Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2008-2544check
CVE-2009-2197Apple Safari before 9.1 allows remote attackers to spoof the user ...check
CVE-2011-2844Google Chrome before 14.0.835.163 does not properly process MP3 files, ...check ffmpeg, http://src.chromium.org/viewvc/chrome?view=rev&revision=88382
CVE-2011-2896The LZW decompressor in the LWZReadByte function in giftoppm.c in the ...There's more: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-2896
CVE-2011-4076check
CVE-2011-5034Apache Geronimo 2.2.1 and earlier computes hash values for form ...check
CVE-2013-6890denyhosts 2.6 uses an incorrect regular expression when analyzing ...Check. Originally fixed in 2.6-10.1 but denyhosts introduced in unstable possibly without fix
CVE-2013-7445The Direct Rendering Manager (DRM) subsystem in the Linux kernel ...check
CVE-2013-7447Integer overflow in the gdk_cairo_set_source_pixbuf function in ...check other source packages (eom, gnome-photos, eog, gambas3, thunar, pinpoint, gtk+2.0)
CVE-2014-1958PSD Images Processing RLE Decoding Buffer Overflow VulnerabilityThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-2030The link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-3260Pacom 1000 CCU and RTU GMS devices allow remote attackers to spoof the ...check
CVE-2014-3514activerecord/lib/active_record/relation/query_methods.rb in Active ...needs to check the others rails versions
CVE-2014-4876Toshiba 4690 Operating System 6 Release 3, when the ADXSITCF logical ...check
CVE-2014-5040HP Helion Eucalyptus 4.1.x before 4.1.2 and HPE Helion Eucalyptus ...check
CVE-2014-6451J-Web in Juniper vSRX virtual firewalls with Junos OS before ...check
CVE-2014-7912The get_option function in dhcp.c in dhcpcd before 6.2.0, as used in ...check
CVE-2014-7913The print_option function in dhcp-common.c in dhcpcd through 6.9.1, as ...check
CVE-2014-8354out-of-bounds memory access in resize codeThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8355buffer overflow in PCX parserThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8562buffer overflow in DCM parserThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8716crafted jpeg file could lead to DOSThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
CVE-2014-8886AVM FRITZ!OS before 6.30 extracts the contents of firmware updates ...check
CVE-2014-9512rsync 3.1.1 allows remote attackers to write to arbitrary files via a ...Re-check affected versions, Ubuntu released an update which also covers 3.0.9 from precise
CVE-2014-9752Unrestricted file upload vulnerability in ...check
CVE-2014-9757The Ignite Realtime Smack XMPP API, as used in Atlassian Bamboo before ...check
CVE-2014-9773A remote attacker could change Atheme's behavior by registering/dropping certain accounts/nickscheck
CVE-2015-0839hp-plugin binary driver verificationThe link in the previous line is broken. Please, consider replacing it. Error: 404
CVE-2015-1001Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka ...check
CVE-2015-1002IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL ...check
CVE-2015-1003Directory traversal vulnerability in IniNet embeddedWebServer (aka ...check
CVE-2015-1005IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE ...check
CVE-2015-1342LXCFS before 0.12 does not properly enforce directory escapes, which ...check
CVE-2015-1344The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not ...check
CVE-2015-2286lms/templates/footer-edx-new.html in Open edX edx-platform before ...check
CVE-2015-2894Format string vulnerability in the up.time client in Idera Uptime ...check
CVE-2015-2895Buffer overflow in the up.time client in Idera Uptime Infrastructure ...check
CVE-2015-2896The up.time client in Idera Uptime Infrastructure Monitor through 7.6 ...check
CVE-2015-2898Multiple stack-based buffer overflows in Medicomp MEDCIN Engine before ...check
CVE-2015-2899Heap-based buffer overflow in the QualifierList ...check
CVE-2015-2900The AddUserFinding add_userfinding2 function in Medicomp MEDCIN Engine ...check
CVE-2015-2901Multiple stack-based buffer overflows in Medicomp MEDCIN Engine ...check
CVE-2015-2912The JSONP endpoint in the Studio component in OrientDB Server ...check
CVE-2015-2913server/network/protocol/http/OHttpSessionManager.java in the Studio ...check
CVE-2015-2918The Studio component in OrientDB Server Community Edition before ...check
CVE-2015-3239Off-by-one error in the dwarf_to_unw_regnum function in ...The link in the previous line is broken. Please, consider replacing it. Error: 404
CVE-2015-3240The pluto IKE daemon in libreswan before 3.15 and Openswan before ...check
CVE-2015-3628The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link ...check
CVE-2015-3938The HTTP application on Mitsubishi Electric MELSEC FX3G PLC devices ...check
CVE-2015-3943Advantech WebAccess before 8.1 allows remote attackers to read ...check
CVE-2015-3946Cross-site request forgery (CSRF) vulnerability in Advantech WebAccess ...check
CVE-2015-3947SQL injection vulnerability in Advantech WebAccess before 8.1 allows ...check
CVE-2015-3948Cross-site scripting (XSS) vulnerability in Advantech WebAccess before ...check
CVE-2015-3967Cross-site request forgery (CSRF) vulnerability on Janitza UMG 508, ...check
CVE-2015-3968The FTP service on Janitza UMG 508, 509, 511, 604, and 605 devices has ...check
CVE-2015-3969Janitza UMG 508, 509, 511, 604, and 605 devices allow remote attackers ...check
CVE-2015-3970Multiple cross-site scripting (XSS) vulnerabilities in the web ...check
CVE-2015-3971The debug interface on Janitza UMG 508, 509, 511, 604, and 605 devices ...check
CVE-2015-3972The web interface on Janitza UMG 508, 509, 511, 604, and 605 devices ...check
