CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-5372 +Info 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The function msp (aka MSPRuntimeInterface) in the P4 SERVERCORE component in SAP AS JAVA allows remote attackers to obtain sensitive system information by leveraging a missing authorization check for the (1) getInformation, (2) getParameters, (3) getServiceInfo, (4) getStatistic, or (5) getClientStatistic function, aka SAP Security Note 2331908.
2 CVE-2017-5371 DoS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Odata Server in SAP Adaptive Server Enterprise (ASE) 16 allows remote attackers to cause a denial of service (process crash) via a series of crafted requests, aka SAP Security Note 2330422.
3 CVE-2016-1000009 2016-10-06 2016-12-15
0.0
None ??? ??? ??? ??? ??? ???
TP-LINK lost control of two domains, www.tplinklogin.net and tplinkextender.net. Please note that these domains are physically printed on many of the devices.
4 CVE-2016-9447 DoS Exec Code 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The ROM mappings in the NSF decoder in gstreamer 0.10.x allows remote attackers to cause a denial of service (out-of-bounds read or write) and possibly execute arbitrary code via a crafted NSF music file.
5 CVE-2016-9446 +Info 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas.
6 CVE-2016-9445 DoS Overflow 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Integer overflow in the vmnc decoder in the gstreamer allows remote attackers to cause a denial of service (crash) via large width and height values, which triggers a buffer overflow.
7 CVE-2016-9401 Bypass 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
popd in bash might allow local users to bypass the restricted shell and cause a use-after-free via a crafted address.
8 CVE-2016-9386 +Priv 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected" base/limit values.
9 CVE-2016-9385 DoS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The x86 segment base write emulation functionality in Xen 4.4.x through 4.7.x allows local x86 PV guest OS administrators to cause a denial of service (host crash) by leveraging lack of canonical address checks.
10 CVE-2016-9383 DoS Exec Code +Info 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute arbitrary code on the host by leveraging broken emulation of bit test instructions.
11 CVE-2016-9382 DoS +Priv 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode.
12 CVE-2016-9381 +Priv 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability.
13 CVE-2016-9380 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in the bootloader configuration file.
14 CVE-2016-9379 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via string quotes and S-expressions in the bootloader configuration file.
15 CVE-2016-9081 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.
16 CVE-2016-9012 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
CloudVision Portal (CVP) before 2016.1.2.1 allows remote authenticated users to gain access to the internal configuration mechanisms via the management plane, related to a request to /web/system/console/bundle."
17 CVE-2016-7792 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Ubiquiti Networks UniFi 5.2.7 does not restrict access to the database, which allows remote attackers to modify the database by directly connecting to it.
18 CVE-2016-7567 Overflow 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.
19 CVE-2016-7410 DoS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The _dwarf_read_loc_section function in dwarf_loc.c in libdwarf 20160613 allows attackers to cause a denial of service (buffer over-read) via a crafted file.
20 CVE-2016-7102 +Priv 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
ownCloud Desktop before 2.2.3 allows local users to execute arbitrary and possibly gain privileges via a Trojan library in a "special path" in the C: drive.
21 CVE-2016-7037 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The verify function in Encryption/Symmetric.php in Malcolm Fell jwt before 1.0.3 does not use a timing-safe function for hash comparison, which allows attackers to spoof signatures via a timing attack.
22 CVE-2016-7036 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failure to use a constant time comparison for HMAC keys.
23 CVE-2016-6920 DoS Overflow 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile positions.
24 CVE-2016-6668 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA plugin 6.26.0 before 7.8.17 allows remote attackers to obtain the secret key for communicating with HipChat instances by reading unspecified pages.
25 CVE-2016-6603 Bypass 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to bypass authentication and impersonate arbitrary users via the UserName HTTP header.
