CVE-2016-0xxx

There are 975 CVE in this subgroup.
Last updated: 
← Back to 2016
ID Summary Flags Max Score
CVE-2016-0001 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0002 The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Expl...
CVE-2016-0003 Microsoft Edge allows remote attackers to execute arbitrary code via unspecified vectors, aka "Micro...
CVE-2016-0004 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0005 Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy vi...
CVE-2016-0006 The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windo...
E S
CVE-2016-0007 The sandbox implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windo...
E S
CVE-2016-0008 The graphics device interface in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Wi...
S
CVE-2016-0009 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows 10 Gold ...
CVE-2016-0010 Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Excel ...
CVE-2016-0011 Microsoft SharePoint Server 2013 SP1 and SharePoint Foundation 2013 SP1 allow remote authenticated u...
CVE-2016-0012 Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Offic...
CVE-2016-0013 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0014 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8...
S
CVE-2016-0015 DirectShow in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Window...
E S
CVE-2016-0016 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8...
E S
CVE-2016-0017 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0018 Microsoft Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 R2, and Windows 10 Gold and 151...
S
CVE-2016-0019 The Remote Desktop Protocol (RDP) service implementation in Microsoft Windows 10 Gold and 1511 allow...
CVE-2016-0020 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandle DLL loa...
CVE-2016-0021 Microsoft InfoPath 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary cod...
CVE-2016-0022 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0023 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0024 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code via...
CVE-2016-0025 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 201...
CVE-2016-0026 The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and...
CVE-2016-0027 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0028 Outlook Web Access (OWA) in Microsoft Exchange Server 2013 SP1, Cumulative Update 11, and Cumulative...
CVE-2016-0029 Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20...
S
CVE-2016-0030 Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20...
S
CVE-2016-0031 Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20...
S
CVE-2016-0032 Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in Microsoft Exchange Server 20...
S
CVE-2016-0033 Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 does not prevent recursive compi...
CVE-2016-0034 Microsoft Silverlight 5 before 5.1.41212.0 mishandles negative offsets during decoding, which allows...
KEV S
CVE-2016-0035 Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M...
CVE-2016-0036 The Remote Desktop Protocol (RDP) implementation in Microsoft Windows 7 SP1, Windows 8.1, Windows Se...
S
CVE-2016-0037 The forms-based authentication implementation in Active Directory Federation Services (ADFS) 3.0 in ...
CVE-2016-0038 Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, W...
S
CVE-2016-0039 Cross-site scripting (XSS) vulnerability in SharePoint Server in Microsoft SharePoint Foundation 201...
CVE-2016-0040 The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 all...
KEV E S
CVE-2016-0041 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows...
CVE-2016-0042 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows...
CVE-2016-0043 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0044 Sync Framework in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows remote at...
S
CVE-2016-0045 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0046 Windows Reader in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remo...
S
CVE-2016-0047 WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attack...
CVE-2016-0048 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
CVE-2016-0049 Kerberos in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows ...
E
CVE-2016-0050 Network Policy Server (NPS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and...
CVE-2016-0051 The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1,...
E
CVE-2016-0052 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0053 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0054 Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for M...
CVE-2016-0055 Microsoft Office 2007 SP3 allows remote attackers to execute arbitrary code via a crafted Office doc...
CVE-2016-0056 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0057 Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 does not properly sign an unspecified binary...
CVE-2016-0058 Buffer overflow in the PDF Library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Wi...
S
CVE-2016-0059 The Hyperlink Object Library in Microsoft Internet Explorer 9 through 11 allows remote attackers to ...
CVE-2016-0060 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
CVE-2016-0061 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
CVE-2016-0062 Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o...
CVE-2016-0063 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
E
CVE-2016-0064 Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0065 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0066 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0067 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0068 Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy vi...
CVE-2016-0069 Microsoft Internet Explorer 9 through 11 allows remote attackers to bypass the Same Origin Policy vi...
CVE-2016-0070 The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Window...
CVE-2016-0071 Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of...
CVE-2016-0072 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0073 The kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10...
E
CVE-2016-0074 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0075 The kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10...
E
CVE-2016-0076 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0077 Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows re...
CVE-2016-0078 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0079 The kernel in Microsoft Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a ...
E
CVE-2016-0080 Microsoft Edge mishandles exceptions during window-message dispatch operations, which allows remote ...
CVE-2016-0081 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0082 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0083 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0084 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0085 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0086 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0087 Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 do not properly v...
CVE-2016-0088 Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS us...
CVE-2016-0089 Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS us...
CVE-2016-0090 Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 allows guest OS users to ob...
CVE-2016-0091 OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0092 OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0093 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
E
CVE-2016-0094 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
E
CVE-2016-0095 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
CVE-2016-0096 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
CVE-2016-0097 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0098 Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, W...
CVE-2016-0099 The Secondary Logon Service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Wind...
KEV E S
CVE-2016-0100 Microsoft Windows Vista SP2 and Server 2008 SP2 mishandle library loading, which allows local users ...
CVE-2016-0101 Microsoft Windows Server 2008 R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, W...
CVE-2016-0102 Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o...
CVE-2016-0103 Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0104 Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0105 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
CVE-2016-0106 Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0107 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0108 Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o...
E
CVE-2016-0109 Microsoft Internet Explorer 11 and Microsoft Edge allow remote attackers to execute arbitrary code o...
CVE-2016-0110 Microsoft Internet Explorer 10 through 11 and Microsoft Edge allow remote attackers to execute arbit...
CVE-2016-0111 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
E
CVE-2016-0112 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0113 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0114 Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0115 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0116 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0117 The PDF library in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windo...
CVE-2016-0118 The PDF library in Microsoft Windows 10 Gold and 1511 allows remote attackers to execute arbitrary c...
CVE-2016-0119 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0120 The Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, W...
E
CVE-2016-0121 The Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, W...
E
CVE-2016-0122 Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 f...
E
CVE-2016-0123 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0124 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0125 Microsoft Edge mishandles the Referer policy, which allows remote attackers to obtain sensitive brow...
CVE-2016-0126 Microsoft Office 2013 SP1, 2013 RT SP1, and 2016 allows remote attackers to execute arbitrary code v...
CVE-2016-0127 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office Com...
CVE-2016-0128 The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 an...
S
CVE-2016-0129 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0130 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0131 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0132 Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 mishandles signature va...
CVE-2016-0133 The USB Mass Storage Class driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1...
CVE-2016-0134 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0135 The Secondary Logon Service in Microsoft Windows 10 Gold and 1511 allows local users to gain privile...
CVE-2016-0136 Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, Excel Services on SharePoin...
CVE-2016-0137 The Click-to-Run (C2R) implementation in Microsoft Office 2013 SP1 and 2016 allows local users to by...
CVE-2016-0138 Microsoft Exchange Server 2007 SP3, 2010 SP3, 2013 SP1, 2013 Cumulative Update 12, 2013 Cumulative U...
CVE-2016-0139 Microsoft Excel 2010 SP2, Word for Mac 2011, and Excel Viewer allow remote attackers to execute arbi...
CVE-2016-0140 Microsoft Office 2007 SP3, Office 2010 SP2, Word Automation Services on SharePoint Server 2010 SP2, ...
CVE-2016-0141 The Visual Basic macros in Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016 export a certific...
CVE-2016-0142 Video Control in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and Window...
CVE-2016-0143 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
E
CVE-2016-0144 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0145 The font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; ...
E
CVE-2016-0146 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0147 Microsoft XML Core Services 3.0 allows remote attackers to execute arbitrary code via a crafted web ...
CVE-2016-0148 Microsoft .NET Framework 4.6 and 4.6.1 mishandles library loading, which allows local users to gain ...
CVE-2016-0149 Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middl...
CVE-2016-0150 HTTP.sys in Microsoft Windows 10 Gold and 1511 allows remote attackers to cause a denial of service ...
CVE-2016-0151 The Client-Server Run-time Subsystem (CSRSS) in Microsoft Windows 8.1, Windows Server 2012 Gold and ...
KEV E S
CVE-2016-0152 Internet Information Services (IIS) in Microsoft Windows Vista SP2 and Server 2008 SP2 mishandles li...
CVE-2016-0153 OLE in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0154 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
CVE-2016-0155 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0156 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0157 Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memor...
CVE-2016-0158 Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka...
CVE-2016-0159 Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of...
CVE-2016-0160 Microsoft Internet Explorer 11 mishandles DLL loading, which allows local users to gain privileges v...
CVE-2016-0161 Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka...
CVE-2016-0162 Microsoft Internet Explorer 9 through 11 allows remote attackers to determine the existence of files...
KEV S
CVE-2016-0163 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0164 Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a d...
CVE-2016-0165 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
KEV E S
CVE-2016-0166 Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-0167 The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7...
KEV S
CVE-2016-0168 GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0169 GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0170 GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ...