CVE-2015-3973Janitza UMG 508, 509, 511, 604, and 605 devices improperly generate ...check
CVE-2015-3977Buffer overflow in Schneider Electric IMT25 Magnetic Flow DTM before ...check
CVE-2015-3996The default AFSecurityPolicy.validatesDomainName configuration for ...check
CVE-2015-4027The AcuWVSSchedulerv10 service in Acunetix Web Vulnerability Scanner ...check
CVE-2015-4112The Management Console in BlackBerry Enterprise Server (BES) 12 before ...check
CVE-2015-4744Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-4762Unspecified vulnerability in the Oracle Applications DBA component in ...check
CVE-2015-4793Unspecified vulnerability in the Oracle Communications Convergence ...check
CVE-2015-4794Unspecified vulnerability in the Java VM component in Oracle Database ...check
CVE-2015-4795Unspecified vulnerability in the Oracle Utilities Work and Asset ...check
CVE-2015-4796Unspecified vulnerability in the Java VM component in Oracle Database ...check
CVE-2015-4797Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2015-4798Unspecified vulnerability in the Oracle Applications Technology Stack ...check
CVE-2015-4799Unspecified vulnerability in the Oracle WebCenter Sites component in ...check
CVE-2015-4804Unspecified vulnerability in the PeopleSoft Enterprise HCM Talent ...check
CVE-2015-4808Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2015-4809Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2015-4811Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2015-4812Unspecified vulnerability in the Oracle HTTP Server component in ...check
CVE-2015-4818Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2015-4821Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) ...check
CVE-2015-4823Unspecified vulnerability in the Hyperion Installation Technology ...check
CVE-2015-4824Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2015-4825Unspecified vulnerability in the PeopleSoft Enterprise FIN Expenses ...check
CVE-2015-4827Unspecified vulnerability in the Oracle Retail Open Commerce Platform ...check
CVE-2015-4828Unspecified vulnerability in the PeopleSoft Enterprise FSCM component ...check
CVE-2015-4832Unspecified vulnerability in the Oracle Identity Manager component in ...check
CVE-2015-4838Unspecified vulnerability in the Oracle JDeveloper component in Oracle ...check
CVE-2015-4839Unspecified vulnerability in the Oracle Applications Technology Stack ...check
CVE-2015-4841Unspecified vulnerability in the Siebel Core - Server Framework ...check
CVE-2015-4852The WLS Security component in Oracle WebLogic Server 10.3.6.0, ...check
CVE-2015-4854Unspecified vulnerability in the Oracle Application Object Library ...check
CVE-2015-4857Unspecified vulnerability in the RDBMS component in Oracle Database ...check
CVE-2015-4859Unspecified vulnerability in the Enterprise Manager Base Platform ...check
CVE-2015-4863Unspecified vulnerability in the Portable Clusterware component in ...check
CVE-2015-4865Unspecified vulnerability in the Oracle Applications Framework ...check
CVE-2015-4867Unspecified vulnerability in the Oracle WebCenter Content component in ...check
CVE-2015-4873Unspecified vulnerability in the Database Scheduler component in ...check
CVE-2015-4874Unspecified vulnerability in the Enterprise Manager Base Platform ...check
CVE-2015-4875Unspecified vulnerability in the Enterprise Manager Base Platform ...check
CVE-2015-4876Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2015-4877Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2015-4878Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2015-4880Unspecified vulnerability in the Oracle WebCenter Content component in ...check
CVE-2015-4885Unspecified vulnerability in the Enterprise Manager Base Platform ...check
CVE-2015-4887Unspecified vulnerability in the PeopleSoft Enterprise HCM component ...check
CVE-2015-4888Unspecified vulnerability in the Java VM component in Oracle Database ...check
CVE-2015-4892Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2015-4894Unspecified vulnerability in the Mobile Server component in Oracle ...check
CVE-2015-4898Unspecified vulnerability in the Oracle Applications Framework ...check
CVE-2015-4899Unspecified vulnerability in the Oracle GlassFish Server component in ...check
CVE-2015-4900Unspecified vulnerability in the XDB - XML Database component in ...check
CVE-2015-4909Unspecified vulnerability in the Oracle JDeveloper component in Oracle ...check
CVE-2015-4912Unspecified vulnerability in the Oracle Access Manager component in ...check
CVE-2015-4914Unspecified vulnerability in the Oracle HTTP Server component in ...check
CVE-2015-4915Unspecified vulnerability in the Integrated Lights Out Manager (ILOM) ...check
CVE-2015-4917Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2015-4919Unspecified vulnerability in the JD Edwards EnterpriseOne Tools ...check
CVE-2015-4920Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...check
CVE-2015-4921Unspecified vulnerability in the Database Vault component in Oracle ...check
CVE-2015-4922Unspecified vulnerability in Oracle Sun Solaris 11 allows local users ...check
CVE-2015-4923Unspecified vulnerability in the XML Developer's Kit for C component ...check
CVE-2015-4924Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2015-4925Unspecified vulnerability in the Workspace Manager component in Oracle ...check
CVE-2015-4926Unspecified vulnerability in the Oracle Applications Framework ...check
CVE-2015-4946Rational LifeCycle Project Administration in Jazz Team Server in IBM ...check
CVE-2015-4956The Web UI in IBM Security QRadar SIEM 7.1.x before 7.1 MR2 Patch 12 ...check
CVE-2015-4957Cross-site scripting (XSS) vulnerability in the Web UI in IBM Security ...check
