Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-6890denyhosts 2.6 uses an incorrect regular expression when analyzing ...Check. Originally fixed in 2.6-10.1 but denyhosts introduced in unstable possibly without fix
CVE-2013-7447Integer overflow in the gdk_cairo_set_source_pixbuf function in ...check other source packages (eom, gnome-photos, eog, gambas3, thunar, pinpoint, gtk+2.0)
CVE-2013-7451The validator module before 1.1.0 for Node.js allows remote attackers ...check
CVE-2013-7452The validator module before 1.1.0 for Node.js allows remote attackers ...check
CVE-2013-7453The validator module before 1.1.0 for Node.js allows remote attackers ...check
CVE-2013-7454The validator module before 1.1.0 for Node.js allows remote attackers ...check
CVE-2014-1958PSD Images Processing RLE Decoding Buffer Overflow VulnerabilityThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-2030The link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-2045Multiple cross-site scripting (XSS) vulnerabilities in the old and new ...check
CVE-2014-2146The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly ...check
CVE-2014-3260Pacom 1000 CCU and RTU GMS devices allow remote attackers to spoof the ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-4876Toshiba 4690 Operating System 6 Release 3, when the ADXSITCF logical ...check
CVE-2014-5040HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus ...check
CVE-2014-6451J-Web in Juniper vSRX virtual firewalls with Junos OS before ...check
CVE-2014-8354out-of-bounds memory access in resize codeThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8355buffer overflow in PCX parserThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8562buffer overflow in DCM parserThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8716crafted jpeg file could lead to DOSThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-9410The vfe31_proc_general function in ...check
CVE-2014-9512rsync 3.1.1 allows remote attackers to write to arbitrary files via a ...Re-check affected versions, Ubuntu released an update which also covers 3.0.9 from precise
CVE-2014-9757The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before ...check
CVE-2014-9772The validator package before 2.0.0 for Node.js allows remote attackers ...check
CVE-2015-0568Use-after-free vulnerability in the msm_set_crop function in ...check
CVE-2015-0569Heap-based buffer overflow in the private wireless extensions IOCTL ...check
CVE-2015-0570Stack-based buffer overflow in the SET_WPS_IE IOCTL implementation in ...check
CVE-2015-0571The WLAN (aka Wi-Fi) driver for the Linux kernel 3.x and 4.x, as used ...check
CVE-2015-0572Multiple race conditions in drivers/char/adsprpc.c and ...check
CVE-2015-0573drivers/media/platform/msm/broadcast/tsc.c in the TSC driver for the ...check
CVE-2015-0721Cisco NX-OS 4.0 through 7.3 on Multilayer Director and Nexus 1000V, ...check
CVE-2015-0787XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote ...check
CVE-2015-1001Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka ...check
CVE-2015-1002IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL ...check
CVE-2015-1003Directory traversal vulnerability in IniNet embeddedWebServer (aka ...check
CVE-2015-1005IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE ...check
CVE-2015-1976IBM Security Directory Server could allow an authenticated user to ...check
CVE-2015-1977Directory traversal vulnerability in the Web Administration tool in ...check
CVE-2015-2286lms/templates/footer-edx-new.html in Open edX edx-platform before ...check
CVE-2015-2794The installation wizard in DotNetNuke (DNN) before 7.4.1 allows remote ...check
CVE-2015-2867A design flaw in the Trane ComfortLink II SCC firmware version 2.0.2 ...check
CVE-2015-2868An exploitable remote code execution vulnerability exists in the Trane ...check
CVE-2015-2894Format string vulnerability in the up.time client in Idera Uptime ...check
CVE-2015-2895Buffer overflow in the up.time client in Idera Uptime Infrastructure ...check
CVE-2015-2896The up.time client in Idera Uptime Infrastructure Monitor through 7.6 ...check
CVE-2015-2898Multiple stack-based buffer overflows in Medicomp MEDCIN Engine before ...check
CVE-2015-2899Heap-based buffer overflow in the QualifierList ...check
CVE-2015-2900The AddUserFinding add_userfinding2 function in Medicomp MEDCIN Engine ...check
CVE-2015-2901Multiple stack-based buffer overflows in Medicomp MEDCIN Engine ...check
CVE-2015-2912The JSONP endpoint in the Studio component in OrientDB Server ...check
CVE-2015-2913server/network/protocol/http/OHttpSessionManager.java in the Studio ...check
CVE-2015-2918The Studio component in OrientDB Server Community Edition before ...check
CVE-2015-3441The Parental Control panel in Genexis devices with DRGOS before 1.14.1 ...check
CVE-2015-3854packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java ...check
CVE-2015-4049Unisys Libra 43xx, 63xx, and 83xx, and FS600 class systems with ...check
CVE-2015-4591eClinicalWorks Population Health (CCMR) suffers from a cross site ...check
CVE-2015-4592eClinicalWorks Population Health (CCMR) suffers from an SQL injection ...check
CVE-2015-4593eClinicalWorks Population Health (CCMR) suffers from a cross-site ...check
CVE-2015-4594eClinicalWorks Population Health (CCMR) suffers from a session ...check
CVE-2015-4626B.A.S C2Box before 4.0.0 (r19171) relies on client-side validation, ...check
CVE-2015-4946Rational LifeCycle Project Administration in Jazz Team Server in IBM ...check
CVE-2015-4961IBM Tealeaf Customer Experience 8.x before 8.7.1.8847 FP10, 8.8.x ...check
CVE-2015-4991IBM SPSS Modeler 14.2 through FP3 IF027, 15 through FP3 IF015, 16 ...check
CVE-2015-5013The IBM Security Access Manager appliance includes configuration files ...check
CVE-2015-5042IBM Emptoris Contract Management 9.5.0.x before 9.5.0.6 iFix15, ...check
CVE-2015-5050Cross-site request forgery (CSRF) vulnerability in IBM Emptoris ...check
CVE-2015-5053The host memory mapping path feature in the NVIDIA GPU graphics driver ...check
CVE-2015-5255Adobe BlazeDS, as used in ColdFusion 10 before Update 18 and 11 before ...check
CVE-2015-5347Cross-site scripting (XSS) vulnerability in the ...check
CVE-2015-5349The CSV export in Apache LDAP Studio and Apache Directory Studio ...check
CVE-2015-5375Cross-site scripting (XSS) vulnerability in unspecified dialogs for ...check
CVE-2015-5399Cross-site scripting (XSS) vulnerability in PHPVibe before 4.21 allows ...check
CVE-2015-5649Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles ...check
CVE-2015-5650Directory traversal vulnerability in AjaXplorer 2.0 allows remote ...check
CVE-2015-5653Buffer overflow in Canary Labs Trend Web Server before 9.5.2 allows ...check
CVE-2015-5655The Adways Party Track SDK before 1.6.6 for iOS does not verify X.509 ...check
CVE-2015-5659SQL injection vulnerability in Network Applied Communication ...check
CVE-2015-5661The SAND STUDIO AirDroid application 1.1.0 and earlier for Android ...check
CVE-2015-5662Directory traversal vulnerability in Avast before 150918-0 allows ...check
CVE-2015-5663The file-execution functionality in WinRAR before 5.30 beta 5 allows ...check
CVE-2015-5664Cross-site scripting (XSS) vulnerability in File Station in QNAP QTS ...check
CVE-2015-5665Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE ...check
CVE-2015-5668SQL injection vulnerability in Techno Project Japan Enisys Gw before ...check
CVE-2015-5669Techno Project Japan Enisys Gw before 1.4.1 allows remote ...check
CVE-2015-5670Cross-site scripting (XSS) vulnerability in Techno Project Japan ...check
CVE-2015-5671Techno Project Japan Enisys Gw before 1.4.1 allows remote attackers to ...check
CVE-2015-5672TYPE-MOON Fate/stay night, Fate/hollow ataraxia, Witch on the Holy ...check
CVE-2015-5673eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal (aka eventapp) ...check
CVE-2015-5687system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote ...check
CVE-2015-5703SQL injection vulnerability in the public key discovery API call in ...check
CVE-2015-5712Spotfire Parsing Library and Spotfire Security Filter in TIBCO ...check
CVE-2015-5713Spotfire Parsing Library and Spotfire Security Filter in TIBCO ...check
CVE-2015-5719app/Controller/TemplatesController.php in Malware Information Sharing ...check
