|
267511
|
5.3 |
MEDIUM
Network
|
citrix
|
xenmobile_server
|
Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle attackers to trigger HTTP 302 redirections via vectors involving the HTTP Host header and a cached page. NOTE: the vendor reports "o…
|
CWE-20
Improper Input Validation
|
CVE-2016-6877
|
2024-11-21 11:57 |
2017-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267512
|
7.5 |
HIGH
Network
|
openssl
|
openssl
|
In OpenSSL 1.1.0 before 1.1.0c, TLS connections using *-CHACHA20-POLY1305 ciphersuites are susceptible to a DoS attack by corrupting larger payloads. This can result in an OpenSSL crash. This issue i…
|
CWE-284
Improper Access Control
|
CVE-2016-7054
|
2024-11-21 11:57 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267513
|
7.5 |
HIGH
Network
|
openssl
|
openssl
|
In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. This is caused by a bug in the handling of the ASN.1 CHOICE type in OpenSSL 1.1.…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-7053
|
2024-11-21 11:57 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267514
|
5.9 |
MEDIUM
Network
|
openssl
nodejs
|
openssl
node.js
|
There is a carry propagating bug in the Broadwell-specific Montgomery multiplication procedure in OpenSSL 1.0.2 and 1.1.0 before 1.1.0c that handles input lengths divisible by, but longer than 256 bi…
|
NVD-CWE-noinfo
|
CVE-2016-7055
|
2024-11-21 11:57 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267515
|
7.8 |
HIGH
Local
|
nvidia
|
shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver
|
Stack-based buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6915
|
2024-11-21 11:57 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267516
|
7.8 |
HIGH
Local
|
nvidia
|
shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver
|
Buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6917
|
2024-11-21 11:57 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267517
|
7.8 |
HIGH
Local
|
nvidia
|
shield_tablet_firmware
shield_tablet_tk1_firmware
shield_tv_firmware
video_driver
|
Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denia…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-6916
|
2024-11-21 11:57 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267518
|
9.9 |
CRITICAL
Network
|
lshell_project
|
lshell
|
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6903
|
2024-11-21 11:57 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267519
|
9.9 |
CRITICAL
Network
|
lshell_project
|
lshell
|
lshell 0.9.16 allows remote authenticated users to break out of a limited shell and execute arbitrary commands.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6902
|
2024-11-21 11:57 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267520
|
4.6 |
MEDIUM
Physics
|
redhat
|
quickstart_cloud_installer
|
The web interface in Red Hat QuickStart Cloud Installer (QCI) 1.0 does not mask passwords fields, which allows physically proximate attackers to obtain sensitive password information by reading the d…
|
CWE-200
Information Exposure
|
CVE-2016-7060
|
2024-11-21 11:57 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
