|
268291
|
8.8 |
HIGH
Network
|
ibm
|
security_key_lifecycle_manager
|
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the w…
|
CWE-352
Origin Validation Error
|
CVE-2016-6103
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268292
|
5.3 |
MEDIUM
Network
|
ibm
|
security_key_lifecycle_manager
|
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system.
|
CWE-200
Information Exposure
|
CVE-2016-6099
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268293
|
9.8 |
CRITICAL
Network
|
ibm
|
security_key_lifecycle_manager
|
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.
|
CWE-284
Improper Access Control
|
CVE-2016-6095
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268294
|
5.9 |
MEDIUM
Network
|
ibm
|
dashboard_application_services_hub
|
IBM Jazz for Service Management could allow a remote attacker to obtain sensitive information, caused by the failure to properly validate the SSL certificate. An attacker could exploit this vulnerabi…
|
CWE-200
Information Exposure
|
CVE-2016-5935
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268295
|
5.5 |
MEDIUM
Local
|
lepton_project
|
lepton
|
The write_ujpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause denial of service (out-of-bounds read) via a crafted jpeg file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-6238
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268296
|
5.5 |
MEDIUM
Local
|
lepton_project
|
lepton
|
The build_huffcodes function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause denial of service (out-of-bounds write) via a crafted jpeg file.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-6237
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268297
|
5.5 |
MEDIUM
Local
|
lepton_project
|
lepton
|
The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted jpeg file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-6236
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268298
|
5.5 |
MEDIUM
Local
|
lepton_project
|
lepton
|
The setup_imginfo_jpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (segmentation fault) via a crafted jpeg file.
|
CWE-399
Resource Management Errors
|
CVE-2016-6235
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268299
|
5.5 |
MEDIUM
Local
|
lepton_project
|
lepton
|
The process_file function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service (crash) via a crafted jpeg file.
|
CWE-20
Improper Input Validation
|
CVE-2016-6234
|
2024-11-21 11:55 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268300
|
7.2 |
HIGH
Network
|
ibm
|
spectrum_scale
general_parallel_file_system
|
IBM General Parallel File System is vulnerable to a buffer overflow. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with root privileges or cause the…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6115
|
2024-11-21 11:55 |
2017-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