CVE-2015-5720Multiple cross-site scripting (XSS) vulnerabilities in the ...check
CVE-2015-5721Malware Information Sharing Platform (MISP) before 2.3.90 allows ...check
CVE-2015-5742VeeamVixProxy in Veeam Backup & Replication (B&R) before 8.0 update 3 ...check
CVE-2015-5780The Safari Extensions implementation in Apple Safari before 9 does not ...check
CVE-2015-5828The API in the WebKit Plug-ins component in Apple Safari before 9 does ...check
CVE-2015-5931WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-5968Cross-site scripting (XSS) vulnerability in Novell Filr 1.2 before Hot ...check
CVE-2015-5969The mysql-systemd-helper script in the mysql-community-server package ...check
CVE-2015-5970The ChangePassword RPC method in Novell ZENworks Configuration ...check
CVE-2015-6004Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before ...check
CVE-2015-6005Multiple cross-site scripting (XSS) vulnerabilities in IPSwitch ...check
CVE-2015-6006The AddUserFinding implementation in Medicomp MEDCIN Engine ...check
CVE-2015-6023ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with ...check
CVE-2015-6024ping.cgi in NetCommWireless HSPA 3G10WVE wireless routers with ...check
CVE-2015-6032Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic ...check
CVE-2015-6033Qolsys IQ Panel (aka QOL) before 1.5.1 does not verify the digital ...check
CVE-2015-6034EPSON Network Utility 4.10 uses weak permissions (Everyone: Full ...check
CVE-2015-6340The Proxy Mobile IPv6 (PMIPv6) component in the CDMA implementation on ...check
CVE-2015-6341The Web Management GUI on Cisco Wireless LAN Controller (WLC) devices ...check
CVE-2015-6343The SIP implementation in Cisco IOS 15.5(3)M on Cisco Unified Border ...check
CVE-2015-6345SQL injection vulnerability in the Solution Engine in Cisco Secure ...check
CVE-2015-6346Cross-site scripting (XSS) vulnerability in Cisco Secure Access ...check
CVE-2015-6347The Solution Engine in Cisco Secure Access Control Server (ACS) ...check
CVE-2015-6348The report-generation web interface in the Solution Engine in Cisco ...check
CVE-2015-6349Cross-site scripting (XSS) vulnerability in the web interface in the ...check
CVE-2015-6350SQL injection vulnerability in the web framework in Cisco Prime ...check
CVE-2015-6351Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices ...check
CVE-2015-6352Cisco Unified Communications Domain Manager before 10.6(1) provides ...check
CVE-2015-6353Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...check
CVE-2015-6354Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...check
CVE-2015-6355The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A on ...check
CVE-2015-6356Cross-site scripting (XSS) vulnerability in the WeChat page in Cisco ...check
CVE-2015-6467Advantech WebAccess before 8.1 allows remote attackers to execute ...check
CVE-2015-6471Eaton Cooper Power Systems ProView 4.x and 5.x before 5.1 on Form 6 ...check
CVE-2015-6476Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x ...check
CVE-2015-6477Multiple cross-site scripting (XSS) vulnerabilities in the Wind Farm ...check
CVE-2015-6478Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict ...check
CVE-2015-6479ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, ...check
CVE-2015-6480The MessageBrokerServlet servlet in Moxa OnCell Central Manager before ...check
CVE-2015-6481The login function in the RequestController class in Moxa OnCell ...check
CVE-2015-6482Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 ...check
CVE-2015-64843S-Smart CODESYS Gateway Server before 2.3.9.48 allows remote ...check
CVE-2015-6485Schneider Electric Telvent Sage 2300 RTUs with firmware before ...check
CVE-2015-6486SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices ...check
CVE-2015-6488Cross-site scripting (XSS) vulnerability in the web server on ...check
CVE-2015-6490Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices ...check
CVE-2015-6491Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...check
CVE-2015-6492Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...check
CVE-2015-6493Cross-site request forgery (CSRF) vulnerability in Infinite Automation ...check
CVE-2015-6494Cross-site scripting (XSS) vulnerability in Infinite Automation Mango ...check
CVE-2015-6507The hdbsql client 1.00.091.00 Build 1418659308-1530 in SAP HANA allows ...check
CVE-2015-6537SQL injection vulnerability in the login page in Epiphany Cardio ...check
CVE-2015-6538The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles ...check
CVE-2015-6550bpcd in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through ...check
CVE-2015-6551Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and ...check
CVE-2015-6552The management-services protocol implementation in Veritas NetBackup ...check
CVE-2015-6554Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 ...check
CVE-2015-6555Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 ...check
CVE-2015-6556EACommunicatorSrv.exe in the Framework Service in the client in ...check
CVE-2015-6574The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP ...check
CVE-2015-6606The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin ...check
CVE-2015-6607SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows ...check
CVE-2015-6608mediaserver in Android 5.x before 5.1.1 LMY48X and 6.0 before ...check
CVE-2015-6611mediaserver in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6612libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6613Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6614Telephony in Android 5.x before 5.1.1 LMY48X allows attackers to gain ...check
CVE-2015-6616mediaserver in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6617Skia, as used in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6618Bluetooth in Android 4.4 and 5.x before 5.1.1 LMY48Z allows ...check
CVE-2015-6619The kernel in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6621SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6622The Native Frameworks Library in Android before 5.1.1 LMY48Z and 6.0 ...check
CVE-2015-6623Wi-Fi in Android 6.0 before 2015-12-01 allows attackers to gain ...check
CVE-2015-6624System Server in Android 6.0 before 2015-12-01 allows attackers to ...check
CVE-2015-6625System Server in Android 6.0 before 2015-12-01 allows attackers to ...check
CVE-2015-6627The Audio component in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6628Media Framework in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6629Wi-Fi in Android 5.x before 5.1.1 LMY48Z allows attackers to obtain ...check
CVE-2015-6630SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6633The display drivers in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6634The display drivers in Android before 5.1.1 LMY48Z allow remote ...check
CVE-2015-6636mediaserver in Android 5.x before 5.1.1 LMY49F and 6.0 before ...check
CVE-2015-6637The MediaTek misc-sd driver in Android before 5.1.1 LMY49F and 6.0 ...check
CVE-2015-6638The Imagination Technologies driver in Android 5.x before 5.1.1 LMY49F ...check
CVE-2015-6639The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 ...check
CVE-2015-6640The prctl_set_vma_anon_name function in kernel/sys.c in Android before ...check
CVE-2015-6641Bluetooth in Android 6.0 before 2016-01-01 allows remote attackers to ...check
CVE-2015-6642The kernel in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6643Setup Wizard in Android 5.x before 5.1.1 LMY49F and 6.0 before ...check
CVE-2015-6644Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6645SyncManager in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6646The System V IPC implementation in the kernel in Android before 6.0 ...check
CVE-2015-6647The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 ...check
CVE-2015-6853The Domino web agent in CA Single Sign-On (aka SSO, formerly ...check
CVE-2015-6854The non-Domino web agents in CA Single Sign-On (aka SSO, formerly ...check
CVE-2015-6856Dell Pre-Boot Authentication Driver (PBADRV.sys) 1.0.1.5 allows local ...check
CVE-2015-6861HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated ...check
CVE-2015-6863HPE ArcSight Logger before 6.1P1 allows remote attackers to execute ...check