26 CVE-2016-6602 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
ZOHO WebNMS Framework 5.2 and 5.2 SP1 use a weak obfuscation algorithm to store passwords, which allows context-dependent attackers to obtain cleartext passwords by leveraging access to WEB-INF/conf/securitydbData.xml. NOTE: this issue can be combined with CVE-2016-6601 for a remote exploit.
27 CVE-2016-6601 Dir. Trav. 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Directory traversal vulnerability in the file download functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to read arbitrary files via a .. (dot dot) in the fileName parameter to servlets/FetchFile.
28 CVE-2016-6600 Dir. Trav. 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Directory traversal vulnerability in the file upload functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to upload and execute arbitrary JSP files via a .. (dot dot) in the fileName parameter to servlets/FileUploadServlet.
29 CVE-2016-6582 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.
30 CVE-2016-6521 Exec Code CSRF 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Cross-site request forgery (CSRF) vulnerability in Grails console (aka Grails Debug Console and Grails Web Console) 2.0.7, 1.5.10, and earlier allows remote attackers to hijack the authentication of users for requests that execute arbitrary Groovy code via unspecified vectors.
31 CVE-2016-6517 Dir. Trav. 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via a %2E%2E (encoded dot dot) in the minifierBundleDir parameter to barebone.jsp.
32 CVE-2016-6484 Http R.Spl. 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
CRLF injection vulnerability in Infoblox Network Automation NetMRI before 7.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the contentType parameter in a login action to config/userAdmin/login.tdf.
33 CVE-2016-6223 DoS +Info 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attackers to cause a denial of service (crash) or possibly obtain sensitive information via a negative index in a file-content buffer.
34 CVE-2016-6164 Overflow 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size.
35 CVE-2016-6160 DoS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame.
36 CVE-2016-5876 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
ownCloud server before 8.2.6 and 9.x before 9.0.3, when the gallery app is enabled, allows remote attackers to download arbitrary images via a direct request.
37 CVE-2016-5873 Exec Code Overflow 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow remote attackers to execute arbitrary code via non-printable characters in a URL.
38 CVE-2016-5742 Exec Code Sql 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x before 6.1.3 and 6.2.x before 6.2.6 and Movable Type Open Source 5.2.13 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
39 CVE-2016-5720 Exec Code 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Multiple untrusted search path vulnerabilities in Microsoft Skype allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) msi.dll, (2) dpapi.dll, or (3) cryptui.dll that is located in the current working directory.
40 CVE-2016-5697 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Ruby-saml before 1.3.0 allows attackers to perform XML signature wrapping attacks via unspecified vectors.
41 CVE-2016-5237 +Priv 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse Steam.exe file.
42 CVE-2016-5119 Exec Code 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The automatic update feature in KeePass 2.33 and earlier allows man-in-the-middle attackers to execute arbitrary code by spoofing the version check response and supplying a crafted update.
43 CVE-2016-5091 Exec Code +Info 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
ExtbasE in TYPO3 4.3.0 before 6.2.24, 7.x before 7.6.8, and 8.1.1 allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted Extbase action.
44 CVE-2016-4793 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header.
45 CVE-2016-4484 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password.
46 CVE-2016-4340 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as any other user via unspecified vectors.
47 CVE-2016-4338 Exec Code 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before 3.0.3, when used with a shell other than bash, allows context-dependent attackers to execute arbitrary code or SQL commands via the mysql.size parameter.
48 CVE-2016-4056 XSS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Cross-site scripting (XSS) vulnerability in the Backend component in TYPO3 6.2.x before 6.2.19 allows remote attackers to inject arbitrary web script or HTML via the module parameter when creating a bookmark.
49 CVE-2016-4055 DoS 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string, aka a "regular expression Denial of Service (ReDoS)."
50 CVE-2016-4010 Exec Code 2017-01-23 2017-01-23
0.0
None ??? ??? ??? ??? ??? ???
Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data.
Total number of vulnerabilities : 134   Page : 1 (This Page)2 3
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.