CVE-2015-4991IBM SPSS Modeler 14.2 through FP3 IF027, 15 through FP3 IF015, 16 ...check
CVE-2015-5001IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 ...check
CVE-2015-5002Cross-site scripting (XSS) vulnerability in IBM Host On-Demand 11.0 ...check
CVE-2015-5003The portal in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, 6.2.3 ...check
CVE-2015-5004The Edge Component Caching Proxy in IBM WebSphere Application Server ...check
CVE-2015-5007Cross-site request forgery (CSRF) vulnerability in IBM WebSphere ...check
CVE-2015-5008Cross-site scripting (XSS) vulnerability in IBM WebSphere Commerce 6.0 ...check
CVE-2015-5009Cross-site scripting (XSS) vulnerability in IBM WebSphere Commerce 6.0 ...check
CVE-2015-5010IBM Security Access Manager for Web 7.0 before 7.0.0 IF21, 8.0 before ...check
CVE-2015-5012The SSH implementation on IBM Security Access Manager for Web ...check
CVE-2015-5042IBM Emptoris Contract Management 9.5.0.x before 9.5.0.6 iFix15, ...check
CVE-2015-5050Cross-site request forgery (CSRF) vulnerability in IBM Emptoris ...check
CVE-2015-5053The host memory mapping path feature in the NVIDIA GPU graphics driver ...check
CVE-2015-5189Race condition in pcsd in PCS 0.9.139 and earlier uses a global ...check, doesn't seem "apply" in most recent pcs (0.9.148-1.1), double check
CVE-2015-5255Adobe BlazeDS, as used in ColdFusion 10 before Update 18 and 11 before ...check
CVE-2015-5281The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) ...check, possibly Red Hat specific
CVE-2015-5303The TripleO Heat templates (tripleo-heat-templates), when deployed via ...check
CVE-2015-5306OpenStack Ironic Inspector (aka ironic-inspector or ironic-discoverd), ...check
CVE-2015-5329The TripleO Heat templates (tripleo-heat-templates), as used in Red ...check
CVE-2015-5347Cross-site scripting (XSS) vulnerability in the ...check
CVE-2015-5349The CSV export in Apache LDAP Studio and Apache Directory Studio ...check
CVE-2015-5375Cross-site scripting (XSS) vulnerability in unspecified dialogs for ...check
CVE-2015-5516Memory leak in the last hop kernel module in F5 BIG-IP LTM, GTM, and ...check
CVE-2015-5649Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles ...check
CVE-2015-5650Directory traversal vulnerability in AjaXplorer 2.0 allows remote ...check
CVE-2015-5653Buffer overflow in Canary Labs Trend Web Server before 9.5.2 allows ...check
CVE-2015-5655The Adways Party Track SDK before 1.6.6 for iOS does not verify X.509 ...check
CVE-2015-5659SQL injection vulnerability in Network Applied Communication ...check
CVE-2015-5661The SAND STUDIO AirDroid application 1.1.0 and earlier for Android ...check
CVE-2015-5662Directory traversal vulnerability in Avast before 150918-0 allows ...check
CVE-2015-5663The file-execution functionality in WinRAR before 5.30 beta 5 allows ...check
CVE-2015-5665Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE ...check
CVE-2015-5668SQL injection vulnerability in Techno Project Japan Enisys Gw before ...check
CVE-2015-5669Techno Project Japan Enisys Gw before 1.4.1 allows remote ...check
CVE-2015-5670Cross-site scripting (XSS) vulnerability in Techno Project Japan ...check
CVE-2015-5671Techno Project Japan Enisys Gw before 1.4.1 allows remote attackers to ...check
CVE-2015-5672TYPE-MOON Fate/stay night, Fate/hollow ataraxia, Witch on the Holy ...check
CVE-2015-5673eventapp/lib/gcloud.rb in the ISUCON5 qualifier portal (aka eventapp) ...check
CVE-2015-5687system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote ...check
CVE-2015-5703SQL injection vulnerability in the public key discovery API call in ...check
CVE-2015-5712Spotfire Parsing Library and Spotfire Security Filter in TIBCO ...check
CVE-2015-5713Spotfire Parsing Library and Spotfire Security Filter in TIBCO ...check
CVE-2015-5742VeeamVixProxy in Veeam Backup & Replication (B&R) before 8.0 update 3 ...check
CVE-2015-5780The Safari Extensions implementation in Apple Safari before 9 does not ...check
CVE-2015-5828The API in the WebKit Plug-ins component in Apple Safari before 9 does ...check
CVE-2015-5918GasGauge in Apple watchOS before 2 allows local users to gain ...check
CVE-2015-5919GasGauge in Apple watchOS before 2 allows local users to gain ...check
CVE-2015-5931WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-5955ownCloud iOS app before 3.4.4 does not properly switch state between ...check
CVE-2015-5968Cross-site scripting (XSS) vulnerability in Novell Filr 1.2 before Hot ...check
CVE-2015-5969The mysql-systemd-helper script in the mysql-community-server package ...check
CVE-2015-5970The ChangePassword RPC method in Novell ZENworks Configuration ...check
CVE-2015-6004Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before ...check
CVE-2015-6005Multiple cross-site scripting (XSS) vulnerabilities in IPSwitch ...check
CVE-2015-6006The AddUserFinding implementation in Medicomp MEDCIN Engine ...check
CVE-2015-6032Qolsys IQ Panel (aka QOL) before 1.5.1 has hardcoded cryptographic ...check
CVE-2015-6033Qolsys IQ Panel (aka QOL) before 1.5.1 does not verify the digital ...check
CVE-2015-6034EPSON Network Utility 4.10 uses weak permissions (Everyone: Full ...check
CVE-2015-6184The CAttrArray object implementation in Microsoft Internet Explorer 7 ...check
CVE-2015-6312Cisco TelePresence Server 3.1 on 7010, Mobility Services Engine (MSE) ...check
CVE-2015-6313Cisco TelePresence Server 4.1(2.29) through 4.2(4.17) on 7010; ...check
CVE-2015-6323The Admin portal in Cisco Identity Services Engine (ISE) 1.1.x, 1.2.0 ...check
CVE-2015-6330Cross-site request forgery (CSRF) vulnerability in Cisco Prime ...check
CVE-2015-6333Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows ...check
