| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-9103 | 2.1 |
The v9fs_xattrcreate function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host heap memory information by reading xattribute values before writing to them.
|
12-02-2023 - 23:27 | 09-12-2016 - 22:59 | |
| CVE-2016-9101 | 2.1 |
Memory leak in hw/net/eepro100.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by repeatedly unplugging an i8255x (PRO100) NIC device.
|
14-12-2020 - 19:47 | 09-12-2016 - 22:59 | |
| CVE-2016-9104 | 2.1 |
Multiple integer overflows in the (1) v9fs_xattr_read and (2) v9fs_xattr_write functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS administrators to cause a denial of service (QEMU process crash) via a crafted offset, which tr
|
21-10-2020 - 20:22 | 09-12-2016 - 22:59 | |
| CVE-2016-7067 | 4.3 |
Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.
|
09-10-2019 - 23:19 | 10-09-2018 - 14:29 | |
| CVE-2017-8503 | 4.6 |
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability". This CVE ID is unique from CVE-2017-8642.
|
03-10-2019 - 00:03 | 08-08-2017 - 21:29 | |
| CVE-2016-8344 | 4.3 |
An issue was discovered in Honeywell Experion Process Knowledge System (PKS) platform: Experion PKS, Release 3xx and prior, Experion PKS, Release 400, Experion PKS, Release 410, Experion PKS, Release 430, and Experion PKS, Release 431. Experion PKS d
|
09-04-2019 - 15:31 | 13-02-2017 - 21:59 | |
| CVE-2006-4060 | 7.5 |
PHP remote file inclusion vulnerability in calendar.php in Visual Events Calendar 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfg_dir parameter.
|
17-10-2018 - 21:33 | 10-08-2006 - 00:04 | |
| CVE-2016-2205 | 6.1 |
Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 S
|
01-09-2017 - 01:29 | 12-07-2016 - 02:00 | |
| CVE-2016-6856 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Inbox Search feature in Hybris Management Console (HMC) in SAP Hybris before 6.0 allows remote attackers to inject arbitrary web script or HTML via the itemsperpage parameter.
|
24-08-2017 - 15:26 | 31-12-2016 - 07:59 | |
| CVE-2004-0071 | 5.0 |
Directory traversal vulnerability in buildManPage in class.manpagelookup.php for PHP Man Page Lookup 1.2.0 allows remote attackers to read arbitrary files via the command parameter ($cmd variable) to index.php.
|
11-07-2017 - 01:29 | 17-02-2004 - 05:00 | |
| CVE-2016-6859 | 4.0 |
Hybris Management Console (HMC) in SAP Hybris before 6.0 allows remote attackers to obtain sensitive information by triggering an error and then reading a Java stack trace.
|
04-01-2017 - 14:35 | 31-12-2016 - 07:59 | |
| CVE-2010-1138 | 5.0 |
The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 on Windows, VMware Player 3.0 before 3.0.1 build 227600, VMware Player 2.5.x before 2.5.4 build 246459 on Windows, VM
|
15-05-2013 - 03:07 | 12-04-2010 - 18:30 |