CVE-2016-0171 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
E
CVE-2016-0172 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0173 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
E
CVE-2016-0174 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
CVE-2016-0175 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
CVE-2016-0176 dxgkrnl.sys in the DirectX Graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows...
CVE-2016-0177 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0178 The RPC NDR Engine in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1...
CVE-2016-0179 Windows Shell in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 Gold ...
CVE-2016-0180 The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Window...
CVE-2016-0181 Microsoft Windows 10 Gold and 1511 allows local users to bypass the Virtual Secure Mode Hypervisor C...
CVE-2016-0182 Windows Journal in Microsoft Windows Vista SP2, Windows 7 SP1, Windows 8.1, Windows RT 8.1, and Wind...
CVE-2016-0183 The Windows font library in Microsoft Office 2010 SP2, Word 2010 SP2, Word Automation Services on Sh...
CVE-2016-0184 Use-after-free vulnerability in GDI in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 S...
CVE-2016-0185 Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers ...
KEV E S
CVE-2016-0186 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or ...
CVE-2016-0187 The Microsoft (1) JScript 5.8 and (2) VBScript 5.8 engines, as used in Internet Explorer 9 through 1...
CVE-2016-0188 The User Mode Code Integrity (UMCI) implementation in Device Guard in Microsoft Internet Explorer 11...
CVE-2016-0189 The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 t...
KEV E S
CVE-2016-0190 Volume Manager Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT 8.1 ...
CVE-2016-0191 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or ...
CVE-2016-0192 Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitr...
CVE-2016-0193 The Chakra JavaScript engine in Microsoft Edge allows remote attackers to execute arbitrary code or ...
CVE-2016-0194 Microsoft Internet Explorer 10 and 11 allows remote attackers to bypass file permissions and obtain ...
CVE-2016-0195 The Imaging Component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 ...
CVE-2016-0196 The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows ...
CVE-2016-0197 dxgkrnl.sys in the DirectX Graphics kernel subsystem in the kernel-mode drivers in Microsoft Windows...
CVE-2016-0198 Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,...
CVE-2016-0199 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
E
CVE-2016-0200 Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause ...
CVE-2016-0201 GSKit in IBM Security Network Protection 5.3.1 before 5.3.1.7 and 5.3.2 allows remote attackers to d...
S
CVE-2016-0202 A vulnerability has been identified in tasks, backend object generated for handling any action perfo...
S
CVE-2016-0203 A vulnerability has been identified in the IBM Cloud Orchestrator task API. The task API might allow...
S
CVE-2016-0204 Open redirect vulnerability in IBM Cloud Orchestrator 2.4.x before 2.4.0 FP3 allows remote authentic...
S
CVE-2016-0205 A vulnerability has been identified in IBM Cloud Orchestrator 2.3, 2.3.0.1, 2.4, and 2.4.0.1 that co...
S
CVE-2016-0206 IBM Cloud Orchestrator could allow a local authenticated attacker to cause the server to slow down f...
S
CVE-2016-0207 IBM Algorithmics One-Algo Risk Application (ARA) 4.9.1 through 5.1.0 allows remote authenticated use...
S
CVE-2016-0208 IBM WebSphere Commerce 6.x through 6.0.0.11, 7.x through 7.0.0.9, and 8.x before 8.0.0.3 allows remo...
CVE-2016-0209 Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.5.0 before CF09 allows remote att...
CVE-2016-0210 IBM Sterling B2B Integrator Standard Edition could allow a remote attacker to obtain sensitive infor...
S
CVE-2016-0211 IBM DB2 9.7 through FP11, 9.8, 10.1 through FP5, and 10.5 through FP7 on Linux, UNIX, and Windows al...
CVE-2016-0212 Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 al...
CVE-2016-0213 Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 al...
CVE-2016-0214 IBM Tivoli Endpoint Manager could allow a remote attacker to upload arbitrary files. A remote attack...
S
CVE-2016-0215 IBM DB2 9.7, 10.1 before FP6, and 10.5 before FP8 on AIX, Linux, HP, Solaris and Windows allow remot...
S
CVE-2016-0216 Stack-based buffer overflow in IBM Tivoli Storage Manager FastBack 5.5 and 6.1.x through 6.1.11.1 al...
CVE-2016-0217 IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site script...
S
CVE-2016-0218 IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to cross-site scripting, ca...
S
CVE-2016-0219 XML external entity (XXE) vulnerability in IBM Rational Team Concert 3.0 before 3.0.1.6 iFix7 Interi...
CVE-2016-0221 Cross-site scripting (XSS) vulnerability in IBM Cognos TM1, as used in IBM Cognos Business Intellige...
CVE-2016-0222 IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote authenticated users to bypass i...
CVE-2016-0223 Cross-site scripting (XSS) vulnerability in the Webform Framework API in IBM Forms Server 4.0.x, 8.0...
S
CVE-2016-0224 SQL injection vulnerability in IBM Marketing Platform 8.5.x, 8.6.x, and 9.x before 9.1.2.2 allows re...
CVE-2016-0225 IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.9 allows remote authenticated Comm...
CVE-2016-0226 The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly rest...
S
CVE-2016-0227 Cross-site scripting (XSS) vulnerability in the document-list control implementation in IBM Business...
CVE-2016-0228 IBM Marketing Platform 10.0 could allow a remote attacker to conduct phishing attacks, caused by an ...
S
CVE-2016-0229 Cross-site scripting (XSS) vulnerability in IBM Marketing Platform 8.6.x and 9.x before 9.1.2.2 allo...
CVE-2016-0230 IBM Power Hardware Management Console (HMC) 7.3 through 7.3.0 SP7, 7.9 through 7.9.0 SP3, 8.1 throug...
S
CVE-2016-0231 IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment Servi...
CVE-2016-0232 IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment Servi...
CVE-2016-0233 SQL injection vulnerability in IBM Marketing Platform 8.5.x, 8.6.x, and 9.x before 9.1.2.2 allows re...
CVE-2016-0234 IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 could allow a local user to obtain sensitive informatio...
S
CVE-2016-0235 IBM Security Guardium Database Activity Monitor 10 allows local users to have unspecified impact by ...
CVE-2016-0236 IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10...
S
CVE-2016-0237 IBM Security Guardium Database Activity Monitor 10 allows local users to obtain sensitive informatio...
CVE-2016-0238 IBM Security Guardium 9.0, 9.1, 9.5, 10.0, and 10.1 transmits sensitive data in cleartext in the que...
CVE-2016-0239 IBM Security Guardium Database Activity Monitor 9.x through 9.5 before p700 and 10.x through 10.0.1 ...
S
CVE-2016-0240 IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10...
S
CVE-2016-0241 IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10...
S
CVE-2016-0242 IBM Security Guardium 10.x through 10.1 before p100 allows remote authenticated users to obtain sens...
S
CVE-2016-0243 Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5...
CVE-2016-0244 Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5...
CVE-2016-0245 The XML parser in IBM WebSphere Portal 8.0.x before 8.0.0.1 CF20 and 8.5.x before 8.5.0.0 CF10 allow...
S
CVE-2016-0246 Cross-site scripting (XSS) vulnerability in IBM Security Guardium 8.2 before p310, 9.x through 9.5 b...
S
CVE-2016-0247 IBM Security Guardium 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p10...
S
CVE-2016-0248 IBM Security Guardium 9.0 before p700 and 10.0 before p100 allows man-in-the-middle attackers to obt...
S
CVE-2016-0249 SQL injection vulnerability in IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x ...
S
CVE-2016-0250 XML external entity (XXE) vulnerability in IBM InfoSphere Information Governance Catalog 11.3 before...
S
CVE-2016-0252 IBM Control Center 6.x before 6.0.0.1 iFix06 and Sterling Control Center 5.4.x before 5.4.2.1 iFix09...
CVE-2016-0253 Cross-site scripting (XSS) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services...
S
CVE-2016-0254 IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XM...
S
CVE-2016-0255 IBM Marketing Platform 9.1 and 10.0 is vulnerable to stored cross-site scripting, caused by improper...
S
CVE-2016-0259 runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authori...
CVE-2016-0260 Memory leak in queue-manager agents in IBM WebSphere MQ 8.x before 8.0.0.5 allows remote attackers t...
CVE-2016-0261 Cross-site scripting (XSS) vulnerability in IBM Curam Social Program Management 6.0.0 before SP2 EP2...
S
CVE-2016-0262 Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0...
CVE-2016-0263 IBM Spectrum Scale 4.1 before 4.1.1.5 and 4.2 before 4.2.0.2 and General Parallel File System 3.5 be...
CVE-2016-0264 Buffer overflow in the Java Virtual Machine (JVM) in IBM SDK, Java Technology Edition 6 before SR16 ...
CVE-2016-0265 IBM Campaign is vulnerable to cross-site scripting, caused by improper validation of user-supplied i...
S
CVE-2016-0266 IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x do not default to the latest TLS version, which makes ...