CVE-2015-6334Cisco ASR 5000 and 5500 devices with software 18.0.0.57828 and ...check
CVE-2015-6335The policy implementation in Cisco FireSIGHT Management Center ...check
CVE-2015-6336Cisco Aironet 1800 devices with software 7.2, 7.3, 7.4, 8.1(112.3), ...check
CVE-2015-6337Cross-site scripting (XSS) vulnerability in Cisco Application Policy ...check
CVE-2015-6340The Proxy Mobile IPv6 (PMIPv6) component in the CDMA implementation on ...check
CVE-2015-6341The Web Management GUI on Cisco Wireless LAN Controller (WLC) devices ...check
CVE-2015-6343The SIP implementation in Cisco IOS 15.5(3)M on Cisco Unified Border ...check
CVE-2015-6344The web-based GUI in Cisco Adaptive Security Appliance (ASA) CX ...check
CVE-2015-6345SQL injection vulnerability in the Solution Engine in Cisco Secure ...check
CVE-2015-6346Cross-site scripting (XSS) vulnerability in Cisco Secure Access ...check
CVE-2015-6347The Solution Engine in Cisco Secure Access Control Server (ACS) ...check
CVE-2015-6348The report-generation web interface in the Solution Engine in Cisco ...check
CVE-2015-6349Cross-site scripting (XSS) vulnerability in the web interface in the ...check
CVE-2015-6350SQL injection vulnerability in the web framework in Cisco Prime ...check
CVE-2015-6351Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices ...check
CVE-2015-6352Cisco Unified Communications Domain Manager before 10.6(1) provides ...check
CVE-2015-6353Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...check
CVE-2015-6354Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight ...check
CVE-2015-6355The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A on ...check
CVE-2015-6356Cross-site scripting (XSS) vulnerability in the WeChat page in Cisco ...check
CVE-2015-6361The administrative web interface on Cisco DPC3939 (XB3) devices with ...check
CVE-2015-6362The web GUI in Cisco Connected Grid Network Management System (CG-NMS) ...check
CVE-2015-6363Multiple cross-site scripting (XSS) vulnerabilities in the web ...check
CVE-2015-6364Cisco Content Delivery System Manager Software 3.2 on Videoscape ...check
CVE-2015-6365Cisco IOS 15.2(04)M and 15.4(03)M lets physical-interface ACLs ...check
CVE-2015-6366Cisco IOS 15.2(04)M6 and 15.4(03)S lets physical-interface ACLs ...check
CVE-2015-6367Cisco Aironet 1800 devices with software 8.1(131.0) allow remote ...check
CVE-2015-6368Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower ...check
CVE-2015-6369The USB driver in Cisco Firepower Extensible Operating System ...check
CVE-2015-6370The Management I/O (MIO) component in Cisco Firepower Extensible ...check
CVE-2015-6371Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower ...check
CVE-2015-6372Cross-site scripting (XSS) vulnerability in the web-based management ...check
CVE-2015-6373Cross-site request forgery (CSRF) vulnerability in Cisco Firepower ...check
CVE-2015-6374The web interface in Cisco Firepower Extensible Operating System ...check
CVE-2015-6375The debug-logging (aka debug cns) feature in Cisco Networking Services ...check
CVE-2015-6376Cross-site request forgery (CSRF) vulnerability in Cisco TelePresence ...check
CVE-2015-6377Cisco Virtual Topology System (VTS) 2.0(0) and 2.0(1) allows remote ...check
CVE-2015-6378Cross-site request forgery (CSRF) vulnerability on Cisco DPQ3925 ...check
CVE-2015-6379The XML parser in the management interface in Cisco Adaptive Security ...check
CVE-2015-6380An unspecified script in the web interface in Cisco Firepower ...check
CVE-2015-6382Cisco ASR 5000 devices with software 16.0(900) allow remote attackers ...check
CVE-2015-6383Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software ...check
CVE-2015-6384The Cisco WebEx Meetings application before 8.5.1 for Android ...check
CVE-2015-6385The publish-event event-manager feature in Cisco IOS 15.5(2)S and ...check
CVE-2015-6386The passthrough FTP feature on Cisco Web Security Appliance (WSA) ...check
CVE-2015-6387Cross-site scripting (XSS) vulnerability in Cisco Unified Computing ...check
CVE-2015-6388Cisco Unified Computing System (UCS) Central software 1.3(0.1) allows ...check
CVE-2015-6390Cross-site scripting (XSS) vulnerability in the management interface ...check
CVE-2015-6391Cisco Unified SIP 3905 phones allow remote attackers to cause a denial ...check
CVE-2015-6394The kernel in Cisco NX-OS 5.2(9)N1(1) on Nexus 5000 devices allows ...check
CVE-2015-6395Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not ...check
CVE-2015-6398Cisco Nexus 9000 Application Centric Infrastructure (ACI) Mode ...check
CVE-2015-6399The Supervisor 1.0.0.0 and 1.0.0.1 in Cisco Integrated Management ...check
CVE-2015-6400Multiple cross-site scripting (XSS) vulnerabilities in Cisco Emergency ...check
CVE-2015-6401Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allow remote ...check
CVE-2015-6402Cross-site scripting (XSS) vulnerability in the management interface ...check
CVE-2015-6403The TFTP implementation on Cisco Small Business SPA30x, SPA50x, SPA51x ...check
CVE-2015-6404Cisco Hosted Collaboration Mediation Fulfillment 10.6(3) does not use ...check
CVE-2015-6405Cross-site request forgery (CSRF) vulnerability in Cisco Emergency ...check
CVE-2015-6406Directory traversal vulnerability in the Tools menu in Cisco Emergency ...check
CVE-2015-6407Cisco Emergency Responder 10.5(3.10000.9) allows remote attackers to ...check
CVE-2015-6408Cross-site request forgery (CSRF) vulnerability in Cisco Unity ...check
CVE-2015-6409Cisco Jabber 10.6.x, 11.0.x, and 11.1.x on Windows allows ...check
CVE-2015-6410The Mobile and Remote Access (MRA) services implementation in Cisco ...check
CVE-2015-6411Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides ...check
