|
267041
|
8.8 |
HIGH
Network
|
blackberry
|
blackberry_enterprise_service
|
Multiple SQL injection vulnerabilities in the com.rim.mdm.ui.server.ImageServlet servlet in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to execute arbitrar…
|
CWE-89
SQL Injection
|
CVE-2016-1914
|
2024-11-21 11:47 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267042
|
9.8 |
CRITICAL
Network
|
openbsd
debian
oracle
redhat
|
openssh
debian_linux
linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
enterprise_linux_server
enterprise_lin…
|
The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to t…
|
CWE-287
Improper Authentication
|
CVE-2016-1908
|
2024-11-21 11:47 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267043
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
Integer overflow in the bhyve hypervisor in FreeBSD 10.1, 10.2, 10.3, and 11.0 when configured with a large amount of guest memory, allows local users to gain privilege via a crafted device descripto…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-1889
|
2024-11-21 11:47 |
2017-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267044
|
7.5 |
HIGH
Network
|
freebsd
|
freebsd
|
The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows remote attackers to inject arguments to login and bypass authentication via vectors involving a "sequence of memory allocation fa…
|
CWE-287
Improper Authentication
|
CVE-2016-1888
|
2024-11-21 11:47 |
2017-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267045
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
The issetugid system call in the Linux compatibility layer in FreeBSD 9.3, 10.1, and 10.2 allows local users to gain privilege via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1883
|
2024-11-21 11:47 |
2017-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267046
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
The kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to cause a denial of service (crash) or potentially gain privilege via a crafted Linux compatibility layer setgroups system call.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1881
|
2024-11-21 11:47 |
2017-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267047
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
The Linux compatibility layer in the kernel in FreeBSD 9.3, 10.1, and 10.2 allows local users to read portions of kernel memory and potentially gain privilege via unspecified vectors, related to "han…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1880
|
2024-11-21 11:47 |
2017-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267048
|
9.8 |
CRITICAL
Network
|
busybox
debian
canonical
|
busybox
debian_linux
ubuntu_linux
|
Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to have unspecified impact via vectors involving OPTION_6RD parsing.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-2148
|
2024-11-21 11:47 |
2017-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267049
|
7.5 |
HIGH
Network
|
busybox
debian
canonical
|
busybox
debian_linux
ubuntu_linux
|
Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-o…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-2147
|
2024-11-21 11:47 |
2017-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267050
|
8.1 |
HIGH
Network
|
netapp
|
oncommand_workflow_automation
|
NetApp OnCommand Workflow Automation before 3.1P2 allows remote attackers to bypass authentication via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2016-1894
|
2024-11-21 11:47 |
2017-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