M
CVE-2016-0267 IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 allows re...
CVE-2016-0268 XML external entity (XXE) vulnerability in IBM Financial Transaction Manager (FTM) for ACH Services ...
S
CVE-2016-0269 Cross-site scripting (XSS) vulnerability in IBM BigFix Platform 9.x before 9.1.8 and 9.2.x before 9....
CVE-2016-0270 IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 through 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and...
S
CVE-2016-0271 The agents in IBM UrbanCode Deploy 6.x before 6.0.1.14, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1...
CVE-2016-0272 Cross-site request forgery (CSRF) vulnerability in IBM Financial Transaction Manager (FTM) for ACH S...
S
CVE-2016-0273 Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 ...
CVE-2016-0274 IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x befo...
S
CVE-2016-0275 IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x befo...
S
CVE-2016-0276 IBM Financial Transaction Manager (FTM) for ACH Services for Multi-Platform 2.1.1.2 and 3.0.0.x befo...
S
CVE-2016-0277 Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9...
CVE-2016-0278 Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9...
CVE-2016-0279 Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9...
CVE-2016-0280 Cross-site scripting (XSS) vulnerability in IBM Information Server Framework 8.5, Information Server...
S
CVE-2016-0281 The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, when the jumbo_frames feature ...
CVE-2016-0282 Cross-site scripting (XSS) vulnerability in IBM iNotes before 8.5.3 FP6 IF2 allows remote authentica...
CVE-2016-0283 Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) client web application in IBM ...
CVE-2016-0284 The XML parser in IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4...
CVE-2016-0285 Cross-site scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management 3.0.1.6 ...
CVE-2016-0286 IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-TIV-BSM-FP0004 and 6.1.1 before 6.1.1-TIV-BSM...
S
CVE-2016-0287 IBM i Access 7.1 on Windows allows local users to discover registry passwords via unspecified vector...
CVE-2016-0288 IBM Security AppScan Standard 8.7.x, 8.8.x, and 9.x before 9.0.3.2 and Security AppScan Enterprise a...
CVE-2016-0289 shiprec.xml in the SHIPREC application in IBM Maximo Asset Management 7.1 and 7.5 before 7.5.0.10 an...
CVE-2016-0291 IBM BigFix Platform 9.0, 9.1 before 9.1.8, and 9.2 before 9.2.8 allow remote authenticated users to ...
CVE-2016-0292 WebReports in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x before 9.5.2 allows local u...
M
CVE-2016-0293 Cross-site scripting (XSS) vulnerability in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9...
CVE-2016-0295 Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 be...
M
CVE-2016-0296 IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) stores potentially sensitive informatio...
S
CVE-2016-0297 IBM Tivoli Endpoint Manager - Mobile Device Management (MDM) could allow a remote attacker to obtain...
CVE-2016-0298 Directory traversal vulnerability in IBM Security Guardium Database Activity Monitor 10 before 10.0p...
CVE-2016-0299 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allo...
CVE-2016-0300 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 migh...
CVE-2016-0301 Heap-based buffer overflow in the KeyView PDF filter in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9...
CVE-2016-0303 Cross-site scripting (XSS) vulnerability in IBM Tivoli Integrated Portal 2.2.0.0 through 2.2.0.15 al...
CVE-2016-0304 The Java Console in IBM Domino 8.5.x before 8.5.3 FP6 IF13 and 9.x before 9.0.1 FP6, when a certain ...
CVE-2016-0305 IBM Connections is vulnerable to cross-site scripting, caused by improper validation of user-supplie...
S
CVE-2016-0306 IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.41, 8.0 before 8.0.0.13, and 8.5 before 8.5....
CVE-2016-0307 IBM Connections 5.5 and earlier allows remote attackers to obtain sensitive information by reading s...
S
CVE-2016-0308 IBM Connections 5.5 and earlier is vulnerable to possible link manipulation attack that could result...
S
CVE-2016-0310 IBM Connections 5.5 and earlier is vulnerable to possible host header injection attack that could ca...
S
CVE-2016-0311 Cross-site scripting (XSS) vulnerability in IBM Tivoli Business Service Manager 6.1.0 before 6.1.0-T...
CVE-2016-0312 IBM TRIRIGA Application Platform before 3.3.2 allows remote attackers to obtain sensitive informatio...
CVE-2016-0313 Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) i...
CVE-2016-0314 The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x befor...
CVE-2016-0315 The Report Builder and Data Collection Component (DCC) in IBM Jazz Reporting Service (JRS) 5.x befor...
CVE-2016-0316 Cross-site scripting (XSS) vulnerability in Lifecycle Query Engine (LQE) in IBM Jazz Reporting Servi...
S
CVE-2016-0317 Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 allows...
S
CVE-2016-0318 Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6.0.1 iFix006 does n...
S
CVE-2016-0319 The XML parser in Lifecycle Query Engine (LQE) in IBM Jazz Reporting Service 6.0 and 6.0.1 before 6....
S
CVE-2016-0320 IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST en...
S
CVE-2016-0321 IBM Personal Communications (aka PCOMM) 6.x before 6.0.17 and 12.x before 12.0.0.1 does not properly...
CVE-2016-0322 Cross-site scripting (XSS) vulnerability in IBM Connections 4.0 through CR4, 4.5 through CR5, 5.0 th...
CVE-2016-0323 The Auto-Scaling agent in Liberty for Java in IBM Bluemix before 2.7-20160321-1358 allows remote aut...
CVE-2016-0324 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-...
S
CVE-2016-0325 IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 b...
CVE-2016-0326 IBM Rational Quality Manager (RQM) and Rational Collaborative Lifecycle Management 3.0.1.6 before iF...
S
CVE-2016-0327 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-...
S
CVE-2016-0328 IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10...
S
CVE-2016-0329 Open redirect vulnerability in IBM Emptoris Sourcing 10.0.0.x before 10.0.0.1_iFix3, 10.0.1.x before...
S
CVE-2016-0330 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-...
CVE-2016-0331 Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert 6.0.1 and 6.0.2 before 6.0.2 i...
S
CVE-2016-0332 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.0 before 7.0.1-ISS-SIM-...
S
CVE-2016-0335 Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager (ISIM) Virtual Appl...
S
CVE-2016-0336 Cross-site scripting (XSS) vulnerability in IBM Security Identity Manager (ISIM) Virtual Appliance 7...
S
CVE-2016-0338 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-...
CVE-2016-0339 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-...
CVE-2016-0340 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-...
CVE-2016-0341 IBM Multi-Enterprise Integration Gateway 1.0 through 1.0.0.1 and B2B Advanced Communications 1.0.0.2...
CVE-2016-0342 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allo...
CVE-2016-0343 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allo...
CVE-2016-0344 Cross-site scripting (XSS) vulnerability in the My Reports component in IBM TRIRIGA Application Plat...
CVE-2016-0345 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allo...
CVE-2016-0346 Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence 10.2 before IF20, 10.2....
CVE-2016-0348 Cross-site request forgery (CSRF) vulnerability in IBM TRIRIGA Application Platform 3.3, 3.3.1, 3.3....
CVE-2016-0349 IBM Business Process Manager 8.5.6 through 8.5.6.2 and 8.5.7 before 8.5.7.CF201606 allows remote aut...
CVE-2016-0350 Cross-site scripting (XSS) vulnerability in the Report Builder and Data Collection Component (DCC) i...
CVE-2016-0351 IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 does not set the...
S
CVE-2016-0353 IBM Security Privileged Identity Manager 2.0 before 2.0.2 FP8, when Virtual Appliance is used, does ...
CVE-2016-0354 IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a m...
S
CVE-2016-0355 IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been...
S
CVE-2016-0356 IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user that has been...
S
CVE-2016-0357 IBM Security Identity Manager (ISIM) Virtual Appliance 7.0.0.0 through 7.0.1.1 before 7.0.1-ISS-SIM-...
CVE-2016-0358 IBM Sametime 8.5.2 and 9.0 could allow an unauthorized authenticated user to enumerate group chat ID...
S
CVE-2016-0359 CRLF injection vulnerability in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 befo...
CVE-2016-0360 IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects ...
CVE-2016-0361 IBM General Parallel File System (GPFS) 3.5 before 3.5.0.29 efix 6 and 4.1.1 before 4.1.1.4 efix 9, ...
S
CVE-2016-0362 IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3.5 before 3.5.0.2 allo...
CVE-2016-0363 The com.ibm.CORBA.iiop.ClientDelegate class in IBM SDK, Java Technology Edition 6 before SR16 FP25 (...
CVE-2016-0364 IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 does not ...
CVE-2016-0365 IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1, when age...
CVE-2016-0366 IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 might allow remo...
S
CVE-2016-0367 IBM Security Identity Manager Virtual Appliance 7.0.x before 7.0.1.3-ISS-SIM-IF0001 allows remote au...