CVE-2015-6412Cisco Modular Encoding Platform D9036 Software before 02.04.70 has ...check
CVE-2015-6413Cisco TelePresence Video Communication Server (VCS) Expressway X8.6 ...check
CVE-2015-6414Cisco TelePresence Video Communication Server (VCS) X8.6 uses the same ...check
CVE-2015-6415Cisco Unified Computing System (UCS) 2.2(3f)A on Fabric Interconnect ...check
CVE-2015-6416Cross-site scripting (XSS) vulnerability in Cisco Unified Email ...check
CVE-2015-6417Cisco Videoscape Distribution Suite Service Manager (VDS-SM) 3.4.0 and ...check
CVE-2015-6418The random-number generator on Cisco Small Business RV routers 4.x and ...check
CVE-2015-6419Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, ...check
CVE-2015-6420Serialized-object interfaces in certain Cisco Collaboration and Social ...check
CVE-2015-6421cifs-ao in the CIFS optimization functionality on Cisco Wide Area ...check
CVE-2015-6422The self-service application in Cisco Unified Communications Domain ...check
CVE-2015-6423The DCERPC Inspection implementation in Cisco Adaptive Security ...check
CVE-2015-6424The boot manager in Cisco Application Policy Infrastructure Controller ...check
CVE-2015-6425The WebApplications Identity Management subsystem in Cisco Unified ...check
CVE-2015-6426Cisco Prime Network Services Controller 3.0 allows local users to ...check
CVE-2015-6427Cisco FireSIGHT Management Center allows remote attackers to bypass ...check
CVE-2015-6428Cisco DPQ3925 devices with EDVA r1 Base allow remote attackers to ...check
CVE-2015-6429The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 ...check
CVE-2015-6431Cisco IOS XE 16.1.1 allows remote attackers to cause a denial of ...check
CVE-2015-6432Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, ...check
CVE-2015-6433SQL injection vulnerability in Cisco Unified Communications Manager ...check
CVE-2015-6434Cisco Prime Infrastructure does not properly restrict use of IFRAME ...check
CVE-2015-6435An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower ...check
CVE-2015-6467Advantech WebAccess before 8.1 allows remote attackers to execute ...check
CVE-2015-6471Eaton Cooper Power Systems ProView 4.x and 5.x before 5.1 on Form 6 ...check
CVE-2015-6476Advantech EKI-122x-BE devices with firmware before 1.65, EKI-132x ...check
CVE-2015-6477Multiple cross-site scripting (XSS) vulnerabilities in the Wind Farm ...check
CVE-2015-6478Unitronics VisiLogic OPLC IDE before 9.8.02 does not properly restrict ...check
CVE-2015-6479ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, ...check
CVE-2015-6480The MessageBrokerServlet servlet in Moxa OnCell Central Manager before ...check
CVE-2015-6481The login function in the RequestController class in Moxa OnCell ...check
CVE-2015-6482Runtime Toolkit before 2.4.7.48 in 3S-Smart CODESYS before 2.3.9.48 ...check
CVE-2015-64843S-Smart CODESYS Gateway Server before 2.3.9.48 allows remote ...check
CVE-2015-6485Schneider Electric Telvent Sage 2300 RTUs with firmware before ...check
CVE-2015-6486SQL injection vulnerability on Allen-Bradley MicroLogix 1100 devices ...check
CVE-2015-6488Cross-site scripting (XSS) vulnerability in the web server on ...check
CVE-2015-6490Stack-based buffer overflow on Allen-Bradley MicroLogix 1100 devices ...check
CVE-2015-6491Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...check
CVE-2015-6492Allen-Bradley MicroLogix 1100 devices before B FRN 15.000 and 1400 ...check
CVE-2015-6493Cross-site request forgery (CSRF) vulnerability in Infinite Automation ...check
CVE-2015-6494Cross-site scripting (XSS) vulnerability in Infinite Automation Mango ...check
CVE-2015-6507The hdbsql client 1.00.091.00 Build 1418659308-1530 in SAP HANA allows ...check
CVE-2015-6537SQL injection vulnerability in the login page in Epiphany Cardio ...check
CVE-2015-6538The login page in Epiphany Cardio Server 3.3, 4.0, and 4.1 mishandles ...check
CVE-2015-6554Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 ...check
CVE-2015-6555Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP3 ...check
CVE-2015-6556EACommunicatorSrv.exe in the Framework Service in the client in ...check
CVE-2015-6606The Secure Element Evaluation Kit (aka SEEK or SmartCard API) plugin ...check
CVE-2015-6607SQLite before 3.8.9, as used in Android before 5.1.1 LMY48T, allows ...check
CVE-2015-6608mediaserver in Android 5.x before 5.1.1 LMY48X and 6.0 before ...check
CVE-2015-6610libstagefright in Android before 5.1.1 LMY48X and 6.0 before ...check
CVE-2015-6611mediaserver in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6612libmedia in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6613Bluetooth in Android before 5.1.1 LMY48X and 6.0 before 2015-11-01 ...check
CVE-2015-6614Telephony in Android 5.x before 5.1.1 LMY48X allows attackers to gain ...check
CVE-2015-6616mediaserver in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6617Skia, as used in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6618Bluetooth in Android 4.4 and 5.x before 5.1.1 LMY48Z allows ...check
CVE-2015-6619The kernel in Android before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6620libstagefright in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6621SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6622The Native Frameworks Library in Android before 5.1.1 LMY48Z and 6.0 ...check
CVE-2015-6623Wi-Fi in Android 6.0 before 2015-12-01 allows attackers to gain ...check
CVE-2015-6624System Server in Android 6.0 before 2015-12-01 allows attackers to ...check
CVE-2015-6625System Server in Android 6.0 before 2015-12-01 allows attackers to ...check
