|
268561
|
7.8 |
HIGH
Local
|
novell
redhat
canonical
linux
oracle
|
suse_linux_enterprise_desktop
suse_linux_enterprise_workstation_extension
suse_linux_enterprise_module_for_public_cloud
suse_linux_enterprise_server
opensuse_leap
suse_linux_enterprise…
|
Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2 allows local users to cause a denial of service (memory corruption and system crash, or spinlock) or pos…
|
CWE-416
Use After Free
|
CVE-2016-4805
|
2024-11-21 11:53 |
2016-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268562
|
7.5 |
HIGH
Network
|
zulip
|
zulip
|
In zulip before 1.3.12, deactivated users could access messages if SSO was enabled.
|
NVD-CWE-noinfo
|
CVE-2016-4427
|
2024-11-21 11:52 |
2022-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268563
|
4.3 |
MEDIUM
Network
|
zulip
|
zulip
|
In zulip before 1.3.12, bot API keys were accessible to other users in the same realm.
|
NVD-CWE-noinfo
|
CVE-2016-4426
|
2024-11-21 11:52 |
2022-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268564
|
9.8 |
CRITICAL
Network
|
haxx
|
curl
|
Curl before 7.49.1 in Apple OS X before macOS Sierra prior to 10.12 allows remote or local attackers to execute arbitrary code, gain sensitive information, cause denial-of-service conditions, bypass …
|
NVD-CWE-noinfo
|
CVE-2016-4606
|
2024-11-21 11:52 |
2020-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268565
|
7.5 |
HIGH
Network
|
apple
|
mac_os_x
safari
|
A Cross-origin vulnerability exists in WebKit in Apple Safari before 10.0.1 when processing location attributes, which could let a remote malicious user obtain sensitive information.
|
CWE-200
Information Exposure
|
CVE-2016-4676
|
2024-11-21 11:52 |
2020-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268566
|
8.8 |
HIGH
Network
|
webkitgtk
canonical
|
webkitgtk\+
ubuntu_linux
|
WebKitGTK+ before 2.14.0: A use-after-free vulnerability can allow remote attackers to cause a DoS
|
CWE-416
Use After Free
|
CVE-2016-4761
|
2024-11-21 11:52 |
2020-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268567
|
8.8 |
HIGH
Network
|
cloudera
|
cdh
|
In Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges.
|
CWE-863
Incorrect Authorization
|
CVE-2016-4572
|
2024-11-21 11:52 |
2019-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268568
|
9.8 |
CRITICAL
Network
|
arubanetworks
|
clearpass
|
Aruba ClearPass Policy Manager before 6.5.7 and 6.6.x before 6.6.2 allows attackers to obtain database credentials.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2016-4401
|
2024-11-21 11:52 |
2019-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268569
|
6.5 |
MEDIUM
Network
|
apple
|
iphone_os
mac_os
apple_tv
|
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. This issue …
|
CWE-200
Information Exposure
|
CVE-2016-4644
|
2024-11-21 11:52 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268570
|
6.5 |
MEDIUM
Network
|
apple
|
iphone_os
mac_os
apple_tv
|
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. This issue was addressed through …
|
CWE-200
Information Exposure
|
CVE-2016-4643
|
2024-11-21 11:52 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