CVE-2015-6864HPE ArcSight Logger before 6.1P1 allows remote authenticated users to ...check
CVE-2015-6931Cross-site scripting (XSS) vulnerability in the vSphere Web Client in ...check
CVE-2015-6933The VMware Tools HGFS (aka Shared Folders) implementation in VMware ...check
CVE-2015-6934Serialized-object interfaces in VMware vRealize Orchestrator 6.x, ...check
CVE-2015-6980Directory Utility in Apple OS X before 10.11.1 mishandles ...check
CVE-2015-7011WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-7013WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-7024Untrusted search path vulnerability in Apple OS X before 10.11.1 ...check
CVE-2015-7029Apple AirPort Base Station Firmware before 7.6.7 and 7.7.x before ...check
CVE-2015-7030The Swift implementation in Apple Xcode before 7.1 mishandles type ...check
CVE-2015-7032The Apple iWork application before 2.6 for iOS, Apple Keynote before ...check
CVE-2015-7033The Apple iWork application before 2.6 for iOS, Apple Keynote before ...check
CVE-2015-7034The Apple iWork application before 2.6 for iOS and Apple Pages before ...check
CVE-2015-7035Apple Mac EFI before 2015-002, as used in OS X before 10.11.1 and ...check
CVE-2015-7049otools in Apple Xcode before 7.2 allows local users to gain privileges ...check
CVE-2015-7056IDE SCM in Apple Xcode before 7.2 does not recognize .gitignore files, ...check
CVE-2015-7057otools in Apple Xcode before 7.2 allows local users to gain privileges ...check
CVE-2015-7082Multiple unspecified vulnerabilities in Git before 2.5.4, as used in ...check
CVE-2015-7104WebKit in Apple Safari before 9.0.2 and tvOS before 9.1 allows remote ...check
CVE-2015-7115libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before ...check
CVE-2015-7116libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before ...check
CVE-2015-7216The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...Check gdk-pixbuf
CVE-2015-7217The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...Check gdk-pixbuf
CVE-2015-7242Cross-site scripting (XSS) vulnerability in the Push-Service-Mails ...check
CVE-2015-7244The default configuration of the server in MobaXterm before 8.3 has a ...check
CVE-2015-7253The Web Console in Commvault Edge Server 10 R2 allows remote attackers ...check
CVE-2015-7254Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s ...check
CVE-2015-7261The FTP service in QNAP iArtist Lite before 1.4.54, as distributed ...check
CVE-2015-7262QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage ...check
CVE-2015-7277The web administration interface on Amped Wireless R10000 devices with ...check
CVE-2015-7278Cross-site request forgery (CSRF) vulnerability on Amped Wireless ...check
CVE-2015-7279Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper ...check
CVE-2015-7280The web administration interface on ReadyNet WRT300N-DD devices with ...check
CVE-2015-7281Cross-site request forgery (CSRF) vulnerability on ReadyNet WRT300N-DD ...check
CVE-2015-7282ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source ...check
CVE-2015-7283The web administration interface on ZyXEL NBG-418N devices with ...check
CVE-2015-7284Cross-site request forgery (CSRF) vulnerability on ZyXEL NBG-418N ...check
CVE-2015-7285CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 do ...check
CVE-2015-7286CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 rely ...check
CVE-2015-7287CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 use ...check
CVE-2015-7288CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 ...check
CVE-2015-7289Arris DG860A, TG862A, and TG862G devices with firmware ...check
CVE-2015-7290Cross-site scripting (XSS) vulnerability in adv_pwd_cgi in the web ...check
CVE-2015-7291Cross-site request forgery (CSRF) vulnerability in adv_pwd_cgi in the ...check
CVE-2015-7299SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 ...check
CVE-2015-7309The theme editor in Bolt before 2.2.5 does not check the file ...check
CVE-2015-7360Multiple cross-site scripting (XSS) vulnerabilities in the Web User ...check
CVE-2015-7362Fortinet FortiClient Linux SSLVPN before build 2313, when installed on ...check
CVE-2015-7363Cross-site scripting (XSS) vulnerability in the advanced settings page ...check
CVE-2015-7378Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the ...check
CVE-2015-7411The portal client in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, ...check
CVE-2015-7418IBM WebSphere eXtreme Scale and the WebSphere DataPower XC10 Appliance ...check
CVE-2015-7446Cross-site request forgery (CSRF) vulnerability in IBM Flash System ...check
CVE-2015-7448SQL injection vulnerability in IBM Maximo Asset Management 7.1 through ...check
CVE-2015-7454Business Space in IBM WebSphere Process Server 6.1.2.0 through 7.0.0.5 ...check
CVE-2015-7462IBM WebSphere MQ 8.0.0.4 on IBM i platforms allows local users to ...check
CVE-2015-7473runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to ...check
CVE-2015-7493IBM InfoSphere Information Server could allow a local user under ...check
CVE-2015-7494A vulnerability has been identified in IBM Cloud Orchestrator ...check
CVE-2015-7501java unserialisation issuesdouble-check this CVE assignment, since it has been said earlier on oss-security that it would not get a CVE
CVE-2015-7515The aiptek_probe function in drivers/input/tablet/aiptek.c in the ...check other versions
CVE-2015-7551The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby ...check correctness for CVE-2009-5147/CVE-2015-7551 record since affects multiple ruby versions
CVE-2015-7575Mozilla Network Security Services (NSS) before 3.20.2, as used in ...check other possible affected libraries (PolarSSL/mbedTLS, ...)
CVE-2015-7743XML external entity vulnerability in PRTG Network Monitor before ...check
CVE-2015-7775Cross-site scripting (XSS) vulnerability in Cybozu Garoon 4.0.3 allows ...check
CVE-2015-7776Cybozu Garoon 3.x and 4.x before 4.2.0 does not properly restrict ...check
CVE-2015-7856OpenNMS has a default password of rtc for the rtc account, which makes ...check
CVE-2015-7865nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA ...check
CVE-2015-7866Unquoted Windows search path vulnerability in the Smart Maximize ...check
CVE-2015-7921The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV ...check
CVE-2015-7987Multiple buffer overflows in mDNSResponder before 625.41.2 allow ...check
CVE-2015-7988The handle_regservice_request function in mDNSResponder before ...check
CVE-2015-7999Multiple SQL injection vulnerabilities in the Administration Web UI ...check
CVE-2015-8020Clustered Data ONTAP versions 8.0, 8.3.1, and 8.3.2 contain a default ...check
CVE-2015-8366Index overflow in smal_decode_segmentdouble check introducing commit and related packages
CVE-2015-8380The pcre_exec function in pcre_exec.c in PCRE before 8.38 mishandles a ...double-check wheezy version
CVE-2015-8542An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. The ...check
CVE-2015-8544NetApp SnapDrive for Windows before 7.0.2P4, 7.0.3, and 7.1 before ...check
CVE-2015-8606Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe ...check
CVE-2015-8667Cross-site scripting (XSS) vulnerability in Reset Your Password module ...check
CVE-2015-8801Race condition in the client in Symantec Endpoint Protection (SEP) ...check
CVE-2015-8817QEMU (aka Quick Emulator) built to use 'address_space_translate' to ...check again after the CVE id split
CVE-2015-8818The cpu_physical_memory_write_rom_internal function in exec.c in QEMU ...check again after the CVE id split
CVE-2015-8859The send package before 0.11.1 for Node.js allows attackers to obtain ...check
CVE-2015-8901denial of service flaw in MIFF file processingThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2016-0711Multiple cross-site scripting (XSS) vulnerabilities in Apache Jetspeed ...check
CVE-2016-0712Cross-site scripting (XSS) vulnerability in Apache Jetspeed before ...check
CVE-2016-0765Multiple cross-site scripting (XSS) vulnerabilities in ...check
CVE-2016-0769Multiple SQL injection vulnerabilities in eshop-orders.php in the ...check
CVE-2016-0772The smtplib library in CPython (aka Python) before 2.7.12, 3.x before ...check other versions
CVE-2016-0804The NuPlayer::GenericSource::notifyPreparedAndCleanup function in ...check
CVE-2016-0805The performance event manager for Qualcomm ARM processors in Android ...check