CVE-2015-6626libstagefright in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6627The Audio component in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6628Media Framework in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6629Wi-Fi in Android 5.x before 5.1.1 LMY48Z allows attackers to obtain ...check
CVE-2015-6630SystemUI in Android 5.x before 5.1.1 LMY48Z and 6.0 before 2015-12-01 ...check
CVE-2015-6631libstagefright in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6632libstagefright in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6633The display drivers in Android before 5.1.1 LMY48Z and 6.0 before ...check
CVE-2015-6634The display drivers in Android before 5.1.1 LMY48Z allow remote ...check
CVE-2015-6636mediaserver in Android 5.x before 5.1.1 LMY49F and 6.0 before ...check
CVE-2015-6637The MediaTek misc-sd driver in Android before 5.1.1 LMY49F and 6.0 ...check
CVE-2015-6638The Imagination Technologies driver in Android 5.x before 5.1.1 LMY49F ...check
CVE-2015-6639The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 ...check
CVE-2015-6640The prctl_set_vma_anon_name function in kernel/sys.c in Android before ...check
CVE-2015-6641Bluetooth in Android 6.0 before 2016-01-01 allows remote attackers to ...check
CVE-2015-6642The kernel in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6643Setup Wizard in Android 5.x before 5.1.1 LMY49F and 6.0 before ...check
CVE-2015-6644Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6645SyncManager in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 ...check
CVE-2015-6646The System V IPC implementation in the kernel in Android before 6.0 ...check
CVE-2015-6647The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 ...check
CVE-2015-6853The Domino web agent in CA Single Sign-On (aka SSO, formerly ...check
CVE-2015-6854The non-Domino web agents in CA Single Sign-On (aka SSO, formerly ...check
CVE-2015-6856Dell Pre-Boot Authentication Driver (PBADRV.sys) 1.0.1.5 allows local ...check
CVE-2015-6861HPE Helion Eucalyptus 3.4.0 through 4.2.0 allows remote authenticated ...check
CVE-2015-6863HPE ArcSight Logger before 6.1P1 allows remote attackers to execute ...check
CVE-2015-6864HPE ArcSight Logger before 6.1P1 allows remote authenticated users to ...check
CVE-2015-6933The VMware Tools HGFS (aka Shared Folders) implementation in VMware ...check
CVE-2015-6934Serialized-object interfaces in VMware vRealize Orchestrator 6.x, ...check
CVE-2015-6980Directory Utility in Apple OS X before 10.11.1 mishandles ...check
CVE-2015-7011WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-7013WebKit, as used in Apple Safari before 9.0.1 and iTunes before 12.3.1, ...check
CVE-2015-7024Untrusted search path vulnerability in Apple OS X before 10.11.1 ...check
CVE-2015-7030The Swift implementation in Apple Xcode before 7.1 mishandles type ...check
CVE-2015-7032The Apple iWork application before 2.6 for iOS, Apple Keynote before ...check
CVE-2015-7033The Apple iWork application before 2.6 for iOS, Apple Keynote before ...check
CVE-2015-7034The Apple iWork application before 2.6 for iOS and Apple Pages before ...check
CVE-2015-7035Apple Mac EFI before 2015-002, as used in OS X before 10.11.1 and ...check
CVE-2015-7049otools in Apple Xcode before 7.2 allows local users to gain privileges ...check
CVE-2015-7056IDE SCM in Apple Xcode before 7.2 does not recognize .gitignore files, ...check
CVE-2015-7057otools in Apple Xcode before 7.2 allows local users to gain privileges ...check
CVE-2015-7082Multiple unspecified vulnerabilities in Git before 2.5.4, as used in ...check
CVE-2015-7104WebKit in Apple Safari before 9.0.2 and tvOS before 9.1 allows remote ...check
CVE-2015-7115libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before ...check
CVE-2015-7116libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before ...check
CVE-2015-7216The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...Check gdk-pixbuf
CVE-2015-7217The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux ...Check gdk-pixbuf
CVE-2015-7242Cross-site scripting (XSS) vulnerability in the Push-Service-Mails ...check
CVE-2015-7244The default configuration of the server in MobaXterm before 8.3 has a ...check
CVE-2015-7253The Web Console in Commvault Edge Server 10 R2 allows remote attackers ...check
CVE-2015-7254Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s ...check
CVE-2015-7261The FTP service in QNAP iArtist Lite before 1.4.54, as distributed ...check
CVE-2015-7262QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage ...check
CVE-2015-7277The web administration interface on Amped Wireless R10000 devices with ...check
CVE-2015-7278Cross-site request forgery (CSRF) vulnerability on Amped Wireless ...check
CVE-2015-7279Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper ...check
CVE-2015-7280The web administration interface on ReadyNet WRT300N-DD devices with ...check
CVE-2015-7281Cross-site request forgery (CSRF) vulnerability on ReadyNet WRT300N-DD ...check
CVE-2015-7282ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source ...check
CVE-2015-7283The web administration interface on ZyXEL NBG-418N devices with ...check
CVE-2015-7284Cross-site request forgery (CSRF) vulnerability on ZyXEL NBG-418N ...check
CVE-2015-7285CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 do ...check
CVE-2015-7286CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 rely ...check
CVE-2015-7287CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 use ...check
CVE-2015-7288CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 ...check
CVE-2015-7289Arris DG860A, TG862A, and TG862G devices with firmware ...check
CVE-2015-7290Cross-site scripting (XSS) vulnerability in adv_pwd_cgi in the web ...check
CVE-2015-7291Cross-site request forgery (CSRF) vulnerability in adv_pwd_cgi in the ...check
