Original release date: April 25, 2016
The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.
The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
-
High – Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 – 10.0
-
Medium – Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 – 6.9
-
Low – Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 – 3.9
Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.
High Vulnerabilities
Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
---|---|---|---|---|
cisco — adaptive_security_appliance_software | The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686. | 2016-04-21 | 7.8 | CVE-2015-6360 CISCO |
cisco — unified_computing_system_platform_emulator | Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 allows local users to gain privileges via crafted arguments on a ucspe-copy command line, aka Bug ID CSCux68832. | 2016-04-15 | 7.2 | CVE-2016-1339 CISCO |
cisco — unified_computing_system_platform_emulator | Heap-based buffer overflow in Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, 3.0(2c)A, and 3.0(2c)TS9 allows local users to gain privileges via crafted libclimeta.so filename arguments, aka Bug ID CSCux68837. | 2016-04-15 | 7.2 | CVE-2016-1340 CISCO |
dhcpcd_project — dhcpcd | dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a malformed DHCP response, aka internal bug 26461634. | 2016-04-17 | 10.0 | CVE-2016-1503 CONFIRM CONFIRM CONFIRM |
emc — unisphere | An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname. | 2016-04-15 | 10.0 | CVE-2016-0889 BUGTRAQ |
gnu — glibc | Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan, (2) nanf, or (3) nanl function. | 2016-04-19 | 7.5 | CVE-2014-9761 MLIST CONFIRM MLIST MLIST SUSE SUSE SUSE SUSE SUSE |
gnu — glibc | Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access. | 2016-04-19 | 7.5 | CVE-2015-8778 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
gnu — glibc | Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long catalog name. | 2016-04-19 | 7.5 | CVE-2015-8779 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
google — android | An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26220548. | 2016-04-17 | 10.0 | CVE-2016-0834 CONFIRM |
google — android | decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file that triggers a certain negative value, aka internal bug 26070014. | 2016-04-17 | 10.0 | CVE-2016-0835 CONFIRM CONFIRM CONFIRM |
google — android | Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25812590. | 2016-04-17 | 10.0 | CVE-2016-0836 CONFIRM CONFIRM |
google — android | MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read and memory corruption) via a crafted media file, aka internal bug 27208621. | 2016-04-17 | 10.0 | CVE-2016-0837 CONFIRM CONFIRM |
google — android | Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, related to arm-wt-22k/lib_src/eas_wtengine.c and arm-wt-22k/lib_src/eas_wtsynth.c, aka internal bug 26366256. | 2016-04-17 | 10.0 | CVE-2016-0838 CONFIRM CONFIRM CONFIRM |
google — android | post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25753245. | 2016-04-17 | 10.0 | CVE-2016-0839 CONFIRM CONFIRM |
google — android | Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26399350. | 2016-04-17 | 10.0 | CVE-2016-0840 CONFIRM CONFIRM |
google — android | media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mishandles cleared service binders, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 26040840. | 2016-04-17 | 10.0 | CVE-2016-0841 CONFIRM CONFIRM |
google — android | The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 25818142. | 2016-04-17 | 10.0 | CVE-2016-0842 CONFIRM CONFIRM |
google — android | The Qualcomm ARM processor performance-event manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application, aka internal bug 25801197. | 2016-04-17 | 7.2 | CVE-2016-0843 CONFIRM |
google — android | The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ioctl calls, which allows attackers to gain privileges via a crafted application, aka internal bug 26324307. | 2016-04-17 | 7.2 | CVE-2016-0844 CONFIRM CONFIRM |
google — android | libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26877992. | 2016-04-17 | 7.2 | CVE-2016-0846 CONFIRM CONFIRM |
google — android | The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26864502. | 2016-04-17 | 7.2 | CVE-2016-0847 CONFIRM CONFIRM CONFIRM |
google — android | Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions via a crafted application that changes a symlink target, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26211054. | 2016-04-17 | 7.2 | CVE-2016-0848 CONFIRM CONFIRM |
google — android | Multiple integer overflows in minzip/SysUtil.c in the Recovery Procedure in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allow attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26960931. | 2016-04-17 | 7.2 | CVE-2016-0849 CONFIRM CONFIRM |
google — chrome | The LoadBuffer implementation in Google V8, as used in Google Chrome before 50.0.2661.75, mishandles data types, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers an out-of-bounds write operation, related to compiler/pipeline.cc and compiler/simplified-lowering.cc. | 2016-04-18 | 9.3 | CVE-2016-1653 CONFIRM CONFIRM CONFIRM |
google — chrome | Google Chrome before 50.0.2661.75 does not properly consider that frame removal may occur during callback execution, which allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted extension. | 2016-04-18 | 7.5 | CVE-2016-1655 CONFIRM CONFIRM CONFIRM |
google — chrome | Multiple unspecified vulnerabilities in Google Chrome before 50.0.2661.75 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. | 2016-04-18 | 10.0 | CVE-2016-1659 CONFIRM CONFIRM |
google — android | A Texas Instruments (TI) haptic kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 25981545. | 2016-04-17 | 9.3 | CVE-2016-2409 CONFIRM |
google — android | A Qualcomm Power Management kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages root access, aka internal bug 26866053. | 2016-04-17 | 9.3 | CVE-2016-2411 CONFIRM |
google — android | include/core/SkPostConfig.h in Skia, as used in System_server in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01, mishandles certain crashes, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26593930. | 2016-04-17 | 9.3 | CVE-2016-2412 CONFIRM CONFIRM |
google — android | media/libmedia/IOMX.cpp in mediaserver in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a handle pointer, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26403627. | 2016-04-17 | 9.3 | CVE-2016-2413 CONFIRM CONFIRM |
google — android | exchange/eas/EasAutoDiscover.java in the Autodiscover implementation in Exchange ActiveSync in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to obtain sensitive information via a crafted application that triggers a spoofed response to a GET request, aka internal bug 26488455. | 2016-04-17 | 7.1 | CVE-2016-2415 CONFIRM CONFIRM |
google — android | media/libmedia/IOMX.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize certain metadata buffer pointers, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26324358. | 2016-04-17 | 10.0 | CVE-2016-2418 CONFIRM CONFIRM |
