| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7097 | 3.6 |
The filesystem implementation in the Linux kernel through 4.8.2 preserves the setgid bit during a setxattr call, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on execute permission
|
12-02-2023 - 23:25 | 16-10-2016 - 21:59 | |
| CVE-2016-4069 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail before 1.1.5 allows remote attackers to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified ve
|
30-10-2018 - 16:27 | 25-08-2016 - 18:59 | |
| CVE-2006-3961 | 6.8 |
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean
|
17-10-2018 - 21:32 | 01-08-2006 - 21:04 | |
| CVE-2016-4655 | 7.1 |
The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.
|
08-06-2018 - 01:29 | 25-08-2016 - 21:59 | |
| CVE-2016-4656 | 9.3 |
The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
08-06-2018 - 01:29 | 25-08-2016 - 21:59 | |
| CVE-2016-4657 | 6.8 |
WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
|
08-06-2018 - 01:29 | 25-08-2016 - 21:59 | |
| CVE-2008-2416 | 7.5 |
SQL injection vulnerability in index.php in FicHive 1.0 allows remote attackers to execute arbitrary SQL commands via the category parameter in a Fiction action, possibly related to sources/fiction.class.php.
|
29-09-2017 - 01:31 | 22-05-2008 - 13:09 | |
| CVE-2003-1010 | 4.6 |
Unknown vulnerability in fs_usage in Mac OS X 10.2.8 and 10.3.2 and Mac OS X Server 10.2.8 and 10.3.2 allows local users to gain privileges via unknown attack vectors.
|
11-07-2017 - 01:29 | 29-03-2004 - 05:00 | |
| CVE-2017-1234 | 3.5 |
IBM QRadar 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ses
|
30-06-2017 - 14:24 | 27-06-2017 - 16:29 | |
| CVE-2016-6340 | 2.1 |
The kickstart file in Red Hat QuickStart Cloud Installer (QCI) forces use of MD5 passwords on deployed systems, which makes it easier for attackers to determine cleartext passwords via a brute-force attack.
|
22-09-2016 - 17:48 | 22-09-2016 - 15:59 | |
| CVE-2010-1149 | 2.1 |
probers/udisks-dm-export.c in udisks before 1.0.1 exports UDISKS_DM_TARGETS_PARAMS information to udev even for a crypt UDISKS_DM_TARGETS_TYPE, which allows local users to discover encryption keys by (1) running a certain udevadm command or (2) readi
|
13-04-2010 - 04:00 | 12-04-2010 - 18:30 |