CVE-2016-0807The get_build_id function in elf_utils.cpp in Debuggerd in Android 6.x ...check
CVE-2016-0808Integer overflow in the getCoverageFormat12 function in ...check
CVE-2016-0809Use-after-free vulnerability in the wifi_cleanup function in ...check
CVE-2016-0810media/libmedia/SoundPool.cpp in mediaserver in Android 4.x before ...check
CVE-2016-0811Integer overflow in the BnCrypto::onTransact function in ...check
CVE-2016-0812The interceptKeyBeforeDispatching function in ...check
CVE-2016-0813packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java ...check
CVE-2016-0815The MPEG4Source::fragmentedRead function in MPEG4Extractor.cpp in ...check
CVE-2016-0816mediaserver in Android 6.x before 2016-03-01 allows remote attackers ...check
CVE-2016-0818The caching functionality in the TrustManagerImpl class in ...check
CVE-2016-0819The Qualcomm performance component in Android 4.x before 4.4.4, 5.x ...check
CVE-2016-0820The MediaTek Wi-Fi kernel driver in Android 6.0.1 before 2016-03-01 ...check
CVE-2016-0822The MediaTek connectivity kernel driver in Android 6.0.1 before ...check
CVE-2016-0825The Widevine Trusted Application in Android 6.0.1 before 2016-03-01 ...check
CVE-2016-0826libcameraservice in mediaserver in Android 4.x before 4.4.4, 5.x ...check
CVE-2016-0827Multiple integer overflows in libeffects in mediaserver in Android 4.x ...check
CVE-2016-0828The BnGraphicBufferConsumer::onTransact function in ...check
CVE-2016-0829The BnGraphicBufferProducer::onTransact function in ...check
CVE-2016-0830btif_config.c in Bluetooth in Android 6.x before 2016-03-01 allows ...check
CVE-2016-0831The getDeviceIdForPhone function in ...check
CVE-2016-0832Setup Wizard in Android 5.1.x before LMY49H and 6.x before 2016-03-01 ...check
CVE-2016-0834An unspecified media codec in mediaserver in Android 6.x before ...check
CVE-2016-0835decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before ...check
CVE-2016-0836Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in ...check
CVE-2016-0838Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before ...check
CVE-2016-0839post_proc/volume_listener.c in mediaserver in Android 6.x before ...check
CVE-2016-0840Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c ...check
CVE-2016-0841media/libmedia/mediametadataretriever.cpp in mediaserver in Android ...check
CVE-2016-0843The Qualcomm ARM processor performance-event manager in Android 4.x ...check
CVE-2016-0844The Qualcomm RF driver in Android 6.x before 2016-04-01 does not ...check
CVE-2016-0846libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x ...check
CVE-2016-0847The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-0848Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x ...check
CVE-2016-0849Multiple integer overflows in minzip/SysUtil.c in the Recovery ...check
CVE-2016-0850The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before ...check
CVE-2016-1167Cross-site request forgery (CSRF) vulnerability on NEC Aterm WG300HP ...check
CVE-2016-1168Cross-site request forgery (CSRF) vulnerability on NEC Aterm WF800HP ...check
CVE-2016-1169Cross-site scripting (XSS) vulnerability in the Casebook plugin before ...check
CVE-2016-1170Cross-site request forgery (CSRF) vulnerability in the Casebook plugin ...check
CVE-2016-1171Cross-site scripting (XSS) vulnerability in the Recruit plugin before ...check
CVE-2016-1172Cross-site request forgery (CSRF) vulnerability in the Recruit plugin ...check
CVE-2016-1173Cross-site scripting (XSS) vulnerability in the Menubook plugin before ...check
CVE-2016-1174Cross-site request forgery (CSRF) vulnerability in the Menubook plugin ...check
CVE-2016-1175Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player ...check
CVE-2016-1176Buffer overflow in the ActiveX control in Sharp EVA Animeter allows ...check
CVE-2016-1177The management screen in Falcon WisePoint 4.3.1 and earlier and ...check
CVE-2016-1180Cross-site scripting (XSS) vulnerability in the Cyber-Will ...check
CVE-2016-1183NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 through ...check
CVE-2016-1185The Cybozu kintone mobile application 1.x before 1.0.6 for Android ...check
CVE-2016-1188Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated ...check
CVE-2016-1189Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated ...check
CVE-2016-1190Cybozu Garoon 3.1 through 4.2 allows remote authenticated users to ...check
CVE-2016-1191Directory traversal vulnerability in the Files function in Cybozu ...check
CVE-2016-1192Directory traversal vulnerability in the logging implementation in ...check
CVE-2016-1193Cybozu Garoon 3.7 through 4.2 allows remote attackers to obtain ...check
CVE-2016-1195Open redirect vulnerability in Cybozu Garoon 3.x and 4.x before 4.2.1 ...check
CVE-2016-1196Cybozu Garoon 3.x and 4.x before 4.2.1 allows remote authenticated ...check
CVE-2016-1197Cross-site scripting (XSS) vulnerability in Cybozu Garoon 4.x before ...check
CVE-2016-1199The login page in the management screen in LOCKON EC-CUBE 3.0.0 ...check
CVE-2016-1200The management screen in LOCKON EC-CUBE 3.0.7 through 3.0.9 allows ...check
CVE-2016-1201Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE ...check
CVE-2016-1202Untrusted search path vulnerability in Atom Electron before 0.33.5 ...check
CVE-2016-1205Cross-site scripting (XSS) vulnerability in the shiro8 (1) ...check
CVE-2016-1206The WPS implementation on I-O DATA DEVICE WN-GDN/R3, WN-GDN/R3-C, ...check
CVE-2016-1207Cross-site scripting (XSS) vulnerability on I-O DATA DEVICE WN-G300R ...check
CVE-2016-1208The server in Apple FileMaker before 14.0.4 on OS X allows remote ...check
CVE-2016-1209The Ninja Forms plugin before 2.9.42.1 for WordPress allows remote ...check
CVE-2016-1211Cross-site scripting (XSS) vulnerability in Epoch Web Mailing List ...check
CVE-2016-1212Directory traversal vulnerability in futomi MP Form Mail CGI ...check
CVE-2016-1222Cross-site scripting (XSS) vulnerability in Kobe Beauty ...check
CVE-2016-1223Directory traversal vulnerability in Trend Micro Office Scan 11.0, ...check
CVE-2016-1224CRLF injection vulnerability in Trend Micro Worry-Free Business ...check
CVE-2016-1225Trend Micro Internet Security 8 and 10 allows remote attackers to read ...check
CVE-2016-1226Cross-site scripting (XSS) vulnerability in Trend Micro Internet ...check
CVE-2016-1227NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and ...check
CVE-2016-1228Cross-site request forgery (CSRF) vulnerability on NTT EAST Hikari ...check
CVE-2016-1229Cross-site scripting (XSS) vulnerability in HumHub 0.20.0-beta.1 ...check
CVE-2016-1230Cross-site scripting (XSS) vulnerability in NTT PC Communications ...check
CVE-2016-1502NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to ...check
CVE-2016-1542The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) ...check
CVE-2016-1543The RPC API in RSCD agent in BMC BladeLogic Server Automation (BSA) ...check
CVE-2016-1563NetApp Clustered Data ONTAP 8.3.1 does not properly verify X.509 ...check
CVE-2016-1578Use-after-free vulnerability in Oxide allows remote attackers to cause ...check
CVE-2016-1580The setup_snappy_os_mounts function in the ubuntu-core-launcher ...check
CVE-2016-1592XSS in NetIQ Designer for Identity Manager before 4.5.3 allows remote ...check
CVE-2016-1593Directory traversal vulnerability in the import users feature in Micro ...check
CVE-2016-1594Micro Focus Novell Service Desk before 7.2 allows remote authenticated ...check
CVE-2016-1595LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in ...check
CVE-2016-1596Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus ...check
CVE-2016-1712Palo Alto Networks PAN-OS before 5.0.19, 5.1.x before 5.1.12, 6.0.x ...check
CVE-2016-1762The xmlNextChar function in libxml2 before 2.9.4 allows remote ...vtk6, paraview, opencollada, xdmf, gettext appear to include the affected code
CVE-2016-1841libxslt, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS ...checking with MITRE if association to the CVE is correct, bu seems the only valid one
CVE-2016-1842MapKit in Apple iOS before 9.3.2, OS X before 10.11.5, and watchOS ...check
CVE-2016-1843The Messages component in Apple OS X before 10.11.5 mishandles ...check