CVE-2015-7299SQL injection vulnerability in Runtime/Runtime/AjaxCall.ashx in K2 ...check
CVE-2015-7309The theme editor in Bolt before 2.2.5 does not check the file ...check
CVE-2015-7330Puppet Enterprise 2015.3 before 2015.3.1 allows remote attackers to ...check
CVE-2015-7362Fortinet FortiClient Linux SSLVPN before build 2313, when installed on ...check
CVE-2015-7378Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the ...check
CVE-2015-7411The portal client in IBM Tivoli Monitoring (ITM) 6.2.2 through FP9, ...check
CVE-2015-7446Cross-site request forgery (CSRF) vulnerability in IBM Flash System ...check
CVE-2015-7448SQL injection vulnerability in IBM Maximo Asset Management 7.1 through ...check
CVE-2015-7454Business Space in IBM WebSphere Process Server 6.1.2.0 through 7.0.0.5 ...check
CVE-2015-7496GNOME Display Manager (gdm) before 3.18.2 allows physically proximate ...Check whether applies to wheezy/jessie
CVE-2015-7501java unserialisation issuesdouble-check this CVE assignment, since it has been said earlier on oss-security that it would not get a CVE
CVE-2015-7515The aiptek_probe function in drivers/input/tablet/aiptek.c in the ...check other versions
CVE-2015-7542Uses outdated bundled CA certificatesThe fix should be easy to cherry-picked for a fix in wheezy
CVE-2015-7551The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby ...check correctness for CVE-2009-5147/CVE-2015-7551 record since affects multiple ruby versions
CVE-2015-7552Heap-based buffer overflow in the gdk_pixbuf_flip function in ...check versions, confirmed on jessie
CVE-2015-7575Mozilla Network Security Services (NSS) before 3.20.2, as used in ...check other possible affected libraries (PolarSSL/mbedTLS, ...)
CVE-2015-7856OpenNMS has a default password of rtc for the rtc account, which makes ...check
CVE-2015-7865nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA ...check
CVE-2015-7866Unquoted Windows search path vulnerability in the Smart Maximize ...check
CVE-2015-7921The FTP server in Pro-face GP-Pro EX EX-ED before 4.05.000, PFXEXEDV ...check
CVE-2015-7999Multiple SQL injection vulnerabilities in the Administration Web UI ...check
CVE-2015-8021Incomplete blacklist vulnerability in the Configuration utility in F5 ...check
CVE-2015-8105Cross-site scripting (XSS) vulnerability in program/js/app.js in ...The link in the previous line is broken. Please, consider replacing it. Error: 404
CVE-2015-8108The management interface in LenovoEMC EZ Media & Backup (hm3), ...check
CVE-2015-8152Cross-site request forgery (CSRF) vulnerability in Symantec Endpoint ...check
CVE-2015-8153SQL injection vulnerability in Symantec Endpoint Protection Manager ...check
CVE-2015-8154The SysPlant.sys driver in the Application and Device Control (ADC) ...check
CVE-2015-8158Potential Infinite Loop in ntpqcheck
CVE-2015-8240The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM, AFM, ...check
CVE-2015-8304Integer overflow in Huawei P7 phones with software before P7-L07 ...check
CVE-2015-8305Huawei Sophia-L10 smartphones with software before P7-L10C900B852 ...check
CVE-2015-8307The Graphics driver in Huawei P8 smartphones with software GRA-TL00 ...check
CVE-2015-8318Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones ...check
CVE-2015-8319Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones ...check
CVE-2015-8336Huawei FusionCompute with software before V100R005C10SPC700 allows ...check
CVE-2015-8366Index overflow in smal_decode_segmentdouble check introducing commit and related packages
CVE-2015-8376Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS ...check
CVE-2015-8379CakePHP 2.x and 3.x before 3.1.5 might allow remote attackers to ...check
CVE-2015-8380The pcre_exec function in pcre_exec.c in PCRE before 8.38 mishandles a ...double-check wheezy version
CVE-2015-8519Buffer overflow in the server in IBM Tivoli Storage Manager FastBack ...check
CVE-2015-8520Buffer overflow in the server in IBM Tivoli Storage Manager FastBack ...check
CVE-2015-8521Buffer overflow in the server in IBM Tivoli Storage Manager FastBack ...check
CVE-2015-8522Buffer overflow in the server in IBM Tivoli Storage Manager FastBack ...check
CVE-2015-8523The server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before ...check
CVE-2015-8606Multiple cross-site scripting (XSS) vulnerabilities in SilverStripe ...check
CVE-2015-8620Heap-based buffer overflow in the Avast virtualization driver ...check
CVE-2015-8668Heap-based buffer overflow in the PackBitsPreEncode function in ...check
CVE-2015-8679The (1) ION and (2) Maxim_smartpa_dev drivers in Huawei P8 smartphones ...check
CVE-2015-8680The Graphics driver in Huawei P8 smartphones with software GRA-TL00 ...check
CVE-2015-8681The ovisp driver in Huawei P8 smartphones with software GRA-TL00 ...check
CVE-2015-8682The Video0 driver in Huawei P8 smartphones with software GRA-UL00 ...check
CVE-2015-8795Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in ...check
CVE-2015-8796Cross-site scripting (XSS) vulnerability in ...check
CVE-2015-8797Cross-site scripting (XSS) vulnerability in ...check
CVE-2015-8817check again after the CVE id split
CVE-2015-8818check again after the CVE id split
CVE-2015-8823Use-after-free vulnerability in the TextField object implementation in ...check
CVE-2016-0088Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and ...check
CVE-2016-0089Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and ...check
CVE-2016-0090Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows ...check
CVE-2016-0122Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 ...check
CVE-2016-0166Microsoft Internet Explorer 11 allows remote attackers to execute ...check
