|
266231
|
7.5 |
HIGH
Network
|
digium
debian
|
asterisk
certified_asterisk
debian_linux
|
chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (…
|
CWE-399
Resource Management Errors
|
CVE-2016-7551
|
2024-11-21 11:58 |
2017-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266232
|
8.8 |
HIGH
Adjacent
|
sony
|
snc_series_firmware
|
SONY SNC-CH115, SNC-CH120, SNC-CH160, SNC-CH220, SNC-CH260, SNC-DH120, SNC-DH120T, SNC-DH160, SNC-DH220, SNC-DH220T, SNC-DH260, SNC-EB520, SNC-EM520, SNC-EM521, SNC-ZB550, SNC-ZM550, SNC-ZM551, SNC-E…
|
CWE-200
Information Exposure
|
CVE-2016-7834
|
2024-11-21 11:58 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266233
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.txt by registering this dissector.
|
CWE-20
Improper Input Validation
|
CVE-2016-7958
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266234
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a s…
|
CWE-20
Improper Input Validation
|
CVE-2016-7957
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266235
|
9.8 |
CRITICAL
Network
|
trendmicro
|
threat_discovery_appliance
|
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id cookie allows a remote, unauthenticated attacker to delete arbitrary files as root. This can…
|
CWE-22
Path Traversal
|
CVE-2016-7552
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266236
|
9.8 |
CRITICAL
Network
|
trendmicro
|
threat_discovery_appliance
|
A command execution flaw on the Trend Micro Threat Discovery Appliance 2.6.1062r1 exists with the timezone parameter in the admin_sys_time.cgi interface.
|
CWE-361
7PK - Time and State
|
CVE-2016-7547
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266237
|
5.3 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
|
The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when configured as a SAML Identity Provider with a Service Provider (SP) connector, might allow traffic …
|
CWE-20
Improper Input Validation
|
CVE-2016-7467
|
2024-11-21 11:58 |
2017-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266238
|
8.8 |
HIGH
Network
|
sophos
|
cyberoam_cr25ing_utm_firmware
|
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7786
|
2024-11-21 11:58 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266239
|
6.8 |
MEDIUM
Physics
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves mishandling of DMA in the "EFI" component. It allows physically proximate attackers to discover…
|
CWE-310
Cryptographic Issues
|
CVE-2016-7585
|
2024-11-21 11:58 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266240
|
7.3 |
HIGH
Local
|
mcafee
|
anti-malware_scan_engine
|
Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local attackers to bypass local security protection via a crafted input file.
|
CWE-284
Improper Access Control
|
CVE-2016-8032
|
2024-11-21 11:58 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