CVE-2016-1844The Messages component in Apple OS X before 10.11.5 mishandles roster ...check
CVE-2016-1846The nvCommandQueue::GetHandleIndex method in the NVIDIA Graphics ...check
CVE-2016-1847OpenGL, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS ...check
CVE-2016-1848QuickTime in Apple OS X before 10.11.5 allows remote attackers to ...check
CVE-2016-1849The "Clear History and Website Data" feature in Apple Safari before ...check
CVE-2016-1850SceneKit in Apple OS X before 10.11.5 allows remote attackers to ...check
CVE-2016-1851The Screen Lock feature in Apple OS X before 10.11.5 mishandles ...check
CVE-2016-1852Siri in Apple iOS before 9.3.2 does not block data detectors within ...check
CVE-2016-1853Tcl in Apple OS X before 10.11.5 allows remote attackers to obtain ...check
CVE-2016-1854WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and ...check
CVE-2016-1855WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and ...check
CVE-2016-1858WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and ...check
CVE-2016-1859The WebKit Canvas implementation in Apple iOS before 9.3.2, Safari ...check
CVE-2016-1860Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to ...check
CVE-2016-1861The NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 ...check
CVE-2016-1862Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to ...check
CVE-2016-1863The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before ...check
CVE-2016-1864The XSS auditor in WebKit, as used in Apple iOS before 9.3 and Safari ...check
CVE-2016-1865The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before ...check
CVE-2016-1883The issetugid system call in the Linux compatibility layer in FreeBSD ...check
CVE-2016-1888The telnetd service in FreeBSD 9.3, 10.1, 10.2, 10.3, and 11.0 allows ...check
CVE-2016-1889Integer overflow in the bhyve hypervisor in FreeBSD 10.1, 10.2, 10.3, ...check
CVE-2016-1894NetApp OnCommand Workflow Automation before 3.1P2 allows remote ...check
CVE-2016-1897FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and ...Recheck, the issue might be fixed incompletely, cf. #811519
CVE-2016-1979Use-after-free vulnerability in the ...check if really fixed already in 3.21 upstream or only in 3.21.1
CVE-2016-1999The server in HP Release Control 9.13, 9.20, and 9.21 allows remote ...check
CVE-2016-2061Integer signedness error in the MSM V4L2 video driver for the Linux ...check
CVE-2016-2062The adreno_perfcounter_query_group function in ...check
CVE-2016-2063Stack-based buffer overflow in the supply_lm_input_write function in ...check
CVE-2016-2064sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio ...check
CVE-2016-2065sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio ...check
CVE-2016-2066Integer signedness error in the MSM QDSP6 audio driver for the Linux ...check
CVE-2016-2067drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for ...check
CVE-2016-2068The MSM QDSP6 audio driver (aka sound driver) for the Linux kernel ...check
CVE-2016-2079VMware NSX Edge 6.1 before 6.1.7 and 6.2 before 6.2.3 and vCNS Edge ...check
CVE-2016-2081Cross-site scripting (XSS) vulnerability in VMware vRealize Log ...check
CVE-2016-2082Cross-site request forgery (CSRF) vulnerability in VMware vRealize Log ...check
CVE-2016-2097Directory traversal vulnerability in Action View in Ruby on Rails ...check, for src:rails should actually not be affected since original patch complete
CVE-2016-2183The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec ...not clear if this should be assigned to individual source, like openssl and nss (openpvn got a own CVE)
CVE-2016-2205Directory traversal vulnerability in the file-download configuration ...check
CVE-2016-2206The management console in Symantec Workspace Streaming (SWS) 7.5.x ...check
CVE-2016-2219Cross-site scripting (XSS) vulnerability in the management interface ...check
CVE-2016-2274An issue was discovered in Adcon Telemetry A850 Telemetry Gateway Base ...check
CVE-2016-2307American Auto-Matrix Aspect-Nexus Building Automation Front-End ...check
CVE-2016-2308American Auto-Matrix Aspect-Nexus Building Automation Front-End ...check
CVE-2016-2349Remedy AR System Server in BMC Remedy 8.1 SP 2, 9.0, 9.0 SP 1, and 9.1 ...check
CVE-2016-2355SQL injection vulnerability in the REST API in dotCMS before 3.3.2 ...check
CVE-2016-2362Fonality (previously trixbox Pro) 12.6 through 14.1i before 2016-06-01 ...check
CVE-2016-2363Fonality (previously trixbox Pro) 12.6 through 14.1i before 2016-06-01 ...check
CVE-2016-2364The Chrome HUDweb plugin before 2016-05-05 for Fonality (previously ...check
CVE-2016-2408An unspecified client-side component in Pulse Secure Desktop Client ...check
CVE-2016-2464libvpx in libwebm in mediaserver in Android 4.x before 4.4.4, 5.0.x ...check
CVE-2016-2488The Qualcomm camera driver in Android before 2016-06-01 on Nexus 5, ...check
CVE-2016-2489The Qualcomm video driver in Android before 2016-06-01 on Nexus 5, 5X, ...check
CVE-2016-2490The NVIDIA camera driver in Android before 2016-06-01 on Nexus 9 ...check
CVE-2016-2491The NVIDIA camera driver in Android before 2016-06-01 on Nexus 9 ...check
CVE-2016-2492The MediaTek power-management driver in Android before 2016-06-01 on ...check
CVE-2016-2493The Broadcom Wi-Fi driver in Android before 2016-06-01 on Nexus 5, ...check
CVE-2016-2494Off-by-one error in sdcard/sdcard.c in Android 4.x before 4.4.4, 5.0.x ...check
CVE-2016-2496The Framework UI permission-dialog implementation in Android 6.x ...check
CVE-2016-2497services/core/java/com/android/server/pm/PackageManagerService.java in ...check
CVE-2016-2498The Qualcomm Wi-Fi driver in Android before 2016-06-01 on Nexus 7 ...check
CVE-2016-2500Activity Manager in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, ...check
CVE-2016-2501The Qualcomm camera driver in Android before 2016-07-05 on Nexus 5X, ...check
CVE-2016-2502drivers/usb/gadget/f_serial.c in the Qualcomm USB driver in Android ...check
CVE-2016-2503The Qualcomm GPU driver in Android before 2016-07-05 on Nexus 5X and ...check
CVE-2016-2504The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5, 5X, ...check
CVE-2016-2507Integer overflow in codecs/on2/h264dec/source/h264bsd_storage.c in ...check
CVE-2016-2508media/libmediaplayerservice/nuplayer/GenericSource.cpp in mediaserver ...check
CVE-2016-2556The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2557The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2558The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2783Avaya Fabric Connect Virtual Services Platform (VSP) Operating System ...check
CVE-2016-2787The Puppet Communications Protocol in Puppet Enterprise 2015.3.x ...check
CVE-2016-3063Multiple functions in NetApp OnCommand System Manager before 8.3.2 do ...check
CVE-2016-3064NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 ...check
CVE-2016-3074Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or ...check (texlive, libwmf)
CVE-2016-3128A spoofing vulnerability in the Core of BlackBerry Enterprise Server ...check
CVE-2016-3129A remote shell execution vulnerability in the BlackBerry Good ...check
CVE-2016-3130An information disclosure vulnerability in the Core and Management ...check
CVE-2016-3147Buffer overflow in the collector.exe listener of the Landesk ...check
CVE-2016-3149Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 ...check
CVE-2016-3150Cross-site scripting (XSS) vulnerability in wallpaper.php in the Base ...check
CVE-2016-3151Directory traversal vulnerability in the wallpaper parsing ...check
CVE-2016-3152Barco ClickShare CSC-1 devices with firmware before 01.09.03 allow ...check
CVE-2016-3161For the NVIDIA Quadro, NVS, and GeForce products, GFE GameStream and ...check
CVE-2016-3173An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. ...check
CVE-2016-3174An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27. ...check
CVE-2016-3193Cross-site scripting (XSS) vulnerability in the appliance ...check
CVE-2016-3194Cross-site scripting (XSS) vulnerability in the address added page in ...check
CVE-2016-3196Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x ...check
CVE-2016-3597Unspecified vulnerability in the Oracle VM VirtualBox component in ...check
CVE-2016-3598Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded ...according to Matthias/Tiago as well in OpenJDK7?