S
CVE-2016-0369 XML external entity (XXE) vulnerability in IBM Forms Experience Builder 8.5, 8.5.1, and 8.6 allows r...
S
CVE-2016-0370 Cross-site scripting (XSS) vulnerability in IBM Forms Experience Builder 8.5.x and 8.6.x before 8.6....
S
CVE-2016-0371 The Tivoli Storage Manager (TSM) password may be displayed in plain text via application trace outpu...
S
CVE-2016-0372 IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 b...
CVE-2016-0373 IBM UrbanCode Deploy 6.0 through 6.2.2.1 could allow an authenticated user to read sensitive informa...
S
CVE-2016-0374 The builder tools in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.4, and 3....
CVE-2016-0375 JMS Client in IBM MessageSight 1.1.x through 1.1.0.1, 1.2.x through 1.2.0.3, and 2.0.x through 2.0.0...
CVE-2016-0376 The com.ibm.rmi.io.SunSerializableFactory class in IBM SDK, Java Technology Edition 6 before SR16 FP...
CVE-2016-0377 The Administrative Console in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.43, 8.0.x befo...
S
CVE-2016-0378 IBM WebSphere Application Server (WAS) Liberty before 16.0.0.3, when the installation lacks a defaul...
CVE-2016-0379 IBM WebSphere MQ 7.5 before 7.5.0.7 and 8.0 before 8.0.0.5 mishandles protocol flows, which allows r...
S
CVE-2016-0380 IBM Sterling Connect:Direct for Unix 4.1.0 before 4.1.0.4 iFix073 and 4.2.0 before 4.2.0.4 iFix003 u...
S
CVE-2016-0381 IBM Cognos TM1 10.2.2 before FP5, when the host/pmhub/pm/admin AdminGroups setting is empty, allows ...
S
CVE-2016-0382 The IBM Tealeaf Consumer Experience 8.7, 8.8, and 9.0 portal exposes some of its operational state i...
S
CVE-2016-0385 Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, ...
S
CVE-2016-0386 Cross-site request forgery (CSRF) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2...
CVE-2016-0387 Cross-site scripting (XSS) vulnerability in IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4...
S
CVE-2016-0389 Admin Center in IBM WebSphere Application Server (WAS) 8.5.5.2 through 8.5.5.9 Liberty before Libert...
CVE-2016-0390 Cross-site scripting (XSS) vulnerability in IBM Algorithmics Algo One Algo Risk Application (ARA) 4....
CVE-2016-0391 The IBM Watson Developer Cloud services on Bluemix platforms do not properly generate random numbers...
CVE-2016-0392 IBM General Parallel File System (GPFS) in GPFS Storage Server 2.0.0 through 2.0.7 and Elastic Stora...
CVE-2016-0393 IBM Maximo Asset Management 7.5 before 7.5.0.10-TIV-MBS-IFIX002 and 7.6 before 7.6.0.5-TIV-MAMMT-FP0...
CVE-2016-0394 IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could...
S
CVE-2016-0396 IBM Tivoli Endpoint Manager could allow a user under special circumstances to inject commands that w...
S
CVE-2016-0397 WebReports in IBM BigFix Platform (formerly Tivoli Endpoint Manager) 9.x before 9.5.2 allows remote ...
M
CVE-2016-0398 IBM Cognos Analytics (CA) 11.0 before 11.0.2 allows remote attackers to conduct content-spoofing att...
S
CVE-2016-0399 Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5 be...
CVE-2016-0400 CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1...
E S
CVE-2016-0401 Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7....
CVE-2016-0402 Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u...
S
CVE-2016-0403 Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability vi...
CVE-2016-0404 Unspecified vulnerability in the Oracle Identity Federation component in Oracle Fusion Middleware 11...
CVE-2016-0405 Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 ...
CVE-2016-0406 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availa...
CVE-2016-0407 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9...
S
CVE-2016-0408 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2016-0409 Unspecified vulnerability in the PeopleSoft Enterprise HCM Global Payroll Switzerland component in O...
S
CVE-2016-0410 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0411 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0412 Unspecified vulnerability in the PeopleSoft Enterprise SCM eProcurement component in Oracle PeopleSo...
S
CVE-2016-0413 Unspecified vulnerability in the Oracle Identity Federation component in Oracle Fusion Middleware 11...
CVE-2016-0414 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, int...
CVE-2016-0415 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0416 Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect integrity via u...
CVE-2016-0417 Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 ...
CVE-2016-0418 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality, int...
CVE-2016-0419 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unk...
CVE-2016-0420 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0421 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0422 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0423 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0424 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0425 Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Produ...
CVE-2016-0426 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality and ...
CVE-2016-0427 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0428 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unk...
CVE-2016-0429 Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7....
CVE-2016-0430 Unspecified vulnerability in the Web Cache component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1...
CVE-2016-0431 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via unk...
CVE-2016-0432 Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware ...
CVE-2016-0433 Unspecified vulnerability in the Web Cache component in Oracle Fusion Middleware 11.1.1.9.0 allows r...
CVE-2016-0434 Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applicati...
S
CVE-2016-0435 Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applicati...
S
CVE-2016-0436 Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applicati...
S
CVE-2016-0437 Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applicati...
S
CVE-2016-0438 Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applicati...
CVE-2016-0439 Unspecified vulnerability in the Web Cache component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1...
CVE-2016-0440 Unspecified vulnerability in Oracle Sun Solaris 11 allows remote attackers to affect availability vi...
CVE-2016-0441 Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.1.2...
CVE-2016-0442 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0443 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0444 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0445 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0446 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0447 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0448 Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u...
CVE-2016-0449 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0450 Unspecified vulnerability in the Oracle GoldenGate component in Oracle GoldenGate 11.2 and 12.1.2 al...
E
CVE-2016-0451 Unspecified vulnerability in the Oracle GoldenGate component in Oracle GoldenGate 11.2 and 12.1.2 al...
E
CVE-2016-0452 Unspecified vulnerability in the Oracle GoldenGate component in Oracle GoldenGate 11.2 and 12.1.2 al...
CVE-2016-0453 Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.1.2...
CVE-2016-0454 Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Su...
CVE-2016-0455 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Man...
CVE-2016-0456 Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Bu...
CVE-2016-0457 Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Bu...
CVE-2016-0458 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect availability via vec...
CVE-2016-0459 Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite ...
CVE-2016-0460 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0461 Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12...
CVE-2016-0462 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2016-0463 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0464 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0465 Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 ...
CVE-2016-0466 Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE...
CVE-2016-0467 Unspecified vulnerability in the Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, an...
CVE-2016-0468 Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle...
S
CVE-2016-0469 Unspecified vulnerability in the Oracle Retail MICROS C2 component in Oracle Retail Applications 9.8...
S
CVE-2016-0470 Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7....
CVE-2016-0471 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0472 Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12...
CVE-2016-0473 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0474 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0475 Unspecified vulnerability in the Java SE, Java SE Embedded, and JRockit components in Oracle Java SE...
CVE-2016-0476 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0477 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0478 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0479 Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle...
S
CVE-2016-0480 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0481 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0482 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0483 Unspecified vulnerability in Oracle Java SE 6u105, 7u91, and 8u66; Java SE Embedded 8u65; and JRocki...
S
CVE-2016-0484 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0485 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0486 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0487 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0488 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0489 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0490 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
S
CVE-2016-0491 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
E S
CVE-2016-0492 Unspecified vulnerability in the Oracle Application Testing Suite component in Oracle Enterprise Man...
E
CVE-2016-0493 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect integrity and availa...
CVE-2016-0494 Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE 6u105, 7u...
CVE-2016-0495 Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox ...
CVE-2016-0496 Unspecified vulnerability in the MICROS CWDirect component in Oracle Retail Applications 12.5, 13.0,...
CVE-2016-0497 Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply...
CVE-2016-0498 Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply...
CVE-2016-0499 Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and...
S
CVE-2016-0500 Unspecified vulnerability in the Oracle Retail Order Broker Cloud Service component in Oracle Retail...
CVE-2016-0501 Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.2...
CVE-2016-0502 Unspecified vulnerability in Oracle MySQL 5.5.31 and earlier and 5.6.11 and earlier allows remote au...
CVE-2016-0503 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated u...
CVE-2016-0504 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated u...
CVE-2016-0505 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0506 Unspecified vulnerability in the Oracle Retail Order Management System Cloud Service component in Or...
CVE-2016-0507 Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 ...
CVE-2016-0508 Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 6.0 and 6.1 allows r...
CVE-2016-0509 Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5....
CVE-2016-0510 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0511 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0512 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10...
CVE-2016-0513 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0514 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0515 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0516 Unspecified vulnerability in the Oracle Quality component in Oracle E-Business Suite 11.5.10.2 allow...
CVE-2016-0517 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10...
CVE-2016-0518 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10...
CVE-2016-0519 Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 ...