google — android | rootdir/init.rc in Android 4.x before 4.4.4 does not ensure that the /data/tombstones directory exists for the Debuggerd component, which allows attackers to gain privileges via a crafted application, aka internal bug 26403620. | 2016-04-17 | 9.3 | CVE-2016-2420 CONFIRM CONFIRM CONFIRM |
juniper — screenos | The administrative web services interface in Juniper ScreenOS before 6.3.0r21 allows remote attackers to cause a denial of service (reboot) via a crafted SSL packet. | 2016-04-15 | 7.8 | CVE-2016-1268 CONFIRM |
juniper — junos | Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R9, 13.2X51 before 13.2X51-D39, 13.3 before 13.3R8, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4-S1, 15.1 before 15.1R2, 15.1X49 before 15.1X49-D30, and 16.1 before 16.1R1 allow remote attackers to cause a denial of service (socket consumption) via crafted TCP timestamps. | 2016-04-15 | 7.8 | CVE-2016-1269 CONFIRM |
juniper — junos | Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via crafted combinations of CLI commands and arguments, a different vulnerability than CVE-2015-3003, CVE-2014-3816, and CVE-2014-0615. | 2016-04-15 | 7.2 | CVE-2016-1271 CONFIRM |
juniper — junos | Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches allows remote attackers to cause a denial of service (PFE panic) via a high rate of unspecified VXLAN packets. | 2016-04-15 | 7.8 | CVE-2016-1274 CONFIRM |
Fedora — latex2rtf | Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format string specifiers in the keywords command in a crafted TeX file. | 2016-04-18 | 9.3 | CVE-2015-8106 CONFIRM CONFIRM MLIST FEDORA FEDORA FEDORA |
linuxfoundation — foomatic-filters | Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title. | 2016-04-15 | 7.5 | CVE-2010-5325 CONFIRM CONFIRM CONFIRM MLIST MLIST REDHAT |
novell — opensuse | Heap-based buffer overflow in the gdk_pixbuf_flip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file. | 2016-04-18 | 9.3 | CVE-2015-7552 CONFIRM SUSE |
optipng — optipng | Use-after-free vulnerability in OptiPNG 0.6.4 allows remote attackers to execute arbitrary code via a crafted PNG file. | 2016-04-20 | 9.3 | CVE-2015-7801 CONFIRM UBUNTU MLIST |
oracle — weblogic_server | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Java Messaging Service. | 2016-04-21 | 7.5 | CVE-2016-0638 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Pluggable Authentication. | 2016-04-21 | 10.0 | CVE-2016-0639 CONFIRM |
panda — panda_security_url_filtering | Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the “Panda Security URL Filtering” directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe. | 2016-04-18 | 7.2 | CVE-2015-7378 EXPLOIT-DB FULLDISC MISC |
panda — panda_endpoint_administration_agent | Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by modifying an executable module. | 2016-04-18 | 7.2 | CVE-2016-3943 EXPLOIT-DB FULLDISC MISC |
xen — xen | Integer overflow in the x86 shadow pagetable code in Xen allows local guest OS users to cause a denial of service (host crash) or possibly gain privileges by shadowing a superpage mapping. | 2016-04-19 | 7.2 | CVE-2016-3960 CONFIRM |
Medium Vulnerabilities
Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
---|---|---|---|---|
apache — camel | Apache Camel 2.6.x through 2.14.x, 2.15.x before 2.15.5, and 2.16.x before 2.16.1, when using (1) camel-jetty or (2) camel-servlet as a consumer in Camel routes, allow remote attackers to execute arbitrary commands via a crafted serialized Java object in an HTTP request. | 2016-04-15 | 6.8 | CVE-2015-5348 CONFIRM BUGTRAQ MISC CONFIRM |
dotcms — dotcms | Directory traversal vulnerability in the dotTailLogServlet in dotCMS before 3.5.1 allows remote authenticated administrators to read arbitrary files via a .. (dot dot) in the fileName parameter. | 2016-04-18 | 4.0 | CVE-2016-3972 FULLDISC CONFIRM |
dotcms — dotcms | SQL injection vulnerability in the Workflow Screen in dotCMS before 3.3.2 allows remote administrators to execute arbitrary SQL commands via the orderby parameter. | 2016-04-19 | 6.5 | CVE-2016-4040 CONFIRM CONFIRM CONFIRM |
gnu — glibc | The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value. | 2016-04-19 | 6.4 | CVE-2015-8776 MLIST CONFIRM MLIST MLIST DEBIAN SUSE SUSE SUSE SUSE SUSE |
google — android | The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to bypass intended pairing restrictions via a crafted device, aka internal bug 26551752. | 2016-04-17 | 5.8 | CVE-2016-0850 CONFIRM CONFIRM |
google — chrome | fxcodec/codec/fx_codec_jpx_opj.cpp in PDFium, as used in Google Chrome before 50.0.2661.75, does not properly implement the sycc420_to_rgb and sycc422_to_rgb functions, which allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via crafted JPEG 2000 data in a PDF document. | 2016-04-18 | 5.8 | CVE-2016-1651 CONFIRM CONFIRM MISC CONFIRM |
google — chrome | Cross-site scripting (XSS) vulnerability in the ModuleSystem::RequireForJsInner function in extensions/renderer/module_system.cc in the Extensions subsystem in Google Chrome before 50.0.2661.75 allows remote attackers to inject arbitrary web script or HTML via a crafted web site, aka “Universal XSS (UXSS).” | 2016-04-18 | 4.3 | CVE-2016-1652 CONFIRM CONFIRM CONFIRM |
google — chrome | The media subsystem in Google Chrome before 50.0.2661.75 does not initialize an unspecified data structure, which allows remote attackers to cause a denial of service (invalid read operation) via unknown vectors. | 2016-04-18 | 4.3 | CVE-2016-1654 CONFIRM CONFIRM |
google — chrome | The download implementation in Google Chrome before 50.0.2661.75 on Android allows remote attackers to bypass intended pathname restrictions via unspecified vectors. | 2016-04-18 | 5.0 | CVE-2016-1656 CONFIRM CONFIRM |
google — chrome | The WebContentsImpl::FocusLocationBarByDefault function in content/browser/web_contents/web_contents_impl.cc in Google Chrome before 50.0.2661.75 mishandles focus for certain about:blank pages, which allows remote attackers to spoof the address bar via a crafted URL. | 2016-04-18 | 4.3 | CVE-2016-1657 CONFIRM CONFIRM CONFIRM |
google — chrome | The Extensions subsystem in Google Chrome before 50.0.2661.75 incorrectly relies on GetOrigin method calls for origin comparisons, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted extension. | 2016-04-18 | 5.0 | CVE-2016-1658 CONFIRM CONFIRM CONFIRM |
google — android | A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows attackers to gain privileges via a crafted application that leverages control over a service that can call this driver, aka internal bug 26291677. | 2016-04-17 | 6.9 | CVE-2016-2410 CONFIRM |
google — android | The Minikin library in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider negative size values in font data, which allows remote attackers to cause a denial of service (memory corruption and reboot loop) via a crafted font, aka internal bug 26413177. | 2016-04-17 | 4.9 | CVE-2016-2414 CONFIRM CONFIRM CONFIRM |
huawei — ar3200_firmware | Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets. | 2016-04-18 | 6.8 | CVE-2016-3950 CONFIRM |