CVE-2016-3610Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded ...check, according to Matthias and Tiago as well in OpenJDK7?
CVE-2016-3612Unspecified vulnerability in the Oracle VM VirtualBox component in ...check
CVE-2016-3694Multiple SQL injection vulnerabilities in modified eCommerce ...check
CVE-2016-3741The H.264 decoder in mediaserver in Android 6.x before 2016-07-01 does ...check
CVE-2016-3742decoder/ih264d_process_intra_mb.c in mediaserver in Android 6.x before ...check
CVE-2016-3743decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-07-01 ...check
CVE-2016-3744Buffer overflow in the create_pbuf function in btif/src/btif_hh.c in ...check
CVE-2016-3745Multiple buffer overflows in mediaserver in Android 4.x before 4.4.4, ...check
CVE-2016-3746Use-after-free vulnerability in the mm-video-v4l2 vdec component in ...check
CVE-2016-3747Use-after-free vulnerability in the mm-video-v4l2 venc component in ...check
CVE-2016-3748The sockets subsystem in Android 6.x before 2016-07-01 allows ...check
CVE-2016-3749server/LockSettingsService.java in LockSettingsService in Android 6.x ...check
CVE-2016-3750libs/binder/Parcel.cpp in the Parcels Framework APIs in Android 4.x ...check
CVE-2016-3752internal/app/ChooserActivity.java in the ChooserTarget service in ...check
CVE-2016-3753mediaserver in Android 4.x before 4.4.4 allows remote attackers to ...check
CVE-2016-3754mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...check
CVE-2016-3755decoder/ih264d_parse_pslice.c in mediaserver in Android 6.x before ...check
CVE-2016-3756Tremolo/res012.c in mediaserver in Android 4.x before 4.4.4, 5.0.x ...check
CVE-2016-3757The print_maps function in toolbox/lsof.c in Android 4.x before 4.4.4, ...check
CVE-2016-3758Multiple buffer overflows in libdex/OptInvocation.cpp in ...check
CVE-2016-3759The Framework APIs in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, ...check
CVE-2016-3760Bluetooth in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x ...check
CVE-2016-3761NfcService.java in NFC in Android 4.x before 4.4.4, 5.0.x before ...check
CVE-2016-3762The sockets subsystem in Android 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-3763net/PacProxySelector.java in the Proxy Auto-Config (PAC) feature in ...check
CVE-2016-3764media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver ...check
CVE-2016-3765decoder/impeg2d_bitstream.c in mediaserver in Android 6.x before ...check
CVE-2016-3767The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3775The kernel filesystem implementation in Android before 2016-07-05 on ...check
CVE-2016-3792CORE/HDD/src/wlan_hdd_hostapd.c in the Qualcomm Wi-Fi driver in ...check
CVE-2016-3793The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 ...check
CVE-2016-3795The MediaTek power driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3796The MediaTek power driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3797The Qualcomm Wi-Fi driver in Android before 2016-07-05 on Nexus 5X ...check
CVE-2016-3798The MediaTek hardware sensor driver in Android before 2016-07-05 on ...check
CVE-2016-3799The MediaTek video driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3800The MediaTek video driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3801The MediaTek GPS driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3802The kernel filesystem implementation in Android before 2016-07-05 on ...check
CVE-2016-3803The kernel filesystem implementation in Android before 2016-07-05 on ...check
CVE-2016-3804The MediaTek power management driver in Android before 2016-07-05 on ...check
CVE-2016-3805The MediaTek power management driver in Android before 2016-07-05 on ...check
CVE-2016-3806The MediaTek display driver in Android before 2016-07-05 on Android ...check
CVE-2016-3807The serial peripheral interface driver in Android before 2016-07-05 on ...check
CVE-2016-3808The serial peripheral interface driver in Android before 2016-07-05 on ...check
CVE-2016-3809The networking component in Android before 2016-07-05 on Android One, ...check
CVE-2016-3810The MediaTek Wi-Fi driver in Android before 2016-07-05 on Android One ...check
CVE-2016-3811The kernel video driver in Android before 2016-07-05 on Nexus 9 ...check
CVE-2016-3812The MediaTek video codec driver in Android before 2016-07-05 on ...check
CVE-2016-3813The Qualcomm USB driver in Android before 2016-07-05 on Nexus 5, 5X, ...check
CVE-2016-3814The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 ...check
CVE-2016-3815The NVIDIA camera driver in Android before 2016-07-05 on Nexus 9 ...check
CVE-2016-3816The MediaTek display driver in Android before 2016-07-05 on Android ...check
CVE-2016-3818libc in Android 4.x before 4.4.4 allows remote attackers to cause a ...check
CVE-2016-3819Integer overflow in codecs/on2/h264dec/source/h264bsd_dpb.c in ...check
CVE-2016-3820The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 ...check
CVE-2016-3821libmedia in mediaserver in Android 4.x before 4.4.4, 5.0.x before ...check
CVE-2016-3822exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android ...check
CVE-2016-3823The secure-session feature in the mm-video-v4l2 venc component in ...check
CVE-2016-3825mm-video-v4l2/vidc/venc/src/omx_video_base.cpp in mediaserver in ...check
CVE-2016-3826services/audioflinger/Effects.cpp in mediaserver in Android 4.x before ...check
CVE-2016-3828decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-08-01 ...check
CVE-2016-3829The ih264d decoder in mediaserver in Android 6.x before 2016-08-01 ...check
CVE-2016-3831The telephony component in Android 4.x before 4.4.4, 5.0.x before ...check
CVE-2016-3832The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, ...check
CVE-2016-3833The Shell component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, ...check
CVE-2016-3834The camera APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...check
CVE-2016-3835The secure-session feature in the mm-video-v4l2 venc component in ...check
CVE-2016-3836The SurfaceFlinger service in Android 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-3837service/jni/com_android_server_wifi_WifiNative.cpp in Wi-Fi in Android ...check
CVE-2016-3838Android 6.x before 2016-08-01 allows attackers to cause a denial of ...check
CVE-2016-3839Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...check
CVE-2016-3840Conscrypt in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...check
CVE-2016-3842The Qualcomm GPU driver in Android before 2016-08-05 on Nexus 5X, 6, ...check
CVE-2016-3843Android before 2016-08-05 does not properly restrict code execution in ...check
CVE-2016-3844mediaserver in Android before 2016-08-05 on Nexus 9 and Pixel C ...check
CVE-2016-3845The video driver in the kernel in Android before 2016-08-05 on Nexus 5 ...check
CVE-2016-3846The Serial Peripheral Interface driver in Android before 2016-08-05 on ...check
CVE-2016-3847The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 ...check
CVE-2016-3848The NVIDIA media driver in Android before 2016-08-05 on Nexus 9 ...check
CVE-2016-3849The ION driver in Android before 2016-08-05 on Pixel C devices allows ...check
CVE-2016-3850Integer overflow in app/aboot/aboot.c in the Qualcomm bootloader in ...check
CVE-2016-3851The LG Electronics bootloader Android before 2016-08-05 on Nexus 5X ...check
CVE-2016-3852The MediaTek Wi-Fi driver in Android before 2016-08-05 on Android One ...check