CVE-2016-0520 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0521 Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 11.5.10.2 ...
CVE-2016-0522 Unspecified vulnerability in the Oracle Retail Open Commerce Platform Cloud Service component in Ora...
CVE-2016-0523 Unspecified vulnerability in the Oracle Interaction Blending component in Oracle E-Business Suite 11...
CVE-2016-0524 Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11...
CVE-2016-0525 Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11...
CVE-2016-0526 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0527 Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business ...
CVE-2016-0528 Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business ...
CVE-2016-0529 Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business ...
CVE-2016-0530 Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business ...
CVE-2016-0531 Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12...
CVE-2016-0532 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0533 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0534 Unspecified vulnerability in the Oracle Project Contracts component in Oracle E-Business Suite 12.1....
CVE-2016-0535 Unspecified vulnerability in Oracle Sun Solaris 10 and 11 allows remote attackers to affect availabi...
CVE-2016-0536 Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11...
CVE-2016-0537 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10...
CVE-2016-0538 Unspecified vulnerability in the Oracle Financial Consolidation Hub component in Oracle E-Business S...
CVE-2016-0539 Unspecified vulnerability in the Oracle Report Manager component in Oracle E-Business Suite 11.5.10....
CVE-2016-0540 Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite...
CVE-2016-0541 Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite...
CVE-2016-0542 Unspecified vulnerability in the Oracle Field Service component in Oracle E-Business Suite 12.1.1, 1...
CVE-2016-0543 Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2 all...
CVE-2016-0544 Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2 all...
CVE-2016-0545 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1...
CVE-2016-0546 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0547 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0548 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0549 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0550 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0551 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1...
CVE-2016-0552 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1...
CVE-2016-0553 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0554 Unspecified vulnerability in the Oracle Interaction Center Intelligence component in Oracle E-Busine...
CVE-2016-0555 Unspecified vulnerability in the Oracle CADView-3D component in Oracle E-Business Suite 11.5.10.2, 1...
CVE-2016-0556 Unspecified vulnerability in the Oracle Advanced Collections component in Oracle E-Business Suite 11...
CVE-2016-0557 Unspecified vulnerability in the Oracle Advanced Collections component in Oracle E-Business Suite 11...
CVE-2016-0558 Unspecified vulnerability in the Oracle Service Contracts component in Oracle E-Business Suite 11.5....
CVE-2016-0559 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1...
CVE-2016-0560 Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 1...
CVE-2016-0561 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0562 Unspecified vulnerability in the Oracle Common Applications component in Oracle E-Business Suite 11....
CVE-2016-0563 Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit...
CVE-2016-0564 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0565 Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12...
CVE-2016-0566 Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12...
CVE-2016-0567 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0568 Unspecified vulnerability in the Oracle Email Center component in Oracle E-Business Suite 12.1.1, 12...
CVE-2016-0569 Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite...
CVE-2016-0570 Unspecified vulnerability in the Oracle HCM Configuration Workbench component in Oracle E-Business S...
CVE-2016-0571 Unspecified vulnerability in the Oracle Balanced Scorecard component in Oracle E-Business Suite 11.5...
CVE-2016-0572 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0573 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0574 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0575 Unspecified vulnerability in the Oracle Learning Management component in Oracle E-Business Suite 11....
CVE-2016-0576 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0577 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0578 Unspecified vulnerability in the Oracle CRM Technology Foundation component in Oracle E-Business Sui...
CVE-2016-0579 Unspecified vulnerability in the Oracle CRM Technology Foundation component in Oracle E-Business Sui...
CVE-2016-0580 Unspecified vulnerability in the Oracle Report Manager component in Oracle E-Business Suite 11.5.10....
CVE-2016-0581 Unspecified vulnerability in the Oracle Approvals Management component in Oracle E-Business Suite 11...
CVE-2016-0582 Unspecified vulnerability in the Oracle CRM Technology Foundation component in Oracle E-Business Sui...
CVE-2016-0583 Unspecified vulnerability in the Oracle CRM Technology Foundation component in Oracle E-Business Sui...
CVE-2016-0584 Unspecified vulnerability in the Oracle CRM Technology Foundation component in Oracle E-Business Sui...
CVE-2016-0585 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0586 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0587 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0588 Unspecified vulnerability in the Oracle General Ledger component in Oracle E-Business Suite 11.5.10....
CVE-2016-0589 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0590 Unspecified vulnerability in the PeopleSoft Enterprise SCM Order Management component in Oracle Peop...
CVE-2016-0591 Unspecified vulnerability in the PeopleSoft Enterprise SCM Purchasing component in Oracle PeopleSoft...
S
CVE-2016-0592 Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox ...
S
CVE-2016-0593 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0594 Unspecified vulnerability in Oracle MySQL 5.6.21 and earlier allows remote authenticated users to af...
CVE-2016-0595 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier allows remote authenticated users to af...
CVE-2016-0596 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and 5.6.27 and earlier and MariaDB befo...
S
CVE-2016-0597 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0598 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0599 Unspecified vulnerability in Oracle MySQL 5.7.9 allows remote authenticated users to affect availabi...
CVE-2016-0600 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0601 Unspecified vulnerability in Oracle MySQL 5.7.9 allows remote authenticated users to affect availabi...
CVE-2016-0602 Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox ...
S
CVE-2016-0603 Unspecified vulnerability in the Java SE component in Oracle Java SE 6u111, 7u95, 8u71, and 8u72, wh...
CVE-2016-0604 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0605 Unspecified vulnerability in Oracle MySQL 5.6.26 and earlier allows remote authenticated users to af...
CVE-2016-0606 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0607 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated u...
CVE-2016-0608 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0609 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and Mari...
S
CVE-2016-0610 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x b...
S
CVE-2016-0611 Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated u...
S
CVE-2016-0612 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0613 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0614 Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7....
CVE-2016-0615 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0616 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and MariaDB before 5.5.47, 10.0.x befor...
S
CVE-2016-0617 Unspecified vulnerability in the kernel-uek component in Oracle Linux 6 allows local users to affect...
S
CVE-2016-0618 Unspecified vulnerability in Oracle Sun Solaris 11 allows local users to affect confidentiality via ...
CVE-2016-0619 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0620 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0621 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0622 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0623 Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote attackers to affect integrity via...
S
CVE-2016-0624 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0625 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0626 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0627 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0628 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0629 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0630 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0631 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0632 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0633 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0634 The expansion of '\h' in the prompt string in bash 4.3 allows remote authenticated users to execute ...
S
CVE-2016-0635 Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manage...
S
CVE-2016-0636 Unspecified vulnerability in Oracle Java SE 7u97, 8u73, and 8u74 allows remote attackers to affect c...
CVE-2016-0637 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0638 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
S
CVE-2016-0639 Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote at...
S
CVE-2016-0640 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0641 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0642 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and ear...
S
CVE-2016-0643 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and ear...
S
CVE-2016-0644 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0645 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0646 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0647 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and ear...
S
CVE-2016-0648 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and ear...
S
CVE-2016-0649 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0650 Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and ear...
S
CVE-2016-0651 Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier allows local users to affect availabili...
S
CVE-2016-0652 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
CVE-2016-0653 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
S
CVE-2016-0654 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
S
CVE-2016-0655 Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier and MariaDB 10.0...
S
CVE-2016-0656 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
S
CVE-2016-0657 Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect confidenti...
S
CVE-2016-0658 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
S
CVE-2016-0659 Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availabili...
S
CVE-2016-0660 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0661 Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local use...
S
CVE-2016-0662 Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availabili...
S
CVE-2016-0663 Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availabili...
S
CVE-2016-0664 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0665 Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier allows local use...
S
CVE-2016-0666 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and ear...
S
CVE-2016-0667 Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availabili...
S
CVE-2016-0668 Unspecified vulnerability in Oracle MySQL 5.6.28 and earlier and 5.7.10 and earlier and MariaDB 10.0...
S
CVE-2016-0669 Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and avai...
S
CVE-2016-0670 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0671 Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 12.1.2.0 a...
S
CVE-2016-0672 Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Servic...
CVE-2016-0673 Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1 and 8.2.2 ...
CVE-2016-0674 Unspecified vulnerability in the Siebel Core - Common Components component in Oracle Siebel CRM 8.1....
CVE-2016-0675 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0676 Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vec...
CVE-2016-0677 Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.1 and 12....
CVE-2016-0678 Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox ...
CVE-2016-0679 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0680 Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9...
CVE-2016-0681 Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 11.2.0.4, 12.1.0.1,...
CVE-2016-0682 Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29,...
S
CVE-2016-0683 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0684 Unspecified vulnerability in the Oracle Retail MICROS ARS POS component in Oracle Retail Application...
CVE-2016-0685 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0686 Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows r...
CVE-2016-0687 Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows r...
CVE-2016-0688 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0689 Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29,...
S
CVE-2016-0690 Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0...
CVE-2016-0691 Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0...
