Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 9 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-5017 | 6.8 |
Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the "cmd:" batch mode syntax, allows attackers to have unspecified impact via a long command string.
|
23-03-2017 - 21:59 | 21-09-2016 - 10:25 | |
CVE-2016-1248 | 6.8 |
vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened.
|
17-01-2017 - 21:59 | 23-11-2016 - 10:59 | |
CVE-2016-9555 | 10.0 |
The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified
|
06-01-2017 - 22:00 | 27-11-2016 - 22:59 | |
CVE-2016-7098 | 6.8 |
Race condition in wget 1.17 and earlier, when used in recursive or mirroring mode to download a single file, might allow remote servers to bypass intended access list restrictions by keeping an HTTP connection open.
|
06-01-2017 - 22:00 | 26-09-2016 - 10:59 | |
CVE-2015-8370 | 6.9 |
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service (disk corruption) via backspace characters in the (1) grub_username_get f
|
07-12-2016 - 13:27 | 16-12-2015 - 16:59 | |
CVE-2016-9083 | 7.2 |
drivers/vfio/pci/vfio_pci.c in the Linux kernel through 4.8.11 allows local users to bypass integer overflow checks, and cause a denial of service (memory corruption) or have unspecified other impact, by leveraging access to a vfio PCI device file fo
|
29-11-2016 - 14:15 | 27-11-2016 - 22:59 | |
CVE-2016-4450 | 5.0 |
os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a crafted request, involving writing a client request body to a temporary
|
28-11-2016 - 15:18 | 07-06-2016 - 10:06 | |
CVE-2015-8899 | 5.0 |
Dnsmasq before 2.76 allows remote servers to cause a denial of service (crash) via a reply with an empty DNS address that has an (1) A or (2) AAAA record defined locally.
|
28-11-2016 - 14:50 | 30-06-2016 - 13:59 | |
CVE-2016-5360 | 5.0 |
HAproxy 1.6.x before 1.6.6, when a deny comes from a reqdeny rule, allows remote attackers to cause a denial of service (uninitialized memory access and crash) or possibly have unspecified other impact via unknown vectors.
|
01-07-2016 - 18:28 | 30-06-2016 - 13:59 |