| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2003-1041 | 7.5 |
Internet Explorer 5.x and 6.0 allows remote attackers to execute arbitrary programs via a modified directory traversal attack using a URL containing ".." (dot dot) sequences and a filename that ends in "::" which is treated as a .chm file even if it
|
23-07-2021 - 12:55 | 14-06-2004 - 04:00 | |
| CVE-2016-6418 | 4.3 |
Cross-site scripting (XSS) vulnerability in Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.0 through 3.4.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCva14552.
|
05-01-2021 - 17:39 | 05-10-2016 - 17:59 | |
| CVE-2016-2168 | 4.0 |
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted
|
20-10-2020 - 22:15 | 05-05-2016 - 18:59 | |
| CVE-2019-1010241 | 4.0 |
Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line #30 (passwordVariable). The
|
30-09-2020 - 13:40 | 19-07-2019 - 17:15 | |
| CVE-2019-1010241 | 4.0 |
Jenkins Credentials Binding Plugin Jenkins 1.17 is affected by: CWE-257: Storing Passwords in a Recoverable Format. The impact is: Authenticated users can recover credentials. The component is: config-variables.jelly line #30 (passwordVariable). The
|
30-09-2020 - 13:40 | 19-07-2019 - 17:15 | |
| CVE-2016-6380 | 8.3 |
The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (data corruption or device reload) via a craft
|
29-09-2020 - 12:14 | 05-10-2016 - 20:59 | |
| CVE-2016-6386 | 7.8 |
Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cause a denial of service (data-structure corruption and device reload) via fragmented IPv4 packets, aka Bug ID CSCux66005.
|
29-09-2020 - 12:14 | 05-10-2016 - 17:59 | |
| CVE-2016-6380 | 8.3 |
The DNS forwarder in Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.15 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (data corruption or device reload) via a craft
|
29-09-2020 - 12:14 | 05-10-2016 - 20:59 | |
| CVE-2016-6386 | 7.8 |
Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cause a denial of service (data-structure corruption and device reload) via fragmented IPv4 packets, aka Bug ID CSCux66005.
|
29-09-2020 - 12:14 | 05-10-2016 - 17:59 | |
| CVE-2016-6384 | 7.8 |
Cisco IOS 12.2 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.17 and 16.2 allow remote attackers to cause a denial of service (device reload) via crafted fields in an H.323 message, aka Bug ID CSCux04257.
|
02-06-2020 - 14:42 | 05-10-2016 - 17:59 | |
| CVE-2007-5495 | 4.4 |
sealert in setroubleshoot 2.0.5 allows local users to overwrite arbitrary files via a symlink attack on the sealert.log temporary file.
|
29-09-2017 - 01:29 | 23-05-2008 - 15:32 | |
| CVE-2016-6420 | 6.8 |
Cisco FireSIGHT System Software 4.10.3 through 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.
|
30-07-2017 - 01:29 | 05-10-2016 - 10:59 | |
| CVE-2016-6379 | 7.8 |
Cisco IOS 12.2 and IOS XE 3.14 through 3.16 and 16.1 allow remote attackers to cause a denial of service (device reload) via crafted IP Detail Record (IPDR) packets, aka Bug ID CSCuu35089.
|
30-07-2017 - 01:29 | 05-10-2016 - 20:59 | |
| CVE-2016-6378 | 7.8 |
Cisco IOS XE 3.1 through 3.17 and 16.1 through 16.2 allows remote attackers to cause a denial of service (device reload) via crafted ICMP packets that require NAT, aka Bug ID CSCuw85853.
|
30-07-2017 - 01:29 | 05-10-2016 - 20:59 | |
| CVE-2016-6385 | 7.8 |
Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows remote attackers to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy823
|
30-07-2017 - 01:29 | 05-10-2016 - 20:59 | |
| CVE-2006-3123 | 2.1 |
Multiple integer overflows in the (1) dodecrypt and (2) doencrypt functions in cfs_fh.c in cfsd in Matt Blaze Cryptographic File System (CFS) 1.4.1 before Debian GNU/Linux package 1.4.1-17 allow local users to cause a denial of service (daemon crash)
|
20-07-2017 - 01:32 | 07-08-2006 - 19:04 | |
| CVE-2017-9995 | 6.8 |
libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via
|
03-07-2017 - 18:59 | 28-06-2017 - 06:29 | |
| CVE-2016-5062 | 9.3 |
The web server in Aternity before 9.0.1 does not require authentication for getMBeansFromURL loading of Java MBeans, which allows remote attackers to execute arbitrary Java code by registering MBeans.
|
10-04-2017 - 01:59 | 29-09-2016 - 10:59 | |
| CVE-2016-6419 | 6.0 |
SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 through 5.4.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCur25485.
|
28-11-2016 - 20:32 | 05-10-2016 - 10:59 |