CVE-2016-0692 Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29,...
S
CVE-2016-0693 Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows remote attackers to affect confid...
CVE-2016-0694 Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29,...
S
CVE-2016-0695 Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRocki...
CVE-2016-0696 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0697 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2016-0698 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2016-0699 Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Servic...
CVE-2016-0700 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6...
CVE-2016-0701 The DH_check_pub_key function in crypto/dh/dh_check.c in OpenSSL 1.0.2 before 1.0.2f does not ensure...
CVE-2016-0702 The MOD_EXP_CTIME_COPY_FROM_PREBUF function in crypto/bn/bn_exp.c in OpenSSL 1.0.1 before 1.0.1s and...
S
CVE-2016-0703 The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8z...
CVE-2016-0704 An oracle protection mechanism in the get_client_master_key function in s2_srvr.c in the SSLv2 imple...
CVE-2016-0705 Double free vulnerability in the dsa_priv_decode function in crypto/dsa/dsa_ameth.c in OpenSSL 1.0.1...
S
CVE-2016-0706 Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does ...
CVE-2016-0707 The agent in Apache Ambari before 2.1.2 uses weak permissions for the (1) /var/lib/ambari-agent/data...
CVE-2016-0708 Applications deployed to Cloud Foundry, versions v166 through v227, may be vulnerable to a remote di...
M
CVE-2016-0709 Directory traversal vulnerability in the Import/Export function in the Portal Site Manager in Apache...
E
CVE-2016-0710 Multiple SQL injection vulnerabilities in the User Manager service in Apache Jetspeed before 2.3.1 a...
E
CVE-2016-0711 Multiple cross-site scripting (XSS) vulnerabilities in Apache Jetspeed before 2.3.1 allow remote att...
E
CVE-2016-0712 Cross-site scripting (XSS) vulnerability in Apache Jetspeed before 2.3.1 allows remote attackers to ...
E
CVE-2016-0713 Gorouter in Cloud Foundry cf-release v141 through v228 allows man-in-the-middle attackers to conduct...
CVE-2016-0714 The session-persistence implementation in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x be...
CVE-2016-0715 Pivotal Cloud Foundry Elastic Runtime version 1.4.0 through 1.4.5, 1.5.0 through 1.5.11 and 1.6.0 th...
CVE-2016-0716 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-0729. Reason: This candidate...
R
CVE-2016-0717 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-0729. Reason: This candidate...
R
CVE-2016-0718 Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute ar...
S
CVE-2016-0719 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-0718. Reason: This candida...
R
CVE-2016-0720 Cross-site request forgery (CSRF) vulnerability in pcsd web UI in pcs before 0.9.149....
S
CVE-2016-0721 Session fixation vulnerability in pcsd in pcs before 0.9.157....
S
CVE-2016-0722 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was wi...
R
CVE-2016-0723 Race condition in the tty_ioctl function in drivers/tty/tty_io.c in the Linux kernel through 4.4.1 a...
CVE-2016-0724 The (1) core_enrol_get_course_enrolment_methods and (2) enrol_self_get_instance_info web services in...
CVE-2016-0725 Cross-site scripting (XSS) vulnerability in the search_pagination function in course/classes/managem...
CVE-2016-0726 The Fedora Nagios package uses "nagiosadmin" as the default password for the "nagiosadmin" administr...
CVE-2016-0727 The crontab script in the ntp package before 1:4.2.6.p3+dfsg-1ubuntu3.11 on Ubuntu 12.04 LTS, before...
E S
CVE-2016-0728 The join_session_keyring function in security/keys/process_keys.c in the Linux kernel before 4.4.1 m...
E
CVE-2016-0729 Multiple buffer overflows in (1) internal/XMLReader.cpp, (2) util/XMLURL.cpp, and (3) util/XMLUri.cp...
CVE-2016-0730 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual...
R
CVE-2016-0731 The File Browser View in Apache Ambari before 2.2.1 allows remote authenticated administrators to re...
CVE-2016-0732 The identity zones feature in Pivotal Cloud Foundry 208 through 229; UAA 2.0.0 through 2.7.3 and 3.0...
M
CVE-2016-0733 The Admin UI in Apache Ranger before 0.5.1 does not properly handle authentication requests that lac...
CVE-2016-0734 The web-based administration console in Apache ActiveMQ 5.x before 5.13.2 does not send an X-Frame-O...
CVE-2016-0735 Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to bypass intended parent resourc...
CVE-2016-0736 In Apache HTTP Server versions 2.4.0 to 2.4.23, mod_session_crypto was encrypting its data/cookie us...
E
CVE-2016-0737 OpenStack Object Storage (Swift) before 2.4.0 does not properly close client connections, which allo...
S
CVE-2016-0738 OpenStack Object Storage (Swift) before 2.3.1 (Kilo), 2.4.x, and 2.5.x before 2.5.1 (Liberty) do not...
S
CVE-2016-0739 libssh before 0.7.3 improperly truncates ephemeral secrets generated for the (1) diffie-hellman-grou...
CVE-2016-0740 Buffer overflow in the ImagingLibTiffDecode function in libImaging/TiffDecode.c in Pillow before 3.1...
S
CVE-2016-0741 slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7...
S
CVE-2016-0742 The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial...
S
CVE-2016-0743 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with...
R
CVE-2016-0744 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with...
R
CVE-2016-0745 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with...
R
CVE-2016-0746 Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 a...
S
CVE-2016-0747 The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 does not properly limit CNAME resolution,...
S
CVE-2016-0749 The smartcard interaction in SPICE allows remote attackers to cause a denial of service (QEMU-KVM pr...
CVE-2016-0750 The hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message...
S
CVE-2016-0751 actionpack/lib/action_dispatch/http/mime_type.rb in Action Pack in Ruby on Rails before 3.2.22.1, 4....
CVE-2016-0752 Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x b...
KEV E
CVE-2016-0753 Active Model in Ruby on Rails 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta...
CVE-2016-0754 cURL before 7.47.0 on Windows allows attackers to write to arbitrary files in the current working di...
CVE-2016-0755 The ConnectionExists function in lib/url.c in libcurl before 7.47.0 does not properly re-use NTLM-au...
CVE-2016-0756 The generate_dialback function in the mod_dialback module in Prosody before 0.9.10 does not properly...
S
CVE-2016-0757 OpenStack Image Service (Glance) before 2015.1.3 (kilo) and 11.0.x before 11.0.2 (liberty), when sho...
S
CVE-2016-0758 Integer overflow in lib/asn1_decoder.c in the Linux kernel before 4.6 allows local users to gain pri...
CVE-2016-0759 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-4003. Reason: This candida...
R
CVE-2016-0760 Multiple incomplete blacklist vulnerabilities in Apache Sentry before 1.7.0 allow remote authenticat...
CVE-2016-0761 Cloud Foundry Garden-Linux versions prior to v0.333.0 and Elastic Runtime 1.6.x version prior to 1.6...
CVE-2016-0762 The Realm implementations in Apache Tomcat versions 9.0.0.M1 to 9.0.0.M9, 8.5.0 to 8.5.4, 8.0.0.RC1 ...
S
CVE-2016-0763 The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7...
CVE-2016-0764 Race condition in Network Manager before 1.0.12 as packaged in Red Hat Enterprise Linux Desktop 7, R...
CVE-2016-0765 Multiple cross-site scripting (XSS) vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 f...
E
CVE-2016-0766 PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x be...
CVE-2016-0767 PostgreSQL PL/Java before 1.5.0 allows remote authenticated users with USAGE permission on the publi...
CVE-2016-0768 PostgreSQL PL/Java after 9.0 does not honor access controls on large objects....
CVE-2016-0769 Multiple SQL injection vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress ...
E
CVE-2016-0770 Cross-site scripting (XSS) vulnerability in includes/admin/pages/manage.php in the Connections Busin...
CVE-2016-0771 The internal DNS server in Samba 4.x before 4.1.23, 4.2.x before 4.2.9, 4.3.x before 4.3.6, and 4.4....
CVE-2016-0772 The smtplib library in CPython (aka Python) before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 ...
S
CVE-2016-0773 PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x be...
CVE-2016-0774 The (1) pipe_read and (2) pipe_write implementations in fs/pipe.c in a certain Linux kernel backport...
CVE-2016-0775 Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 al...
CVE-2016-0776 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was wi...
R
CVE-2016-0777 The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p...
CVE-2016-0778 The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5....
E S
CVE-2016-0779 The EjbObjectInputStream class in Apache TomEE before 1.7.4 and 7.x before 7.0.0-M3 allows remote at...
S
CVE-2016-0780 It was discovered that cf-release v231 and lower, Pivotal Cloud Foundry Elastic Runtime 1.5.x versio...
CVE-2016-0781 The UAA OAuth approval pages in Cloud Foundry v208 to v231, Login-server v1.6 to v1.14, UAA v2.0.0 t...
