|
264971
|
7.5 |
HIGH
Network
|
cloudfoundry
|
capi-release
cf-release
|
An issue was discovered in Cloud Foundry Foundation cf-release versions prior to v250 and CAPI-release versions prior to v1.12.0. Cloud Foundry logs the credentials returned from service brokers in C…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2016-9882
|
2024-11-21 12:01 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264972
|
7.5 |
HIGH
Network
|
isc
|
bind
|
named in ISC BIND 9.x before 9.9.9-P5, 9.10.x before 9.10.4-P5, and 9.11.x before 9.11.0-P2 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a crafted DS r…
|
CWE-20
Improper Input Validation
|
CVE-2016-9444
|
2024-11-21 12:01 |
2017-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264973
|
9.8 |
CRITICAL
Network
|
pivotal_software
|
gemfire_for_pivotal_cloud_foundry
|
An issue was discovered in Pivotal GemFire for PCF 1.6.x versions prior to 1.6.5 and 1.7.x versions prior to 1.7.1. The gfsh (Geode Shell) endpoint, used by operators and application developers to co…
|
CWE-200
CWE-254
Information Exposure
7PK - Security Features
|
CVE-2016-9885
|
2024-11-21 12:01 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264974
|
7.5 |
HIGH
Network
|
vmware
ibm
|
spring_security
websphere_application_server
|
An issue was discovered in Pivotal Spring Security before 3.2.10, 4.1.x before 4.1.4, and 4.2.x before 4.2.1. Spring Security does not consider URL path parameters when processing security constraint…
|
CWE-417
Channel and Path Errors
|
CVE-2016-9879
|
2024-11-21 12:01 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264975
|
5.5 |
MEDIUM
Local
|
emc
|
scaleio
|
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. Incorrect permissions on the SCINI driver may allow a low-privileged local attacker to modify the configuration and render the ScaleIO …
|
CWE-275
Permission Issues
|
CVE-2016-9869
|
2024-11-21 12:01 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264976
|
5.5 |
MEDIUM
Local
|
emc
|
scaleio
|
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may cause a denial-of-service by generating a kernel panic in the SCINI driver using IOCTL calls which …
|
CWE-254
7PK - Security Features
|
CVE-2016-9868
|
2024-11-21 12:01 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264977
|
8.8 |
HIGH
Local
|
emc
|
scaleio
|
An issue was discovered in EMC ScaleIO versions before 2.0.1.1. A low-privileged local attacker may be able to modify the kernel memory in the SCINI driver and may achieve code execution to escalate …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9867
|
2024-11-21 12:01 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264978
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The ring_buffer_resize function in kernel/trace/ring_buffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which allows local users to gain pri…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9754
|
2024-11-21 12:01 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264979
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to a memory leakage issue. It could occur while updating the cursor data in update_cursor_data_virgl. A guest…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9846
|
2024-11-21 12:01 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264980
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
QEMU (aka Quick Emulator) built with the Virtio GPU Device emulator support is vulnerable to an information leakage issue. It could occur while processing 'VIRTIO_GPU_CMD_GET_CAPSET_INFO' command. A …
|
CWE-200
Information Exposure
|
CVE-2016-9845
|
2024-11-21 12:01 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
