|
266011
|
7.8 |
HIGH
Local
|
symantec
|
norton_antivirus
norton_family
norton_antivirus_with_backup
norton_security
norton_360
norton_internet_security
norton_security_with_backup
endpoint_protection
endpoint_protec…
|
A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Pr…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2016-5311
|
2024-11-21 11:54 |
2020-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266012
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_M…
|
CWE-200
Information Exposure
|
CVE-2016-5346
|
2024-11-21 11:54 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266013
|
7.5 |
HIGH
Network
|
cloudera
|
cdh
|
Cloudera CDH before 5.9 has Potentially Sensitive Information in Diagnostic Support Bundles.
|
CWE-200
Information Exposure
|
CVE-2016-5724
|
2024-11-21 11:54 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266014
|
7.5 |
HIGH
Network
|
php_jose_project
|
php_jose
|
The PHP JOSE Library by Gree Inc. before version 2.2.1 is vulnerable to key confusion/algorithm substitution in the JWS component resulting in bypassing the signature verification via crafted tokens.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2016-5431
|
2024-11-21 11:54 |
2019-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266015
|
8.8 |
HIGH
Network
|
redhat
|
cloudforms
cloudforms_management_engine
|
A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could us…
|
-
|
CVE-2016-5402
|
2024-11-21 11:54 |
2018-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266016
|
9.8 |
CRITICAL
Network
|
netgear
|
dgn2200_firmware
dgnd3700_firmware
|
A vulnerability is in the 'BSW_cxttongr.htm' page of the Netgear DGN2200, version DGN2200-V1.0.0.50_7.0.50, and DGND3700, version DGND3700-V1.0.0.17_1.0.17, which can allow a remote attacker to acces…
|
CWE-200
Information Exposure
|
CVE-2016-5649
|
2024-11-21 11:54 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266017
|
7.5 |
HIGH
Network
|
netgear
|
wndr4500_firmware
|
There are few web pages associated with the genie app on the Netgear WNDR4500 running firmware version V1.0.1.40_1.0.6877. Genie app adds some capabilities over the Web GUI and can be accessed even w…
|
CWE-200
Information Exposure
|
CVE-2016-5638
|
2024-11-21 11:54 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266018
|
7.5 |
HIGH
Network
|
mozilla
|
firefox
|
A previously installed malicious Android application with same signature-level permissions as Firefox can intercept AuthTokens meant for Firefox only. Note: This issue only affects Firefox for Androi…
|
CWE-275
Permission Issues
|
CVE-2016-5299
|
2024-11-21 11:54 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266019
|
6.5 |
MEDIUM
Network
|
mozilla
|
firefox
|
A mechanism where disruption of the loading of a new web page can cause the previous page's favicon and SSL indicator to not be reset when the new page is loaded. Note: this issue only affects Firefo…
|
CWE-20
Improper Input Validation
|
CVE-2016-5298
|
2024-11-21 11:54 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266020
|
9.8 |
CRITICAL
Network
|
mozilla
debian
|
firefox
thunderbird
firefox_esr
debian_linux
|
An error in argument length checking in JavaScript, leading to potential integer overflows or other bounds checking issues. This vulnerability affects Thunderbird < 45.5, Firefox ESR < 45.5, and Fire…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-5297
|
2024-11-21 11:54 |
2018-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