juniper — junos | Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4, 15.1 before 15.1F2 or 15.1R2, 15.1X49 before 15.1X49-D10 or 15.1X49-D20, and 16.1 before 16.1R1 allows remote authenticated users to gain privileges via the URL option. | 2016-04-15 | 6.5 | CVE-2016-1264 CONFIRM |
juniper — junos | Race condition in the RPC functionality in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R3-S4, 15.1 before 15.1F2, or 15.1R2, 15.1X49 before 15.1X49-D20, and 16.1 before 16.1R1 allows local users to read, delete, or modify arbitrary files via unspecified vectors. | 2016-04-15 | 4.4 | CVE-2016-1267 CONFIRM |
juniper — junos | The rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D20, 13.2 before 13.2R7, 13.2X51 before 13.2X51-D40, 13.3 before 13.3R6, 14.1 before 14.1R4, and 14.2 before 14.2R2, when configured with BGP-based L2VPN or VPLS, allows remote attackers to cause a denial of service (daemon restart) via a crafted L2VPN family BGP update. | 2016-04-15 | 5.0 | CVE-2016-1270 CONFIRM |
juniper — junos | Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x before 15.1X53-D20 on QFX5100 and QFX10002 switches do not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic encryption and authentication protection mechanisms via unspecified vectors. | 2016-04-15 | 4.3 | CVE-2016-1273 CONFIRM |
libreswan — libreswan | Libreswan 3.16 might allow remote attackers to cause a denial of service (daemon restart) via an IKEv2 aes_xcbc transform. | 2016-04-18 | 5.0 | CVE-2016-3071 CONFIRM FEDORA FEDORA CONFIRM |
magento — magento | The getOrderByStatusUrlKey function in the Mage_Rss_Helper_Order class in app/code/core/Mage/Rss/Helper/Order.php in Magento Enterprise Edition before 1.14.2.3 and Magento Community Edition before 1.9.2.3 allows remote attackers to obtain sensitive order information via the order_id in a JSON object in the data parameter in an RSS feed request to index.php/rss/order/status. | 2016-04-15 | 5.0 | CVE-2016-2212 CONFIRM BUGTRAQ FULLDISC MISC MISC |
openstack — tripleo_heat_templates | The TripleO Heat templates (tripleo-heat-templates) do not properly order the Identity Service (keystone) before the OpenStack Object Storage (Swift) staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive information from private containers via unspecified vectors. | 2016-04-15 | 5.0 | CVE-2015-5271 CONFIRM CONFIRM CONFIRM REDHAT |
oracle — peoplesoft_enterprise_human_capital_management_human_resources | Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality via vectors related to Fusion HR Talent Integration. | 2016-04-21 | 4.0 | CVE-2016-0407 CONFIRM |
oracle — peoplesoft_enterprise_peopletools | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53 through 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to the Activity Guide sub-component. | 2016-04-21 | 4.3 | CVE-2016-0408 CONFIRM |
oracle — micros_c2 | Unspecified vulnerability in the Oracle Retail MICROS C2 component in Oracle Retail Applications 9.89.0.0 allows local users to affect confidentiality via vectors related to POS. | 2016-04-21 | 4.6 | CVE-2016-0469 CONFIRM |
oracle — business_intelligence | Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality and integrity via vectors related to Analytics Scorecard. | 2016-04-21 | 5.8 | CVE-2016-0479 CONFIRM |
oracle — solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote attackers to affect integrity via vectors related to the Automated Installer sub-component. | 2016-04-21 | 4.3 | CVE-2016-0623 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect integrity and availability via vectors related to DML. | 2016-04-21 | 4.9 | CVE-2016-0640 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect confidentiality and availability via vectors related to MyISAM. | 2016-04-21 | 4.9 | CVE-2016-0641 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect integrity and availability via vectors related to Federated. | 2016-04-21 | 4.3 | CVE-2016-0642 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect confidentiality via vectors related to DML. | 2016-04-21 | 4.0 | CVE-2016-0643 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to DDL. | 2016-04-21 | 4.0 | CVE-2016-0644 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to DML. | 2016-04-21 | 4.0 | CVE-2016-0646 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to FTS. | 2016-04-21 | 4.0 | CVE-2016-0647 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to PS. | 2016-04-21 | 4.0 | CVE-2016-0648 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to PS. | 2016-04-21 | 4.0 | CVE-2016-0649 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to Replication. | 2016-04-21 | 4.0 | CVE-2016-0650 CONFIRM |
oracle — flexcube_direct_banking | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.2 and 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to Pre-Login. | 2016-04-21 | 5.0 | CVE-2016-0672 CONFIRM |
oracle — siebel_ui_framework | Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to UIF Open UI. | 2016-04-21 | 4.9 | CVE-2016-0673 CONFIRM |
sierra_wireless — aleos | ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors. | 2016-04-21 | 4.3 | CVE-2015-6479 MISC |
squid — squid_cache | The FwdState::connectedToPeer method in FwdState.cc in Squid before 3.5.14 and 4.0.x before 4.0.6 does not properly handle SSL handshake errors when built with the –with-openssl option, which allows remote attackers to cause a denial of service (application crash) via a plaintext HTTP message. | 2016-04-19 | 4.3 | CVE-2016-2390 CONFIRM SECTRACK MLIST MLIST CONFIRM |
tibco — enterprise_message_service | Buffer overflow in tibemsd in the server in TIBCO Enterprise Message Service (EMS) before 8.3.0 and EMS Appliance before 2.4.0 allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via crafted inbound data. | 2016-04-20 | 6.5 | CVE-2016-3628 CONFIRM CONFIRM |
videolan — vlc_media_player | Buffer overflow in the AStreamPeekStream function in input/stream.c in VideoLAN VLC media player before 2.2.0 allows remote attackers to cause a denial of service (crash) via a crafted wav file, related to “seek across EOF.” | 2016-04-18 | 4.3 | CVE-2016-3941 MLIST CONFIRM SECTRACK |
xdelta — xdelta3 | Buffer overflow in the main_get_appheader function in xdelta3-main.h in xdelta3 before 3.0.9 allows remote attackers to execute arbitrary code via a crafted input file. | 2016-04-19 | 6.8 | CVE-2014-9765 CONFIRM UBUNTU MLIST MLIST DEBIAN SUSE SUSE |
Low Vulnerabilities
Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
---|---|---|---|---|
apache — hadoop | Apache Hadoop 2.6.x encrypts intermediate data generated by a MapReduce job and stores it along with the encryption key in a credentials file on disk when the Intermediate data encryption feature is enabled, which allows local users to obtain sensitive information by reading the file. | 2016-04-19 | 2.1 | CVE-2015-1776 MLIST |
dotcms — dotcms | Cross-site scripting (XSS) vulnerability in lucene_search.jsp in dotCMS before 3.5.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the query parameter to c/portal/layout. | 2016-04-18 | 3.5 | CVE-2016-3971 FULLDISC CONFIRM |
