|
267341
|
5.9 |
MEDIUM
Network
|
percona
opensuse
fedoraproject
|
xtrabackup
leap
fedora
|
xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector (IV) for encryption, which makes it easier for context-dependent attackers to obtain …
|
CWE-326
Inadequate Encryption Strength
|
CVE-2016-6225
|
2024-11-21 11:55 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267342
|
7.8 |
HIGH
Local
|
google
|
android
|
The Qualcomm SPCom driver in Android before 7.0 allows local users to execute arbitrary code within the context of the kernel via a crafted application, aka Android internal bug 34386529 and Qualcomm…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5857
|
2024-11-21 11:55 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267343
|
4.6 |
MEDIUM
Network
|
ibm
|
tivoli_monitoring
|
IBM Tivoli Monitoring 6.2 and 6.3 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM Reference #: 1997223.
|
CWE-254
7PK - Security Features
|
CVE-2016-5933
|
2024-11-21 11:55 |
2017-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267344
|
5.1 |
MEDIUM
Local
|
ibm
|
websphere_commerce
|
IBM WebSphere Commerce Enterprise, Professional, Express, and Developer 7.0 and 8.0 is vulnerable to information disclosure vulnerability. A local user could view a plain text password in a Unix cons…
|
CWE-200
Information Exposure
|
CVE-2016-5894
|
2024-11-21 11:55 |
2017-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267345
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (NULL pointer dereference and panic) via a sysctl call with a path starting with 10,9.
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-6350
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267346
|
7.5 |
HIGH
Network
|
debian
libupnp_project
|
debian_linux
libupnp
|
Portable UPnP SDK (aka libupnp) before 1.6.21 allows remote attackers to write to arbitrary files in the webroot via a POST request without a registered handler.
|
CWE-284
Improper Access Control
|
CVE-2016-6255
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267347
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
OpenBSD 5.8 and 5.9 allows certain local users to cause a denial of service (kernel panic) by unmounting a filesystem with an open vnode on the mnt_vnodelist.
|
CWE-20
Improper Input Validation
|
CVE-2016-6247
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267348
|
4.4 |
MEDIUM
Local
|
openbsd
|
openbsd
|
OpenBSD 5.8 and 5.9 allows certain local users with kern.usermount privileges to cause a denial of service (kernel panic) by mounting a tmpfs with a VNOVAL in the (1) username, (2) groupname, or (3) …
|
CWE-20
Improper Input Validation
|
CVE-2016-6246
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267349
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (kernel panic) via a large size in a getdents system call.
|
NVD-CWE-noinfo
|
CVE-2016-6245
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267350
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
thrsleep in kern/kern_synch.c in OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (kernel panic) via a crafted value in the tsp parameter of the __thrsleep system call.
|
CWE-20
Improper Input Validation
|
CVE-2016-6243
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
