Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2016-10159 | 5.0 |
Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or application crash) via a truncated manifest entry in a PH
|
29-08-2022 - 20:43 | 24-01-2017 - 21:59 | |
CVE-2016-10155 | 4.9 |
Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (host memory consumption and QEMU process crash) via a large number of device unplug operations.
|
10-11-2020 - 18:57 | 15-03-2017 - 15:59 | |
CVE-2017-5552 | 4.9 |
Memory leak in the virgl_resource_attach_backing function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) allows local guest OS users to cause a denial of service (host memory consumption) via a large number of VIRTIO_GPU_CMD_RESOURCE_ATTA
|
10-11-2020 - 17:56 | 15-03-2017 - 15:59 | |
CVE-2016-7076 | 7.2 |
sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec
|
30-09-2020 - 18:15 | 29-05-2018 - 13:29 | |
CVE-2016-7032 | 6.9 |
sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function.
|
30-09-2020 - 18:15 | 14-04-2017 - 18:59 | |
CVE-2017-2096 | 10.0 |
smalruby-editor v0.4.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
|
09-09-2020 - 15:12 | 28-04-2017 - 16:59 | |
CVE-2017-2097 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in Knowledge versions prior to v1.7.0 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
|
24-04-2020 - 15:24 | 28-04-2017 - 16:59 | |
CVE-2016-7076 | 7.2 |
sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec
|
06-05-2019 - 21:29 | 29-05-2018 - 13:29 | |
CVE-2016-7032 | 6.9 |
sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function.
|
05-01-2018 - 02:31 | 14-04-2017 - 18:59 | |
CVE-2004-0257 | 5.0 |
OpenBSD 3.4 and NetBSD 1.6 and 1.6.1 allow remote attackers to cause a denial of service (crash) by sending an IPv6 packet with a small MTU to a listening port and then issuing a TCP connect to that port.
|
10-10-2017 - 01:30 | 23-11-2004 - 05:00 | |
CVE-2017-7663 | 4.3 |
Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.
|
19-07-2017 - 16:01 | 17-07-2017 - 13:18 | |
CVE-2016-6001 | 3.5 |
IBM Forms Experience Builder could be susceptible to a server-side request forgery (SSRF) from the application design interface allowing for some information disclosure of internal resources.
|
15-02-2017 - 12:32 | 01-02-2017 - 22:59 | |
CVE-2016-9260 | 3.5 |
Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files.
|
03-02-2017 - 16:12 | 31-01-2017 - 22:59 |