|
266891
|
5.5 |
MEDIUM
Local
|
xen
|
xen
|
VMX in Xen 4.6.x and earlier, when using an Intel or Cyrix CPU, allows local HVM guest users to cause a denial of service (guest crash) via vectors related to a non-canonical RIP.
|
NVD-CWE-Other
|
CVE-2016-2271
|
2024-11-21 11:48 |
2016-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266892
|
6.8 |
MEDIUM
Network
|
debian
fedoraproject
xen
oracle
|
debian_linux
fedora
xen
vm_server
|
Xen 4.6.x and earlier allows local guest administrators to cause a denial of service (host reboot) via vectors related to multiple mappings of MMIO pages with different cachability settings.
|
CWE-20
Improper Input Validation
|
CVE-2016-2270
|
2024-11-21 11:48 |
2016-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266893
|
5.3 |
MEDIUM
Adjacent
|
belden
|
hirschmann_firmware
hirschmann_l2b
|
The password-sync feature on Belden Hirschmann Classic Platform switches L2B before 05.3.07 and L2E, L2P, L3E, and L3P before 09.0.06 sets an SNMP community to the same string as the administrator pa…
|
CWE-200
Information Exposure
|
CVE-2016-2509
|
2024-11-21 11:48 |
2016-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266894
|
6.5 |
MEDIUM
Adjacent
|
comcast
|
xfinity_home_security_system
|
Comcast XFINITY Home Security System does not properly maintain base-station communication, which allows physically proximate attackers to defeat sensor functionality by interfering with ZigBee 2.4 G…
|
CWE-254
7PK - Security Features
|
CVE-2016-2398
|
2024-11-21 11:48 |
2016-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266895
|
9.8 |
CRITICAL
Network
|
sonicwall
|
uma_em5000_firmware
analyzer
global_management_system
|
The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote attackers to deserialize and execute arbitrary Java code via crafted …
|
CWE-77
Command Injection
|
CVE-2016-2397
|
2024-11-21 11:48 |
2016-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266896
|
9.9 |
CRITICAL
Network
|
sonicwall
|
analyzer
global_management_system
uma_em5000_firmware
|
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via ve…
|
CWE-77
Command Injection
|
CVE-2016-2396
|
2024-11-21 11:48 |
2016-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266897
|
7.5 |
HIGH
Network
|
sap
|
netweaver
|
Directory traversal vulnerability in the GetFileList function in the SAP Manufacturing Integration and Intelligence (xMII) component 15.0 for SAP NetWeaver 7.4 allows remote attackers to read arbitra…
|
CWE-22
Path Traversal
|
CVE-2016-2389
|
2024-11-21 11:48 |
2016-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266898
|
6.1 |
MEDIUM
Network
|
sap
|
netweaver
|
Multiple cross-site scripting (XSS) vulnerabilities in the Java Proxy Runtime ProxyServer servlet in SAP NetWeaver 7.4 allow remote attackers to inject arbitrary web script or HTML via the (1) ns or …
|
CWE-79
Cross-site Scripting
|
CVE-2016-2387
|
2024-11-21 11:48 |
2016-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266899
|
4.9 |
MEDIUM
Network
|
huawei
|
mt882_firmware
|
GlobespanVirata ftpd 1.0, as used on Huawei SmartAX MT882 devices V200R002B022 Arg, allows remote authenticated users to cause a denial of service (device outage) by using the FTP MKD command to crea…
|
CWE-17
Code
|
CVE-2016-2314
|
2024-11-21 11:48 |
2016-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266900
|
9.8 |
CRITICAL
Network
|
huawei
|
mt882_firmware
|
The Windows-based Host Interface Program (WHIP) service on Huawei SmartAX MT882 devices V200R002B022 Arg relies on the client to send a length field that is consistent with a buffer size, which allow…
|
CWE-19
Data Processing Errors
|
CVE-2016-2231
|
2024-11-21 11:48 |
2016-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