CVE-2016-3853Google Play services in Android before 2016-08-05 on Nexus devices ...check
CVE-2016-3854drivers/media/video/msm/msm_mctl_buf.c in the Qualcomm components in ...check
CVE-2016-3855drivers/thermal/supply_lm_core.c in the Qualcomm components in Android ...check
CVE-2016-3856netd in Android before 2016-08-05 mishandles tethering and stdio ...check
CVE-2016-3858Buffer overflow in drivers/soc/qcom/subsystem_restart.c in the ...check
CVE-2016-3859The Qualcomm camera driver in Android before 2016-09-05 on Nexus 5, ...check
CVE-2016-3860sound/soc/msm/qdsp6v2/audio_calibration.c in the Qualcomm sound driver ...check
CVE-2016-3861LibUtils in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-3862media/ExifInterface.java in mediaserver in Android 4.x before 4.4.4, ...check
CVE-2016-3863Multiple stack-based buffer overflows in the AVCC reassembly ...check
CVE-2016-3864The Qualcomm radio interface layer in Android before 2016-09-05 on ...check
CVE-2016-3865The Synaptics touchscreen driver in Android before 2016-09-05 on Nexus ...check
CVE-2016-3866The Qualcomm sound driver in Android before 2016-09-05 on Nexus 5X, 6, ...check
CVE-2016-3867The Qualcomm IPA driver in Android before 2016-09-05 on Nexus 5X and ...check
CVE-2016-3868The Qualcomm power driver in Android before 2016-09-05 on Nexus 5X and ...check
CVE-2016-3869The Broadcom Wi-Fi driver in Android before 2016-09-05 on Nexus 5, ...check
CVE-2016-3871Multiple buffer overflows in codecs/mp3dec/SoftMP3.cpp in ...check
CVE-2016-3873The NVIDIA kernel in Android before 2016-09-05 on Nexus 9 devices ...check
CVE-2016-3874CORE/HDD/src/wlan_hdd_wext.c in the Qualcomm Wi-Fi driver in Android ...check
CVE-2016-3875server/wm/WindowManagerService.java in Android 6.x before 2016-09-01 ...check
CVE-2016-3876providers/settings/SettingsProvider.java in Android 6.x before ...check
CVE-2016-3877Unspecified vulnerability in Android before 2016-09-01 has unknown ...check
CVE-2016-3878decoder/ih264d_api.c in mediaserver in Android 6.x before 2016-09-01 ...check
CVE-2016-3879arm-wt-22k/lib_src/eas_mdls.c in mediaserver in Android 4.x before ...check
CVE-2016-3880Multiple buffer overflows in rtsp/ASessionDescription.cpp in ...check
CVE-2016-3881The decoder_peek_si_internal function in vp9/vp9_dx_iface.c in libvpx ...check
CVE-2016-3882Off-by-one error in server/wifi/anqp/VenueNameElement.java in Wi-Fi in ...check
CVE-2016-3883internal/telephony/SMSDispatcher.java in Telephony in Android 4.x ...check
CVE-2016-3884server/notification/NotificationManagerService.java in the ...check
CVE-2016-3885debuggerd/debuggerd.cpp in Debuggerd in Android 5.0.x before 5.0.2, ...check
CVE-2016-3886systemui/statusbar/phone/QuickStatusBarHeader.java in the System UI ...check
CVE-2016-3887providers/settings/SettingsProvider.java in Android 7.0 before ...check
CVE-2016-3888internal/telephony/SMSDispatcher.java in Android 4.x before 4.4.4, ...check
CVE-2016-3889Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows ...check
CVE-2016-3890The Java Debug Wire Protocol (JDWP) implementation in adb/sockets.cpp ...check
CVE-2016-3892The Qualcomm SPMI driver in Android before 2016-09-05 on Nexus 5, 5X, ...check
CVE-2016-3893The wcdcal_hwdep_ioctl_shared function in ...check
CVE-2016-3894The Qualcomm DMA component in Android before 2016-09-05 on Nexus 6 ...check
CVE-2016-3895Integer overflow in the Region::unflatten function in ...check
CVE-2016-3896AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x ...check
CVE-2016-3897The WifiEnterpriseConfig class in net/wifi/WifiEnterpriseConfig.java ...check
CVE-2016-3898Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x ...check
CVE-2016-3900cmds/servicemanager/service_manager.c in ServiceManager in Android ...check
CVE-2016-3901Multiple integer overflows in drivers/crypto/msm/qcedev.c in the ...check
CVE-2016-3902drivers/platform/msm/ipa/ipa_qmi_service.c in the Qualcomm IPA driver ...check
CVE-2016-3903drivers/media/platform/msm/camera_v2/sensor/csid/msm_csid.c in the ...check
CVE-2016-3904An elevation of privilege vulnerability in the Qualcomm bus driver in ...check
CVE-2016-3905CORE/HDD/src/wlan_hdd_main.c in the Qualcomm Wi-Fi driver in Android ...check
CVE-2016-3906An information disclosure vulnerability in Qualcomm components ...check
CVE-2016-3907An information disclosure vulnerability in Qualcomm components ...check
CVE-2016-3908The Lock Settings Service in Android 6.x before 2016-10-01 and 7.0 ...check
CVE-2016-3910services/soundtrigger/SoundTriggerHwService.cpp in mediaserver in ...check
CVE-2016-3911core/java/android/os/Process.java in Zygote in Android 4.x before ...check
CVE-2016-3912The framework APIs in Android 4.x before 4.4.4, 5.0.x before 5.0.2, ...check
CVE-2016-3913media/libmediaplayerservice/MediaPlayerService.cpp in mediaserver in ...check
CVE-2016-3914Race condition in providers/telephony/MmsProvider.java in Telephony in ...check
CVE-2016-3915camera/src/camera_metadata.c in the Camera service in Android 4.x ...check
CVE-2016-3916camera/src/camera_metadata.c in the Camera service in Android 4.x ...check
CVE-2016-3917The fingerprint login feature in Android 6.0.1 before 2016-10-01 and ...check
CVE-2016-3918email/provider/AttachmentProvider.java in AOSP Mail in Android 4.x ...check
CVE-2016-3921libsysutils/src/FrameworkListener.cpp in Framework Listener in Android ...check
CVE-2016-3922libril/RilSapSocket.cpp in Telephony in Android 6.x before 2016-10-01 ...check
CVE-2016-3923The Accessibility services in Android 7.0 before 2016-10-01 mishandle ...check
CVE-2016-3924services/audioflinger/Effects.cpp in mediaserver in Android 4.x before ...check
CVE-2016-3925server/wifi/anqp/ANQPFactory.java in Android 6.x before 2016-10-01 and ...check
CVE-2016-3926Unspecified vulnerability in a Qualcomm component in Android before ...check
CVE-2016-3927Unspecified vulnerability in a Qualcomm component in Android before ...check
CVE-2016-3928The MediaTek video driver in Android before 2016-10-05 allows ...check
CVE-2016-3929Unspecified vulnerability in a Qualcomm component in Android before ...check
CVE-2016-3930The NVIDIA MMC test driver in Android before 2016-10-05 on Nexus 9 ...check
CVE-2016-3931drivers/misc/qseecom.c in the Qualcomm QSEE Communicator driver in ...check
CVE-2016-3932mediaserver in Android before 2016-10-05 allows attackers to gain ...check
CVE-2016-3933mediaserver in Android before 2016-10-05 on Nexus 9 and Pixel C ...check
CVE-2016-3934drivers/media/platform/msm/camera_v2/sensor/io/msm_camera_cci_i2c.c in ...check
CVE-2016-3935Multiple integer overflows in drivers/crypto/msm/qcedev.c in the ...check
CVE-2016-3936The MediaTek video driver in Android before 2016-10-05 allows ...check
CVE-2016-3937The MediaTek video driver in Android before 2016-10-05 allows ...check
CVE-2016-3938drivers/video/msm/mdss/mdss_mdp_overlay.c in the Qualcomm video driver ...check
CVE-2016-3939drivers/video/msm/mdss/mdss_debug.c in the Qualcomm video driver in ...check
CVE-2016-3940The Synaptics touchscreen driver in Android before 2016-10-05 on Nexus ...check
CVE-2016-3946SAP Console (aka SAPConsole) 7.30 allows local users to discover SAP ...check
CVE-2016-3949Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware ...check
CVE-2016-3962Stack-based buffer overflow in the NTP time-server interface on ...check
CVE-2016-4026An issue was discovered in Open-Xchange OX App Suite before ...check
CVE-2016-4027An issue was discovered in Open-Xchange OX App Suite before ...check
