collaboration_suite
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Admin Console in Zimbra Collaboration before 8.6.0 Patch 8 allow remote attackers to hijack the authentication of administrators for …
|
CWE-352
Origin Validation Error
|
CVE-2016-3403
|
2024-11-21 11:49 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266069
|
5.4 |
MEDIUM
Network
|
ibm
|
cognos_analytics
|
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially …
|
CWE-79
Cross-site Scripting
|
CVE-2016-3032
|
2024-11-21 11:49 |
2017-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266070
|
7.5 |
HIGH
Network
|
ibm
|
bigfix_remote_control
|
IBM BigFix Remote Control 9.1.3 could allow a remote attacker to perform actions reserved for an administrator without authentication. IBM X-Force ID: 5512.
|
CWE-284
Improper Access Control
|
CVE-2016-2930
|
2024-11-21 11:49 |
2017-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
