|
269051
|
6.5 |
MEDIUM
Network
|
huawei
|
oceanstor_5800_v3_firmware
|
The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated attacker may send massive abnormal Network File System (NFS) packets, causing an anomaly in specific disk…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-6177
|
2024-11-21 11:55 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269052
|
9.1 |
CRITICAL
Network
|
ibm
|
curam_social_program_management
|
IBM Curam Social Program Management 6.0 and 7.0 are vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit…
|
CWE-611
XXE
|
CVE-2016-6111
|
2024-11-21 11:55 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269053
|
5.4 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
|
IBM Rational Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intende…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6036
|
2024-11-21 11:55 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269054
|
5.4 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
|
IBM Rational Quality Manager 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended func…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6031
|
2024-11-21 11:55 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269055
|
5.4 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
|
IBM Quality Manager (RQM) 4.0, 5.0, and 6.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functio…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6022
|
2024-11-21 11:55 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269056
|
6.1 |
MEDIUM
Network
|
nagios
|
nagios
|
Cross-site scripting (XSS) vulnerability in Nagios.
|
CWE-79
Cross-site Scripting
|
CVE-2016-6209
|
2024-11-21 11:55 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269057
|
3.3 |
LOW
Local
|
projectatomic
|
oci-register-machine
|
The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command.
|
CWE-200
Information Exposure
|
CVE-2016-6349
|
2024-11-21 11:55 |
2017-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269058
|
3.7 |
LOW
Network
|
ibm
|
security_key_lifecycle_manager
|
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, r…
|
CWE-200
Information Exposure
|
CVE-2016-6102
|
2024-11-21 11:55 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269059
|
5.4 |
MEDIUM
Network
|
ibm
|
call_center_for_commerce
|
IBM Call Center for Commerce 9.3 and 9.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionali…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6056
|
2024-11-21 11:55 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269060
|
9.8 |
CRITICAL
Network
|
huawei
|
ar3200_firmware
|
Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.
|
CWE-20
Improper Input Validation
|
CVE-2016-6206
|
2024-11-21 11:55 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