drupal — block_class | Cross-site scripting (XSS) vulnerability in the Block Class module 7.x-2.x before 7.x-2.2 for Drupal allows remote authenticated users with the “Administer block classes” permission to inject arbitrary web script or HTML via a class name. | 2016-04-15 | 3.5 | CVE-2016-3144 MISC CONFIRM |
gnupg — libgcrypt | Libgcrypt before 1.6.5 does not properly perform elliptic-point curve multiplication during decryption, which makes it easier for physically proximate attackers to extract ECDH keys by measuring electromagnetic emanations. | 2016-04-19 | 1.9 | CVE-2015-7511 MLIST UBUNTU DEBIAN DEBIAN MISC |
ipswitch — moveit_dmz | Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and earlier, when configured to support file view on download, allows remote authenticated users to conduct cross-site scripting (XSS) attacks by uploading HTML files. | 2016-04-15 | 3.5 | CVE-2015-7676 MISC FULLDISC MISC |
novell — leap | openSUSE and SUSE Linux Enterprise Server 11 SP 1 use weak permissions for /etc/quagga, which allows local users to obtain sensitive information by reading files in the directory. | 2016-04-18 | 2.1 | CVE-2016-4036 CONFIRM SUSE |
oracle — business_intelligence | Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Analytics Web General. | 2016-04-21 | 3.5 | CVE-2016-0468 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0651 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to FTS. | 2016-04-21 | 3.5 | CVE-2016-0653 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability than CVE-2016-0656. | 2016-04-21 | 3.5 | CVE-2016-0654 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows local users to affect availability via vectors related to InnoDB. | 2016-04-21 | 3.5 | CVE-2016-0655 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability than CVE-2016-0654. | 2016-04-21 | 3.5 | CVE-2016-0656 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect confidentiality via vectors related to JSON. | 2016-04-21 | 3.5 | CVE-2016-0657 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0658 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Optimizer. | 2016-04-21 | 3.5 | CVE-2016-0659 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Options. | 2016-04-21 | 3.5 | CVE-2016-0661 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Partition. | 2016-04-21 | 3.5 | CVE-2016-0662 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to Performance Schema. | 2016-04-21 | 3.5 | CVE-2016-0663 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to Security: Encryption. | 2016-04-21 | 3.5 | CVE-2016-0665 CONFIRM |
oracle — mysql | Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to Security: Privileges. | 2016-04-21 | 3.5 | CVE-2016-0666 CONFIRM |
xen — xen | Xen and the Linux kernel through 4.5.x do not properly suppress hugetlbfs support in x86 PV guests, which allows local PV guest users to cause a denial of service (guest OS crash) by attempting to access a hugetlbfs mapped area. | 2016-04-15 | 2.1 | CVE-2016-3961 CONFIRM CONFIRM SECTRACK |
Severity Not Yet Assigned
Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
---|---|---|---|---|
389_directory_server — slapd/ connection.c | slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by leveraging an abnormally closed connection. | 2016-04-19 |
Not yet calculated |
CVE-2016-0741 CONFIRM CONFIRM BID REDHAT CONFIRM |
accuenergy — acuvim_ii_net_firmware | The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover a cleartext mail-server password via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2294 MISC |
accuenergy — acuvim_ii_net_firmware | The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL. | 2016-04-21 |
Not yet calculated |
CVE-2016-2293 MISC |
adobe — analytics_appmeasurement | Cross-site scripting (XSS) vulnerability in Adobe Analytics AppMeasurement for Flash Library before 4.0.1, when debugTracking is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 2016-04-22 |
Not yet calculated |
CVE-2016-1036 CONFIRM |
adobe — flash_player | Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allows attackers to execute arbitrary code via crafted text property, a different vulnerability than CVE-2015-8048, CVE-2015-8049, CVE-2015-8050, CVE-2015-8055, CVE-2015-8056, CVE-2015-8057, CVE-2015-8058, CVE-2015-8059, CVE-2015-8061, CVE-2015-8062, CVE-2015-8063, CVE-2015-8064, CVE-2015-8065, CVE-2015-8066, CVE-2015-8067, CVE-2015-8068, CVE-2015-8069, CVE-2015-8070, CVE-2015-8071, CVE-2015-8401, CVE-2015-8402, CVE-2015-8403, CVE-2015-8404, CVE-2015-8405, CVE-2015-8406, CVE-2015-8410, CVE-2015-8411, CVE-2015-8412, CVE-2015-8413, CVE-2015-8414, CVE-2015-8420, CVE-2015-8421, CVE-2015-8422, CVE-2015-8423, CVE-2015-8424, CVE-2015-8425, CVE-2015-8426, CVE-2015-8427, CVE-2015-8428, CVE-2015-8429, CVE-2015-8430, CVE-2015-8431, CVE-2015-8432, CVE-2015-8433, CVE-2015-8434, CVE-2015-8435, CVE-2015-8436, CVE-2015-8437, CVE-2015-8441, CVE-2015-8442, CVE-2015-8447, CVE-2015-8448, CVE-2015-8449, CVE-2015-8450, CVE-2015-8452, CVE-2015-8454, CVE-2015-8653, CVE-2015-8655, CVE-2015-8821, and CVE-2015-8822. | 2016-04-22 |
Not yet calculated |
CVE-2015-8823 CONFIRM MISC |
android — aosp_mail | mail/compose/ComposeActivity.java in AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 supports file:///data attachments, which allows attackers to obtain sensitive information via a crafted application, aka internal bugs 7154234 and 26989185. | 2016-04-17 |
Not yet calculated |
CVE-2016-2425 CONFIRM CONFIRM CONFIRM |
android — framework_component | server/content/ContentService.java in the Framework component in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a GET_ACCOUNTS permission, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 26094635. | 2016-04-17 |
Not yet calculated |
CVE-2016-2426 CONFIRM CONFIRM |
android — mediaserver | libs/gui/BufferQueueConsumer.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for the android.permission.DUMP permission, which allows attackers to obtain sensitive information, and consequently bypass an unspecified protection mechanism, via a dump request, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 27046057. | 2016-04-17 |
Not yet calculated |
CVE-2016-2416 CONFIRM CONFIRM CONFIRM |
android — mediaserver | media/libmedia/IDrm.cpp in mediaserver in Android 6.x before 2016-04-01 does not initialize a certain key-request data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26323455. | 2016-04-17 |
Not yet calculated |
CVE-2016-2419 CONFIRM CONFIRM |
android — mediaserver | media/libmedia/IOMX.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a parameter data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26914474. | 2016-04-17 |
Not yet calculated |
CVE-2016-2417 CONFIRM CONFIRM |
android — setup_wizard | Setup Wizard in Android 5.1.x before 5.1.1 and 6.x before 2016-04-01 allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26154410. | 2016-04-17 |
Not yet calculated |
CVE-2016-2421 CONFIRM |
android — syncstorageengine | server/content/SyncStorageEngine.java in SyncStorageEngine in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mismanages certain authority data, which allows attackers to cause a denial of service (reboot loop) via a crafted application, aka internal bug 26513719. | 2016-04-17 |
Not yet calculated |