CVE-2016-0782 The administration web console in Apache ActiveMQ 5.x before 5.11.4, 5.12.x before 5.12.3, and 5.13....
CVE-2016-0783 The sendHashByUser function in Apache OpenMeetings before 3.1.1 generates predictable password reset...
S
CVE-2016-0784 Directory traversal vulnerability in the Import/Export System Backups functionality in Apache OpenMe...
E S
CVE-2016-0785 Apache Struts 2.x before 2.3.28 allows remote attackers to execute arbitrary code via a "%{}" sequen...
CVE-2016-0786 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a...
R
CVE-2016-0787 The diffie_hellman_sha256 function in kex.c in libssh2 before 1.7.0 improperly truncates secrets to ...
S
CVE-2016-0788 The remoting module in Jenkins before 1.650 and LTS before 1.642.2 allows remote attackers to execut...
S
CVE-2016-0789 CRLF injection vulnerability in the CLI command documentation in Jenkins before 1.650 and LTS before...
S
CVE-2016-0790 Jenkins before 1.650 and LTS before 1.642.2 do not use a constant-time algorithm to verify API token...
S
CVE-2016-0791 Jenkins before 1.650 and LTS before 1.642.2 do not use a constant-time algorithm to verify CSRF toke...
S
CVE-2016-0792 Multiple unspecified API endpoints in Jenkins before 1.650 and LTS before 1.642.2 allow remote authe...
E S
CVE-2016-0793 Incomplete blacklist vulnerability in the servlet filter restriction mechanism in WildFly (formerly ...
E
CVE-2016-0794 The lwp filter in LibreOffice before 5.0.4 allows remote attackers to cause a denial of service (mem...
CVE-2016-0795 LibreOffice before 5.0.5 allows remote attackers to cause a denial of service (memory corruption) or...
CVE-2016-0796 WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files is prone to multiple vu...
E
CVE-2016-0797 Multiple integer overflows in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allow remote attac...
S
CVE-2016-0798 Memory leak in the SRP_VBASE_get_by_user implementation in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 bef...
CVE-2016-0799 The fmtstr function in crypto/bio/b_print.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g i...
CVE-2016-0800 The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, req...
CVE-2016-0801 The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6....
E
CVE-2016-0802 The Broadcom Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6....
CVE-2016-0803 libstagefright in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6.x before 2...
CVE-2016-0804 The NuPlayer::GenericSource::notifyPreparedAndCleanup function in media/libmediaplayerservice/nuplay...
CVE-2016-0805 The performance event manager for Qualcomm ARM processors in Android 4.x before 4.4.4, 5.x before 5....
CVE-2016-0806 The Qualcomm Wi-Fi driver in the kernel in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, and 6....
CVE-2016-0807 The get_build_id function in elf_utils.cpp in Debuggerd in Android 6.x before 2016-02-01 allows atta...
CVE-2016-0808 Integer overflow in the getCoverageFormat12 function in CmapCoverage.cpp in the Minikin library in A...
CVE-2016-0809 Use-after-free vulnerability in the wifi_cleanup function in bcmdhd/wifi_hal/wifi_hal.cpp in Wi-Fi i...
CVE-2016-0810 media/libmedia/SoundPool.cpp in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49G, an...
CVE-2016-0811 Integer overflow in the BnCrypto::onTransact function in media/libmedia/ICrypto.cpp in libmediaplaye...
CVE-2016-0812 The interceptKeyBeforeDispatching function in policy/src/com/android/internal/policy/impl/PhoneWindo...
CVE-2016-0813 packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java in Setup Wizard in...
CVE-2016-0815 The MPEG4Source::fragmentedRead function in MPEG4Extractor.cpp in libstagefright in mediaserver in A...
CVE-2016-0816 mediaserver in Android 6.x before 2016-03-01 allows remote attackers to execute arbitrary code or ca...
CVE-2016-0818 The caching functionality in the TrustManagerImpl class in TrustManagerImpl.java in Conscrypt in And...
CVE-2016-0819 The Qualcomm performance component in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x bef...
CVE-2016-0820 The MediaTek Wi-Fi kernel driver in Android 6.0.1 before 2016-03-01 allows attackers to gain privile...
CVE-2016-0821 The LIST_POISON feature in include/linux/poison.h in the Linux kernel before 4.3, as used in Android...
S
CVE-2016-0822 The MediaTek connectivity kernel driver in Android 6.0.1 before 2016-03-01 allows attackers to gain ...
CVE-2016-0823 The pagemap_open function in fs/proc/task_mmu.c in the Linux kernel before 3.19.3, as used in Androi...
CVE-2016-0824 libmpeg2 in libstagefright in Android 6.x before 2016-03-01 allows attackers to obtain sensitive inf...
CVE-2016-0825 The Widevine Trusted Application in Android 6.0.1 before 2016-03-01 allows attackers to obtain sensi...
CVE-2016-0826 libcameraservice in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before...
CVE-2016-0827 Multiple integer overflows in libeffects in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1....
CVE-2016-0828 The BnGraphicBufferConsumer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserv...
CVE-2016-0829 The BnGraphicBufferProducer::onTransact function in libs/gui/IGraphicBufferConsumer.cpp in mediaserv...
CVE-2016-0830 btif_config.c in Bluetooth in Android 6.x before 2016-03-01 allows remote attackers to cause a denia...
CVE-2016-0831 The getDeviceIdForPhone function in internal/telephony/PhoneSubInfoController.java in Telephony in A...
CVE-2016-0832 Setup Wizard in Android 5.1.x before LMY49H and 6.x before 2016-03-01 allows physically proximate at...
CVE-2016-0833 Android allows users to cause a denial of service....
CVE-2016-0834 An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers t...
CVE-2016-0835 decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to...
CVE-2016-0836 Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01...
CVE-2016-0837 MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2,...
CVE-2016-0838 Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x ...
CVE-2016-0839 post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effec...
CVE-2016-0840 Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x...
CVE-2016-0841 media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5...
CVE-2016-0842 The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Co...
CVE-2016-0843 The Qualcomm ARM processor performance-event manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2...
S
CVE-2016-0844 The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ...
S
CVE-2016-0845 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0846 libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5....
E S
CVE-2016-0847 The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 a...
CVE-2016-0848 Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1...
S
CVE-2016-0849 Multiple integer overflows in minzip/SysUtil.c in the Recovery Procedure in Android 5.0.x before 5.0...
S
CVE-2016-0850 The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5....
CVE-2016-0851 Advantech WebAccess before 8.1 allows remote attackers to cause a denial of service (out-of-bounds m...
CVE-2016-0852 Advantech WebAccess before 8.1 allows remote attackers to bypass an intended administrative requirem...
CVE-2016-0853 Advantech WebAccess before 8.1 allows remote attackers to obtain sensitive information via crafted i...
CVE-2016-0854 Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction scr...
E
CVE-2016-0855 Directory traversal vulnerability in Advantech WebAccess before 8.1 allows remote attackers to list ...
CVE-2016-0856 Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote attackers to ex...
CVE-2016-0857 Multiple heap-based buffer overflows in Advantech WebAccess before 8.1 allow remote attackers to exe...
CVE-2016-0858 Race condition in Advantech WebAccess before 8.1 allows remote attackers to execute arbitrary code o...
CVE-2016-0859 Integer overflow in the Kernel service in Advantech WebAccess before 8.1 allows remote attackers to ...
CVE-2016-0860 Buffer overflow in the BwpAlarm subsystem in Advantech WebAccess before 8.1 allows remote attackers ...
CVE-2016-0861 General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware before 4.8 all...
E
CVE-2016-0862 General Electric (GE) Industrial Solutions UPS SNMP/Web Adapter devices with firmware before 4.8 all...
E
CVE-2016-0863 Cross-site request forgery (CSRF) vulnerability in Tollgrade SmartGrid LightHouse Sensor Management ...
CVE-2016-0864 Tollgrade SmartGrid LightHouse Sensor Management System (SMS) Software EMS before 5.1, and 4.1.0 Bui...
CVE-2016-0865 Tollgrade SmartGrid LightHouse Sensor Management System (SMS) Software EMS before 5.1, and 4.1.0 Bui...
CVE-2016-0866 Cross-site scripting (XSS) vulnerability in Tollgrade SmartGrid LightHouse Sensor Management System ...
CVE-2016-0867 CAREL PlantVisorEnhanced allows remote attackers to bypass intended access restrictions via a direct...
CVE-2016-0868 Stack-based buffer overflow on Rockwell Automation Allen-Bradley MicroLogix 1100 devices A through 1...
CVE-2016-0869 Heap-based buffer overflow in MICROSYS PROMOTIC before 8.3.11 allows remote authenticated users to c...
S
CVE-2016-0870 The web server in Trane Tracer SC 4.2.1134 and earlier allows remote attackers to read sensitive con...