CVE-2016-4028An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8. OX ...check
CVE-2016-4045An issue was discovered in Open-Xchange OX App Suite before ...check
CVE-2016-4046An issue was discovered in Open-Xchange OX App Suite before ...check
CVE-2016-4047An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev8. ...check
CVE-2016-4048An issue was discovered in Open-Xchange OX App Suite before ...check
CVE-2016-4311Cross-site request forgery (CSRF) vulnerability in the XACML flow ...check
CVE-2016-4312XML external entity (XXE) vulnerability in the XACML flow feature in ...check
CVE-2016-4314Directory traversal vulnerability in the LogViewer Admin Service in ...check
CVE-2016-4315Cross-site request forgery (CSRF) vulnerability in WSO2 Carbon 4.4.5 ...check
CVE-2016-4316Multiple cross-site scripting (XSS) vulnerabilities in WSO2 Carbon ...check
CVE-2016-4326The Chef Manage (formerly opscode-manage) add-on before 1.12.0 for ...check
CVE-2016-4327Cross-site scripting (XSS) vulnerability in WSO2 SOA Enablement Server ...check
CVE-2016-4332The library's failure to check if certain message types support a ...check if correct fixing commit
CVE-2016-4333The HDF5 1.8.16 library allocating space for the array using a value ...check if fixing commit is correct
CVE-2016-4494Cross-site request forgery (CSRF) vulnerability on KMC Controls ...check
CVE-2016-4495KMC Controls BAC-5051E devices with firmware before E0.2.0.2 allow ...check
CVE-2016-4503Moxa Device Server Web Console 5232-N allows remote attackers to ...check
CVE-2016-4507SQL injection vulnerability in Rexroth Bosch BLADEcontrol-WebVIS 3.0.2 ...check
CVE-2016-4508Cross-site scripting (XSS) vulnerability in Rexroth Bosch ...check
CVE-2016-4509Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and ...check
CVE-2016-4510The WAP interface in Trihedral VTScada (formerly VTS) 8.x through 11.x ...check
CVE-2016-4512Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 ...check
CVE-2016-4513Cross-site scripting (XSS) vulnerability in the Schneider Electric ...check
CVE-2016-4514Moxa PT-7728 devices with software 3.4 build 15081113 allow remote ...check
CVE-2016-4518OSIsoft PI AF Server before 2016 2.8.0 allows remote authenticated ...check
CVE-2016-4519Stack-based buffer overflow in Unitronics VisiLogic OPLC IDE before ...check
CVE-2016-4520Schneider Electric Pelco Digital Sentry Video Management System with ...check
CVE-2016-4607libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4608libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4609libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4610libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4612libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4613An issue was discovered in certain Apple products. Safari before ...check
CVE-2016-4614libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4615libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4616libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4617An issue was discovered in certain Apple products. macOS before 10.12 ...check
CVE-2016-4619libxml2 in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before ...check
CVE-2016-4660An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4661An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4662An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4663An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4664An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4665An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4666An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4667An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4669An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4670An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4671An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4673An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4674An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4675An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4677An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4678An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4679An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4680An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4681An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4682An issue was discovered in certain Apple products. macOS before 10.12 ...check
CVE-2016-4683An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4685An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4686An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4688An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4689An issue was discovered in certain Apple products. iOS before 10.2 is ...check
CVE-2016-4690An issue was discovered in certain Apple products. iOS before 10.2 is ...check
CVE-2016-4691An issue was discovered in certain Apple products. iOS before 10.2 is ...check
CVE-2016-4693An issue was discovered in certain Apple products. iOS before 10.2 is ...check
CVE-2016-4694The Apache HTTP Server in Apple OS X before 10.12 and OS X Server ...check
CVE-2016-4721An issue was discovered in certain Apple products. iOS before 10.1 is ...check
CVE-2016-4736libarchive in Apple OS X before 10.12 allows remote attackers to cause ...check
CVE-2016-4764An issue was discovered in certain Apple products. iOS before 10 is ...check
CVE-2016-4780An issue was discovered in certain Apple products. macOS before ...check
CVE-2016-4781An issue was discovered in certain Apple products. iOS before 10.2 is ...check
CVE-2016-4793The clientIp function in CakePHP 3.2.4 and earlier allows remote ...check
CVE-2016-4845Cross-site request forgery (CSRF) vulnerability on I-O DATA DEVICE ...check
CVE-2016-4981RESERVEDpossibly a typo in the CVE ID alias?
CVE-2016-5115The avcodec_decode_audio4 function in libavcodec in libavformat ...probably not affected since orig.tar.gz of src:mplayer does not include libavcodec, ffmpeg/libav affected?
CVE-2016-5303Cross-site scripting (XSS) vulnerability in the Horde Text Filter API ...check
CVE-2016-5687The VerticalFilter function in the DDS coder in ImageMagick before ...check, referenced fix does not seem the one fixing the issue
CVE-2016-5838WordPress before 4.5.3 allows remote attackers to bypass intended ...check if this is the correct change, according to announce Michael Adams is reporter, but ticket mentions Jeremy Felt as reporter
CVE-2016-7787A maliciously crafted command line for kdesu can result in the user ...need investigation for kde-runtime, the kdesu.cpp is present, compiled, but not clear if just affected but (unimportant).
CVE-2017-2627RESERVEDcheck
CVE-2017-5972The TCP stack in the Linux kernel 3.x does not properly implement a ...check/investigate, further triage first in kernel-sec
TEMP-0000000-8B3E019 issues in ytnef -- X41-2017-002wait some days for the CVE assignments (which seem requested by x41-dsec), otherwise go ahead with re-request
TEMP-0000000-9FAB83Kodi Cross-Site Request Forgerycheck kodi
TEMP-0000000-CD9D84Cross Site Request Forgery / Code Executioncheck
TEMP-0000000-EBC4D4EncryptedType uses static IV per keycheck
TEMP-0803223-1A1108buffer overflow with handling pop3_deleted_flag settingThe link in the previous line is broken. Please, consider replacing it. Error: 404
TEMP-0855588-E73B34atheme: memory leak could lead to DOScheck correctness of introducing commit

Search for package or bug name: Reporting problems