CVE-2016-2424 CONFIRM CONFIRM |
android — telephony | server/telecom/CallsManager.java in Telephony in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider whether a device is provisioned, which allows physically proximate attackers to bypass the Factory Reset Protection protection mechanism and delete data via unspecified vectors, aka internal bug 26303187. | 2016-04-17 |
Not yet calculated |
CVE-2016-2423 CONFIRM CONFIRM |
android — wi-fi | Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not prevent use of a Wi-Fi CA certificate in an unrelated CA role, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26324357. | 2016-04-17 |
Not yet calculated |
CVE-2016-2422 CONFIRM CONFIRM |
blackberry_enterprise_server_(bes) — management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-1917. | 2016-04-22 |
Not yet calculated |
CVE-2016-1918 CONFIRM |
blackberry_enterprise_server_(bes) — management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a different vulnerability than CVE-2016-1918. | 2016-04-22 |
Not yet calculated |
CVE-2016-1917 CONFIRM |
blackberry_enterprise_server_(bes) — management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | 2016-04-22 |
Not yet calculated |
CVE-2016-3126 CONFIRM |
blackberry_enterprise_server_(bes) — management_console | Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote authenticated users to inject arbitrary web script or HTML by leveraging basic administrative access to create a crafted policy, leading to improper rendering on a certain Export IT screen. | 2016-04-22 |
Not yet calculated |
CVE-2016-1916 CONFIRM |
cairo — cairo_image_compositor.c | The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a negative span length. | 2016-04-21 |
Not yet calculated |
CVE-2016-3190 MLIST CONFIRM CONFIRM SUSE |
cisco — adaptive_security_appliance_(asa) | The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) Software 9.4.1 allows remote attackers to cause a denial of service (device reload) via crafted DHCPv6 packets, aka Bug ID CSCus23248. | 2016-04-21 |
Not yet calculated |
CVE-2016-1367 CISCO |
cisco — aireos | Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service (device reload) via a crafted HTTP request, aka Bug ID CSCun86747. | 2016-04-21 |
Not yet calculated |
CVE-2016-1362 CISCO |
cisco — ios | The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 through 3.17 allows remote attackers to modify the system time via crafted packets, aka Bug ID CSCux46898. | 2016-04-20 |
Not yet calculated |
CVE-2016-1384 CISCO |
cisco — wireless_lan_controller_(wlc) | Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617. | 2016-04-21 |
Not yet calculated |
CVE-2016-1363 CISCO |
cisco — wireless_lan_controller_(wlc) | Cisco Wireless LAN Controller (WLC) Software 7.4 before 7.4.130.0(MD) and 7.5, 7.6, and 8.0 before 8.0.110.0(ED) allows remote attackers to cause a denial of service (device reload) via crafted Bonjour traffic, aka Bug ID CSCur66908. | 2016-04-21 |
Not yet calculated |
CVE-2016-1364 CISCO |
dotcms — sql_injection | SQL injection vulnerability in dotCMS before 3.5 allows remote administrators to execute arbitrary SQL commands via the c0-e3 parameter to dwr/call/plaincall/UserAjax.getUsersList.dwr. | 2016-04-19 |
Not yet calculated |
CVE-2016-3688 FULLDISC FULLDISC MISC CONFIRM |
ecava — integraxor | CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL. | 2016-04-21 |
Not yet calculated |
CVE-2016-2303 MISC |
ecava — integraxor | Cross-site scripting (XSS) vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. | 2016-04-21 | CVE-2016-2305 MISC |
|
ecava — integraxor | Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive information by reading detailed error messages. | 2016-04-21 |
Not yet calculated |
CVE-2016-2302 MISC |
ecava — integraxor | Ecava IntegraXor before 5.0 build 4522 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie. | 2016-04-21 |
Not yet calculated |
CVE-2016-2304 MISC |
ecava — integraxor | ecava_ integraxor | 2016-04-21 |
Not yet calculated |
CVE-2016-2300 MISC |
ecava — integraxor | SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2299 MISC |
ecava — integraxor | SQL injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2301 MISC |
ecava — integraxor | The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive cleartext information by sniffing the network. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-2306 MISC |
emc — vipr_srm | Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators. | 2016-04-20 |
Not yet calculated |
CVE-2016-0891 BUGTRAQ |
foxit — reader_and_phantompdf | Foxit Reader and PhantomPDF before 7.3.4 on Windows allow remote attackers to cause a denial of service (application crash) via a crafted content stream. | 2016-04-22 |
Not yet calculated |
CVE-2016-4061 CONFIRM |
foxit — reader_and_phantompdf | Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report format errors recursively, which allows remote attackers to cause a denial of service (application hang) via a crafted PDF. | 2016-04-22 |
Not yet calculated |
CVE-2016-4062 CONFIRM |
foxit — reader_and_phantompdf | The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted (1) JPEG, (2) GIF, or (3) BMP image. | 2016-04-22 |
Not yet calculated |
CVE-2016-4065 CONFIRM MISC MISC MISC |
foxit — reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to cause a denial of service (application crash) via unspecified vectors. | 2016-04-22 |
Not yet calculated |
CVE-2016-4060 CONFIRM |
foxit — reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode stream in a PDF document. | 2016-04-22 |
Not yet calculated |
CVE-2016-4059 CONFIRM MISC |
foxit — reader_and_phantompdf | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via an object with a revision number of -1 in a PDF document. | 2016-04-22 |
Not yet calculated |
CVE-2016-4063 CONFIRM MISC MISC |
foxit — reader_and_phantompdf | Use-after-free vulnerability in the XFA forms handling functionality in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted remerge call. | 2016-04-22 |
Not yet calculated |
CVE-2016-4064 CONFIRM MISC |
gif2png_optipng | gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file. | 2016-04-20 |
Not yet calculated |
CVE-2015-7802 CONFIRM UBUNTU CONFIRM |
giflib — util/gif2rgb.c_in_gif2rgb | Heap-based buffer overflow in util/gif2rgb.c in gif2rgb in giflib 5.1.2 allows remote attackers to cause a denial of service (application crash) via the background color index in a GIF file. | 2016-04-21 |
Not yet calculated |
CVE-2016-3977 CONFIRM CONFIRM CONFIRM SUSE MISC |
hexchat — common/server.c | The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. | 2016-04-21 | Not yet calculated | CVE-2013-7449 CONFIRM CONFIRM CONFIRM UBUNTU CONFIRM |
honeywell — uniformance_process_history_database_(phd) | Buffer overflow in RDISERVER in Honeywell Uniformance Process History Database (PHD) R310, R320, and R321 allows remote attackers to cause a denial of service (service outage) via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2280 MISC |
hpe — data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3352. | 2016-04-21 |
Not yet calculated |
CVE-2016-2005 HP |
hpe — data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3353. | 2016-04-21 |