CVE-2016-0871 Eaton Lighting EG2 Web Control 4.04P and earlier allows remote attackers to read the configuration f...
CVE-2016-0872 A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral (WDC) versions p...
CVE-2016-0875 Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration and l...
CVE-2016-0876 Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to discover cleartext passw...
CVE-2016-0877 Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a ...
CVE-2016-0878 Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to cause a denial of servic...
CVE-2016-0879 Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log file...
CVE-2016-0880 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0881 EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows remote authenticated users to ...
CVE-2016-0882 EMC Documentum xCP 2.1 before patch 23 and 2.2 before patch 11 allows remote authenticated users to ...
CVE-2016-0883 Pivotal Cloud Foundry (PCF) Ops Manager before 1.5.14 and 1.6.x before 1.6.9 uses the same cookie-en...
CVE-2016-0884 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0885 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2016-0886 EMC Documentum xCP 2.1 before patch 24 and 2.2 before patch 12 allows remote authenticated users to ...
CVE-2016-0887 EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x before 4.1.5, RSA BSAFE Crypto-C Micro Editi...
CVE-2016-0888 EMC Documentum D2 before 4.6 lacks intended ACLs for configuration objects, which allows remote auth...
CVE-2016-0889 An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remo...
CVE-2016-0890 EMC PowerPath Virtual (Management) Appliance 2.0, EMC PowerPath Virtual (Management) Appliance 2.0 S...
M
CVE-2016-0891 Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM b...
E
CVE-2016-0892 Cross-site scripting (XSS) vulnerability in EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows re...
CVE-2016-0893 EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to obtain sensitive...
CVE-2016-0894 EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote authenticated users to bypass intended ...
CVE-2016-0895 EMC RSA Data Loss Prevention 9.6 before SP2 P5 allows remote attackers to conduct clickjacking attac...
CVE-2016-0896 Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.6.34 and 1.7.x before 1.7.12 places 169.254.0.0...
M
CVE-2016-0897 Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17 and 1.7.x before 1.7.8, when vCloud or vSphere...
CVE-2016-0898 MySQL for PCF tiles 1.7.x before 1.7.10 were discovered to log the AWS access key in plaintext. Thes...
CVE-2016-0899 EMC RSA Archer GRC 5.5.x before 5.5.3.4 allows remote authenticated users to read the web.config.bak...
CVE-2016-0900 Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows...
CVE-2016-0901 Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows...
CVE-2016-0902 CRLF injection vulnerability in EMC RSA Authentication Manager before 8.1 SP1 P14 allows remote atta...
CVE-2016-0903 Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 rely ...
CVE-2016-0904 Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 use t...
CVE-2016-0905 Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 allow...
CVE-2016-0906 The web-restore interface in Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar ...
CVE-2016-0907 EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x before 8.0.0.1, and IsilonSD Edge OneFS 8....
CVE-2016-0908 EMC Isilon OneFS 7.1.x before 7.1.1.9 and 7.2.x before 7.2.1.2 allows local users to obtain root she...
CVE-2016-0909 EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) versions 7.3 and older contain a vulner...
CVE-2016-0910 EMC Data Domain OS 5.5 before 5.5.4.0, 5.6 before 5.6.1.004, and 5.7 before 5.7.2.0 stores session i...
CVE-2016-0911 EMC Data Domain OS 5.4 through 5.7 before 5.7.2.0 has a default no_root_squash option for NFS export...
CVE-2016-0912 EMC Data Domain OS 5.4 through 5.7 before 5.7.2.0 allows remote authenticated users to bypass intend...
CVE-2016-0913 The client in EMC Replication Manager (RM) before 5.5.3.0_01-PatchHotfix, EMC Network Module for Mic...
CVE-2016-0914 EMC Documentum WebTop 6.8 before Patch 13 and 6.8.1 before Patch 02, Documentum Administrator 7.x be...
CVE-2016-0915 The Self-Service Portal in EMC RSA Authentication Manager (AM) Prime Self-Service 3.0 and 3.1 before...
CVE-2016-0916 EMC NetWorker 8.2.1.x and 8.2.2.x before 8.2.2.6 and 9.x before 9.0.0.6 mishandles authentication, w...
CVE-2016-0917 The SMB service in EMC VNXe (VNXe3200 Operating Environment prior to 3.1.5.8711957 and VNXe3100/3150...
CVE-2016-0918 EMC RSA Identity Management and Governance before 6.8.1 P25 and 6.9.x before 6.9.1 P15 and RSA Via L...
CVE-2016-0919 EMC RSA Web Threat Detection version 5.0, RSA Web Threat Detection version 5.1, RSA Web Threat Detec...
CVE-2016-0920 Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 allow...
CVE-2016-0921 Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server before 7.3.0-233 use w...
CVE-2016-0922 EMC ViPR SRM before 3.7.2 does not restrict the number of password-authentication attempts, which ma...
CVE-2016-0923 The client in EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.9 and 4.1.x before 4.1.5 plac...
CVE-2016-0924 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2004-2761. Reason: This candida...
R
CVE-2016-0925 Cross-site scripting (XSS) vulnerability in the Case Management application in EMC RSA Adaptive Auth...
CVE-2016-0926 Cross-site scripting (XSS) vulnerability in Apps Manager in Pivotal Cloud Foundry (PCF) Elastic Runt...
CVE-2016-0927 Cross-site scripting (XSS) vulnerability in Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.17 al...
CVE-2016-0928 Multiple open redirect vulnerabilities in Pivotal Cloud Foundry (PCF) Elastic Runtime before 1.6.30 ...
CVE-2016-0929 The metrics-collection component in RabbitMQ for Pivotal Cloud Foundry (PCF) 1.6.x before 1.6.4 logs...
CVE-2016-0930 Pivotal Cloud Foundry (PCF) Ops Manager before 1.6.19 and 1.7.x before 1.7.10, when vCloud or vSpher...
CVE-2016-0931 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0932 Use-after-free vulnerability in the Doc object implementation in Adobe Reader and Acrobat before 11....
S
CVE-2016-0933 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0934 Use-after-free vulnerability in AGM.dll in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acro...
S
CVE-2016-0935 Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC ...
S
CVE-2016-0936 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0937 Use-after-free vulnerability in the OCG object implementation in Adobe Reader and Acrobat before 11....
S
CVE-2016-0938 The AcroForm plugin in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classi...
S
CVE-2016-0939 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0940 Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader ...
S
CVE-2016-0941 Use-after-free vulnerability in the Search object implementation in Adobe Reader and Acrobat before ...
S
CVE-2016-0942 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0943 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0944 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0945 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0946 Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, ...
S
CVE-2016-0947 Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat b...
S
CVE-2016-0948 Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attacker...
CVE-2016-0949 Adobe Connect before 9.5.2 allows remote attackers to have an unspecified impact via a crafted param...
CVE-2016-0950 Adobe Connect before 9.5.2 allows remote attackers to spoof the user interface via unspecified vecto...
CVE-2016-0951 Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 all...
E S
CVE-2016-0952 Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 all...
E S
CVE-2016-0953 Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 all...
E S
CVE-2016-0954 Adobe Digital Editions before 4.5.1 allows attackers to execute arbitrary code or cause a denial of ...
E S
CVE-2016-0955 Cross-site scripting (XSS) vulnerability in Adobe Experience Manager (AEM) 6.1.0 allows remote authe...
S
CVE-2016-0956 The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0,...
E S
CVE-2016-0957 Dispatcher before 4.1.5 in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 does not properly implem...
S
CVE-2016-0958 Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0 might allow remote attackers to have an unspecified...
S
CVE-2016-0959 Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash Pl...
CVE-2016-0960 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0961 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0962 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0963 Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on ...
S
CVE-2016-0964 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
E S
CVE-2016-0965 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
E S
CVE-2016-0966 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0967 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
E S
CVE-2016-0968 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0969 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0970 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0971 Heap-based buffer overflow in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.3...
E S
CVE-2016-0972 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0973 Use-after-free vulnerability in the URLRequest object implementation in Adobe Flash Player before 18...
S
CVE-2016-0974 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0...
E S
CVE-2016-0975 Use-after-free vulnerability in the instanceof function in Adobe Flash Player before 18.0.0.329 and ...
S
CVE-2016-0976 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0977 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0978 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0979 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0980 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0981 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
S
CVE-2016-0982 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0...
S
CVE-2016-0983 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0...
S
CVE-2016-0984 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0...
KEV E S
CVE-2016-0985 Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and bef...
E S
CVE-2016-0986 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0987 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0988 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0989 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0990 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0991 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0992 Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and...
S
CVE-2016-0993 Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on ...
S
CVE-2016-0994 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0995 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
S
CVE-2016-0996 Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 1...
S
CVE-2016-0997 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
E S
CVE-2016-0998 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
E S
CVE-2016-0999 Use-after-free vulnerability in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21...
E S
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.