|
265471
|
8.8 |
HIGH
Network
|
google
|
chrome
v8
|
Google V8 before 5.2.361.32, as used in Google Chrome before 52.0.2743.82, does not properly process left-trimmed objects, which allows remote attackers to cause a denial of service (memory corruptio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5129
|
2024-11-21 11:53 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265472
|
8.8 |
HIGH
Network
|
google
|
chrome
v8
|
objects.cc in Google V8 before 5.2.361.27, as used in Google Chrome before 52.0.2743.82, does not prevent API interceptors from modifying a store target without setting a property, which allows remot…
|
CWE-254
7PK - Security Features
|
CVE-2016-5128
|
2024-11-21 11:53 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265473
|
7.5 |
HIGH
Network
|
google
|
chrome
|
Use-after-free vulnerability in WebKit/Source/core/editing/VisibleUnits.cpp in Blink, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly ha…
|
CWE-416
Use After Free
|
CVE-2016-5127
|
2024-11-21 11:53 |
2016-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265474
|
9.8 |
CRITICAL
Network
|
objective_systems
|
asn1c
|
Integer overflow in the rtxMemHeapAlloc function in asn1rt_a.lib in Objective Systems ASN1C for C/C++ before 7.0.2 allows context-dependent attackers to execute arbitrary code or cause a denial of se…
|
NVD-CWE-Other
|
CVE-2016-5080
|
2024-11-21 11:53 |
2016-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265475
|
4.3 |
MEDIUM
Physics
|
citrix
|
xenmobile_mdx_toolkit
worx_home
|
Citrix Worx Home for iOS before 10.3.6 and XenMobile MDX Toolkit for iOS before 10.3.6 might allow physically proximate attackers to bypass in-application Apple Touch ID authentication via unspecifie…
|
CWE-284
Improper Access Control
|
CVE-2016-5109
|
2024-11-21 11:53 |
2016-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265476
|
4.9 |
MEDIUM
Network
|
fortinet
|
fortiweb
|
Directory traversal vulnerability in Fortinet FortiWeb before 5.5.3 allows remote authenticated administrators with read and write privileges to read arbitrary files by leveraging the autolearn featu…
|
CWE-22
Path Traversal
|
CVE-2016-5092
|
2024-11-21 11:53 |
2016-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265477
|
9.8 |
CRITICAL
Network
|
redhat
debian
|
libvirt
debian_linux
|
libvirt before 2.0.0 improperly disables password checking when the password on a VNC server is set to an empty string, which allows remote attackers to bypass authentication and establish a VNC sess…
|
CWE-284
Improper Access Control
|
CVE-2016-5008
|
2024-11-21 11:53 |
2016-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265478
|
7.5 |
HIGH
Network
|
apache
|
jms_client_amqp
amqp_0-x_jms_client
|
Apache Qpid AMQP 0-x JMS client before 6.0.4 and JMS (AMQP 1.0) before 0.10.0 does not restrict the use of classes available on the classpath, which might allow remote authenticated users with permis…
|
CWE-20
Improper Input Validation
|
CVE-2016-4974
|
2024-11-21 11:53 |
2016-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265479
|
6.5 |
MEDIUM
Network
|
redhat
|
enterprise_linux_desktop
enterprise_linux_workstation
ceph_storage_osd
ceph_storage_mon
enterprise_linux_for_scientific_computing
enterprise_linux_server
ceph
|
The handle_command function in mon/Monitor.cc in Ceph allows remote authenticated users to cause a denial of service (segmentation fault and ceph monitor crash) via an (1) empty or (2) crafted prefix.
|
CWE-20
Improper Input Validation
|
CVE-2016-5009
|
2024-11-21 11:53 |
2016-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265480
|
7.8 |
HIGH
Local
|
gimp
|
gimp
|
Use-after-free vulnerability in the xcf_load_image function in app/xcf/xcf-load.c in GIMP allows remote attackers to cause a denial of service (program crash) or possibly execute arbitrary code via a…
|
CWE-416
Use After Free
|
CVE-2016-4994
|
2024-11-21 11:53 |
2016-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