Not yet calculated |
CVE-2016-2006 HP |
hpe — data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors, aka ZDI-CAN-3354. | 2016-04-21 |
Not yet calculated |
CVE-2016-2007 HP |
hpe — data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2004 CERT-VN HP |
hpe — data_protector | HPE Data Protector before 7.03_108, 8.x before 8.15, and 9.x before 9.06 allows remote attackers to execute arbitrary code via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-2008 HP |
hpe — p9000 | HPE P9000 Command View Advanced Edition Software (CVAE) 7.x and 8.x before 8.4.0-00 and XP7 CVAE 7.x and 8.x before 8.4.0-00 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. | 2016-04-20 |
Not yet calculated |
CVE-2016-2003 HP |
hpe — vertica | The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417. | 2016-04-20 |
Not yet calculated |
CVE-2016-2002 HP MISC |
java — bouncy_castle_crypto_apis | asn1/cms/GCMParameters.java in the Bouncy Castle Crypto APIs 1.54 for Java, as used in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01, has an improper AES-GCM-ICVlen value, which makes it easier for attackers to defeat a cryptographic protection mechanism and discover an authentication key via a crafted application, aka internal bug 26234568. | 2016-04-17 |
Not yet calculated |
CVE-2016-2427 CONFIRM CONFIRM CONFIRM |
lemur — vehicle_monitors_bluedriver | The Bluetooth functionality in Lemur Vehicle Monitors BlueDriver before 2016-04-07 supports unrestricted pairing without a PIN, which allows remote attackers to send arbitrary CAN commands by leveraging access to a device inside or adjacent to the vehicle, as demonstrated by a CAN command to disrupt braking or steering. | 2016-04-21 |
Not yet calculated |
CVE-2016-2354 CERT-VN |
lexmark — atl | Lexmark printers with firmware ATL before ATL.021.063, CB before CB.021.063, PP before PP.021.063, and YK before YK.021.063 mishandle Erase Printer Memory and Erase Hard Disk actions, which allows physically proximate attackers to obtain sensitive information via direct read operations on non-volatile memory. | 2016-04-21 |
Not yet calculated |
CVE-2016-3145 CONFIRM |
libav_libavcodec/ituh263dec.c | The ff_h263_decode_mba function in libavcodec/ituh263dec.c in Libav before 11.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a file with crafted dimensions. | 2016-04-19 |
Not yet calculated |
CVE-2015-5479 CONFIRM CONFIRM MISC UBUNTU |
libtiff — gif2tiff.c | Buffer overflow in the readextension function in gif2tiff.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted GIF file. | 2016-04-19 |
Not yet calculated |
CVE-2016-3186 CONFIRM SECTRACK SUSE |
micro_focus_novell — service_desk | Directory traversal vulnerability in the import users feature in Micro Focus Novell Service Desk before 7.2 allows remote authenticated administrators to upload and execute arbitrary JSP files via a .. (dot dot) in a filename within a multipart/form-data POST request to a LiveTime.woa URL. | 2016-04-22 |
Not yet calculated |
CVE-2016-1593 CONFIRM MISC MISC |
micro_focus_novell — service_desk | LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to conduct Hibernate Query Language (HQL) injection attacks and obtain sensitive information via the entityName parameter. | 2016-04-22 |
Not yet calculated |
CVE-2016-1595 CONFIRM MISC MISC |
micro_focus_novell — service_desk | Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action. | 2016-04-22 |
Not yet calculated |
CVE-2016-1594 CONFIRM MISC MISC |
micro_focus_novell — service_desk | Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus Novell Service Desk before 7.2 allow remote authenticated users to inject arbitrary web script or HTML via a certain (1) user name, (2) tf_aClientFirstName, (3) tf_aClientLastName, (4) ta_selectedTopicContent, (5) tf_orgUnitName, (6) tf_aManufacturerFullName, (7) tf_aManufacturerName, (8) tf_aManufacturerAddress, or (9) tf_aManufacturerCity parameter. | 2016-04-22 |
Not yet calculated |
CVE-2016-1596 CONFIRM MISC MISC |
oracle — berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, and CVE-2016-0694. | 2016-04-21 |
Not yet calculated |
CVE-2016-3418 CONFIRM |
oracle — berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0692, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0694 CONFIRM |
oracle — berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0689, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0692 CONFIRM |
oracle — berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0682, CVE-2016-0692, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0689 CONFIRM |
oracle — berkeley_db | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, 12.1.6.0.35, and 12.1.6.1.26 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0689, CVE-2016-0692, CVE-2016-0694, and CVE-2016-3418. | 2016-04-21 |
Not yet calculated |
CVE-2016-0682 CONFIRM |
oracle — database_server | Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-3454 CONFIRM |
oracle — database_server | Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unspecified vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0681 CONFIRM |
oracle — database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0690. | 2016-04-21 |
Not yet calculated |
CVE-2016-0691 CONFIRM |
oracle — database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0691. | 2016-04-21 |
Not yet calculated |
CVE-2016-0690 CONFIRM |
oracle — database_server | Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0677 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows local users to affect confidentiality and integrity via unknown vectors. | 2016-04-21 |
Not yet calculated |
CVE-2016-0697 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Logout. | 2016-04-21 |
Not yet calculated |
CVE-2016-3434 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to OAF Core. | 2016-04-21 | CVE-2016-3447 CONFIRM |
|
oracle — e-business_suite | Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks. | 2016-04-21 |
Not yet calculated |
CVE-2016-3436 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Call Phone Number Page. | 2016-04-21 |
Not yet calculated |
CVE-2016-3439 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Person Address Page. | 2016-04-21 |
Not yet calculated |
CVE-2016-3437 CONFIRM |
oracle — e-business_suite | Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless. | 2016-04-21 |
Not yet calculated |
CVE-2016-3466 CONFIRM |
oracle — financial_services | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.2 and 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to the Login sub-component. | 2016-04-21 |
Not yet calculated |
CVE-2016-0699 CONFIRM |
oracle — financial_services_software | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote attackers to affect confidentiality and integrity via vectors related to Pre-Login. | 2016-04-21 |
Not yet calculated |
CVE-2016-3463 CONFIRM |
oracle — financial_services_software | Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related to Accounts. | 2016-04-21 |
Not yet calculated |
CVE-2016-3464 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to OSSL Module. | 2016-04-21 |
Not yet calculated |
CVE-2016-0671 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters. | 2016-04-21 |
Not yet calculated |
CVE-2016-3455 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6 allows remote attackers to affect confidentiality and integrity via vectors related to Console. | 2016-04-21 |
Not yet calculated |
CVE-2016-0696 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality and integrity via vectors related to Console. | 2016-04-21 |
Not yet calculated |
CVE-2016-3416 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Console, a different vulnerability than CVE-2016-0675. | 2016-04-21 |
Not yet calculated |
CVE-2016-0700 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Console, a different vulnerability than CVE-2016-0700. | 2016-04-21 |
Not yet calculated |
CVE-2016-0675 CONFIRM |
oracle — fusion_middleware | Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via vectors related to Core Components. | 2016-04-21 |
Not yet calculated |
CVE-2016-0688 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect availability via vectors related to 2D. | 2016-04-21 |
Not yet calculated |
CVE-2016-3422 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. | 2016-04-21 |
Not yet calculatedNot yet calculated |
CVE-2016-3443 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Deployment. | 2016-04-21 |
Not yet calculated |
CVE-2016-3449 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization. | 2016-04-21 |
Not yet calculated |
CVE-2016-0686 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component. | 2016-04-21 |
Not yet calculated |
CVE-2016-0687 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect availability via vectors related to JAXP. | 2016-04-21 |
Not yet calculated |
CVE-2016-3425 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality via vectors related to Security. | 2016-04-21 |
Not yet calculated |
CVE-2016-0695 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX. | 2016-04-21 |
Not yet calculated |
CVE-2016-3427 CONFIRM |
oracle — java_se | Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE. | 2016-04-21 |
Not yet calculated |
CVE-2016-3426 CONFIRM |
oracle — mysql_3.0.25 | Unspecified vulnerability in the MySQL Enterprise Monitor component in Oracle MySQL 3.0.25 and earlier and 3.1.2 and earlier allows remote administrators to affect confidentiality, integrity, and availability via vectors related to Monitoring: Server. | 2016-04-21 |
Not yet calculated |
CVE-2016-3461 CONFIRM |
oracle — mysql_5.6.28 | Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB. | 2016-04-21 |
Not yet calculated |
CVE-2016-0668 CONFIRM |
oracle — mysql_5.7.10 | Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to DML. | 2016-04-21 |
Not yet calculated |
CVE-2016-0652 CONFIRM |
oracle — mysql_5.7.11 | Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Locking. | 2016-04-21 |
Not yet calculated |
CVE-2016-0667 CONFIRM |
oracle — peoplesoft_enterprise_peopletools | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to PIA Search Functionality. | 2016-04-21 |
Not yet calculated |
CVE-2016-3417 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to ePerformance. | 2016-04-21 |
Not yet calculated |
CVE-2016-3460 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise HCM ePerformance component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security. | 2016-04-21 |
Not yet calculated |
CVE-2016-3457 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect availability via vectors related to PIA Core Technology. | 2016-04-21 |
Not yet calculated |
CVE-2016-3435 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to File Processing. | 2016-04-21 |
Not yet calculated |
CVE-2016-0685 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Portal. | 2016-04-21 | CVE-2016-3442 CONFIRM |
|
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-0698. | 2016-04-21 |
Not yet calculated |
CVE-2016-3423 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Rich Text Editor, a different vulnerability than CVE-2016-3423. | 2016-04-21 |
Not yet calculated |
CVE-2016-0698 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to Search Framework. | 2016-04-21 |
Not yet calculated |
CVE-2016-0683 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Activity Guide. | 2016-04-21 |
Not yet calculated |
CVE-2016-3421 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote authenticated users to affect integrity and availability via vectors related to PIA Grids. | 2016-04-21 |
Not yet calculated |
CVE-2016-0679 CONFIRM |
oracle — peoplesoft_products | Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Services Procurement. | 2016-04-21 |
Not yet calculated |
CVE-2016-0680 CONFIRM |
oracle — retail_applications | Unspecified vulnerability in the Oracle Retail Xstore Point of Service component in Oracle Retail Applications 5.0, 5.5, 6.0, 6.5, 7.0, and 7.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Xstore Services. | 2016-04-21 |
Not yet calculated |
CVE-2016-3429 CONFIRM |
oracle — retail_applicat_retail_applications | Unspecified vulnerability in the Oracle Retail MICROS ARS POS component in Oracle Retail Applications 1.5 allows remote authenticated users to affect confidentiality via vectors related to POS. | 2016-04-21 |
Not yet calculated |
CVE-2016-0684 CONFIRM |
oracle — siebel_core | Unspecified vulnerability in the Siebel Core – Common Components component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows local users to affect confidentiality and integrity via vectors related to Email. | 2016-04-21 |
Not yet calculated |
CVE-2016-0674 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vectors related to the kernel. | 2016-04-21 |
Not yet calculated |
CVE-2016-0676 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via vectors related to Filesystem. | 2016-04-21 |
Not yet calculated |
CVE-2016-3419 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Filesystem. | 2016-04-21 |
Not yet calculated |
CVE-2016-3441 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to the PAM LDAP module. | 2016-04-21 |
Not yet calculated |
CVE-2016-0693 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Network Configuration Service. | 2016-04-21 |
Not yet calculated |
CVE-2016-3462 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to ZFS. | 2016-04-21 |
Not yet calculated |
CVE-2016-3465 CONFIRM |
oracle — sun_solaris | Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Fwflash. | 2016-04-21 |
Not yet calculated |
CVE-2016-0669 CONFIRM |
oracle — supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect availability via vectors related to Engineering Communication Interface. | 2016-04-21 |
Not yet calculated |
CVE-2016-3428 CONFIRM |
oracle — supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3420. | 2016-04-21 |
Not yet calculated |
CVE-2016-3431 CONFIRM |
oracle — supply_chain_products_suite | Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to Security, a different vulnerability than CVE-2016-3431. | 2016-04-21 |
Not yet calculated |
CVE-2016-3420 CONFIRM |
oracle — supply_chain_products_suite | Unspecified vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul component in Oracle Supply Chain Products Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Dialog Box. | 2016-04-21 |
Not yet calculated |
CVE-2016-3456 CONFIRM |
oracle — supply_chain_products_suite | Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 12.0.6, 12.1, and 12.2 allows remote attackers to affect confidentiality and integrity via vectors related to JRAD Heartbeat. | 2016-04-21 |
Not yet calculated |
CVE-2016-3438 CONFIRM |
oracle — virtualization_virtualbox | Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.18 allows local users to affect confidentiality, integrity, and availability via vectors related to Core. | 2016-04-21 |
Not yet calculated |
CVE-2016-0678 CONFIRM |
samba — dce-rpc_layer | Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not properly implement the DCE-RPC layer, which allows remote attackers to perform protocol-downgrade attacks, cause a denial of service (application crash or CPU consumption), or possibly execute arbitrary code on a client system via unspecified vectors. | 2016-04-24 |
Not yet calculated |
CVE-2015-5370 CONFIRM |
samba — ldap_client_library | The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the “client ldap sasl wrapping” setting, which allows man-in-the-middle attackers to perform LDAP protocol-downgrade attacks by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated |
CVE-2016-2112 CONFIRM |
samba — netlogon | The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel’s endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, a related issue to CVE-2015-0005. | 2016-04-24 |
Not yet calculated |
CVE-2016-2111 CONFIRM |
samba — ntlmssp | The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 allows man-in-the-middle attackers to perform protocol-downgrade attacks by modifying the client-server data stream to remove application-layer flags or encryption settings, as demonstrated by clearing the NTLMSSP_NEGOTIATE_SEAL or NTLMSSP_NEGOTIATE_SIGN option to disrupt LDAP security. | 2016-04-24 |
Not yet calculated |
CVE-2016-2110 CONFIRM |
samba — samba | Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated |
CVE-2016-2115 CONFIRM |
samba — smbl_protocol_implementation | The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the “server signing = mandatory” setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client-server data stream. | 2016-04-24 |
Not yet calculated Not yet calculated |
CVE-2016-2114 CONFIRM |
samba — tls_servers | Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate. | 2016-04-24 |
Not yet calculated |
CVE-2016-2113 CONFIRM |
symantec — management_agent | The Inventory Solution component in the Management Agent in the client in Symantec Altiris IT Management Suite (ITMS) through 7.6 HF7 allows local users to bypass intended application-blacklist restrictions via unspecified vectors. | 2016-04-20 |
Not yet calculated |
CVE-2016-2202 CONFIRM BID |
symantec — messaging_gateway_(smg)_appliance | The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges. | 2016-04-22 |
Not yet calculated |
CVE-2016-2203 CONFIRM BID |
symantec — messaging_gateway_(smg)_appliance | The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to obtain root-shell access via crafted terminal-window input. | 2016-04-22 |
Not yet calculated |
CVE-2016-2204 CONFIRM BID |
systemd_ tmpfiles.d/systemd.conf | tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file. | 2016-04-20 |
Not yet calculated |
CVE-2015-8842 CONFIRM CONFIRM MLIST MLIST SUSE |
systemd_tmpfiles.d/systemd.conf | tmpfiles.d/systemd.conf in systemd before 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive information by reading these files. | 2016-04-20 |
Not yet calculated |
CVE-2014-9770 CONFIRM MLIST MLIST SUSE |
wireshark — epan/dissectors/packet-gsm_cbch.c_in_the_gsm_cbch_dissector | epan/dissectors/packet-gsm_cbch.c in the GSM CBCH dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses the wrong variable to index an array, which allows remote attackers to cause a denial of service (out-of-bounds access and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4082 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-iax2.c_in_the_iax2_dissector | epan/dissectors/packet-iax2.c in the IAX2 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4081 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-mswsp.c_in_the_ms-wsp | Integer signedness error in epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 allows remote attackers to cause a denial of service (integer overflow and application crash) via a crafted packet that triggers an unexpected array size. | 2016-04-25 |
Not yet calculated |
CVE-2016-4084 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-mswsp.c_in_the_ms-wsp_dissector | epan/dissectors/packet-mswsp.c in the MS-WSP dissector in Wireshark 2.0.x before 2.0.3 does not ensure that data is available before array allocation, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4083 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-ncp2222.inc | epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 2.0.x before 2.0.3 does not properly initialize memory for search patterns, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4076 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-ncp2222.inc_in_the_ncp_dissector | Stack-based buffer overflow in epan/dissectors/packet-ncp2222.inc in the NCP dissector in Wireshark 1.12.x before 1.12.11 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in a packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4085 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-pktc.c_in_the_pktc_dissector | epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not verify BER identifiers, which allows remote attackers to cause a denial of service (out-of-bounds write and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4079 CONFIRM CONFIRM CONFIRM |
wireshark — epan/dissectors/packet-pktc.c_in_the_pktc_dissector | epan/dissectors/packet-pktc.c in the PKTC dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 misparses timestamp fields, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4080 CONFIRM CONFIRM CONFIRM |
wireshark — epan/proto.c | epan/proto.c in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not limit the protocol-tree depth, which allows remote attackers to cause a denial of service (stack memory consumption and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4006 CONFIRM CONFIRM CONFIRM |
wireshark — epan/reassemble.c_in_tshark | epan/reassemble.c in TShark in Wireshark 2.0.x before 2.0.3 relies on incorrect special-case handling of truncated Tvb data structures, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet. | 2016-04-25 |
Not yet calculated |
CVE-2016-4077 CONFIRM MISC CONFIRM CONFIRM |
wireshark — ieee_802.11_dissector | The IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.11 and 2.0.x before 2.0.3 does not properly restrict element lists, which allows remote attackers to cause a denial of service (deep recursion and application crash) via a crafted packet, related to epan/dissectors/packet-capwap.c and epan/dissectors/packet-ieee80211.c. | 2016-04-25 |
Not yet calculated |
CVE-2016-4078 CONFIRM CONFIRM CONFIRM CONFIRM |
This product is provided subject to this Notification and this Privacy & Use policy.