CVE-2016-0208IBM WebSphere Commerce 6.x through 6.0.0.11, 7.x through 7.0.0.9, and ...check
CVE-2016-0211IBM DB2 9.7 through FP11, 9.8, 10.1 through FP5, and 10.5 through FP7 ...check
CVE-2016-0222IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote ...check
CVE-2016-0226The client implementation in IBM Informix Dynamic Server 11.70.xCn on ...check
CVE-2016-0262Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...check
CVE-2016-0283Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) ...check
CVE-2016-0289shiprec.xml in the SHIPREC application in IBM Maximo Asset Management ...check
CVE-2016-0407Unspecified vulnerability in the PeopleSoft Enterprise HCM component ...check
CVE-2016-0408Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-0468Unspecified vulnerability in the Oracle Business Intelligence ...check
CVE-2016-0479Unspecified vulnerability in the Oracle Business Intelligence ...check
CVE-2016-0638Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-0671Unspecified vulnerability in the Oracle HTTP Server component in ...check
CVE-2016-0675Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-0677Unspecified vulnerability in the RDBMS Security component in Oracle ...check
CVE-2016-0679Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-0680Unspecified vulnerability in the PeopleSoft Enterprise SCM component ...check
CVE-2016-0681Unspecified vulnerability in the Oracle OLAP component in Oracle ...check
CVE-2016-0683Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-0685Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-0688Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-0690Unspecified vulnerability in the RDBMS Security component in Oracle ...check
CVE-2016-0691Unspecified vulnerability in the RDBMS Security component in Oracle ...check
CVE-2016-0696Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-0697Unspecified vulnerability in the Oracle Application Object Library ...check
CVE-2016-0698Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-0700Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-0711Multiple cross-site scripting (XSS) vulnerabilities in Apache Jetspeed ...check
CVE-2016-0712Cross-site scripting (XSS) vulnerability in Apache Jetspeed before ...check
CVE-2016-0726check, possibly only Fedora specific
CVE-2016-0737OpenStack Object Storage (Swift) before 2.4.0 does not properly close ...check, not exaclty clear if it really only was introduced in 2.2.1
CVE-2016-0738OpenStack Object Storage (Swift) before 2.3.1 (Kilo), 2.4.x, and 2.5.x ...check
CVE-2016-0741slapd/connection.c in 389 Directory Server (formerly Fedora Directory ...check older versions
CVE-2016-0785Apache Struts 2.x before 2.3.28 allows remote attackers to execute ...check, possibly only 2.x
CVE-2016-0803libstagefright in mediaserver in Android 4.x before 4.4.4, 5.x before ...check
CVE-2016-0804The NuPlayer::GenericSource::notifyPreparedAndCleanup function in ...check
CVE-2016-0805The performance event manager for Qualcomm ARM processors in Android ...check
CVE-2016-0807The get_build_id function in elf_utils.cpp in Debuggerd in Android 6.x ...check
CVE-2016-0808Integer overflow in the getCoverageFormat12 function in ...check
CVE-2016-0809Use-after-free vulnerability in the wifi_cleanup function in ...check
CVE-2016-0810media/libmedia/SoundPool.cpp in mediaserver in Android 4.x before ...check
CVE-2016-0811Integer overflow in the BnCrypto::onTransact function in ...check
CVE-2016-0812The interceptKeyBeforeDispatching function in ...check
CVE-2016-0813packages/SystemUI/src/com/android/systemui/recents/AlternateRecentsComponent.java ...check
CVE-2016-0815The MPEG4Source::fragmentedRead function in MPEG4Extractor.cpp in ...check
CVE-2016-0816mediaserver in Android 6.x before 2016-03-01 allows remote attackers ...check
CVE-2016-0818The caching functionality in the TrustManagerImpl class in ...check
CVE-2016-0819The Qualcomm performance component in Android 4.x before 4.4.4, 5.x ...check
CVE-2016-0820The MediaTek Wi-Fi kernel driver in Android 6.0.1 before 2016-03-01 ...check
CVE-2016-0822The MediaTek connectivity kernel driver in Android 6.0.1 before ...check
CVE-2016-0824libmpeg2 in libstagefright in Android 6.x before 2016-03-01 allows ...check
CVE-2016-0825The Widevine Trusted Application in Android 6.0.1 before 2016-03-01 ...check
CVE-2016-0826libcameraservice in mediaserver in Android 4.x before 4.4.4, 5.x ...check
CVE-2016-0827Multiple integer overflows in libeffects in mediaserver in Android 4.x ...check
CVE-2016-0828The BnGraphicBufferConsumer::onTransact function in ...check
CVE-2016-0829The BnGraphicBufferProducer::onTransact function in ...check
CVE-2016-0830btif_config.c in Bluetooth in Android 6.x before 2016-03-01 allows ...check
CVE-2016-0831The getDeviceIdForPhone function in ...check
CVE-2016-0832Setup Wizard in Android 5.1.x before LMY49H and 6.x before 2016-03-01 ...check
CVE-2016-0834An unspecified media codec in mediaserver in Android 6.x before ...check
CVE-2016-0835decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before ...check
CVE-2016-0836Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in ...check
CVE-2016-0837MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x ...check
CVE-2016-0838Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before ...check
CVE-2016-0839post_proc/volume_listener.c in mediaserver in Android 6.x before ...check
CVE-2016-0840Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c ...check
CVE-2016-0841media/libmedia/mediametadataretriever.cpp in mediaserver in Android ...check
CVE-2016-0842The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 ...check
CVE-2016-0843The Qualcomm ARM processor performance-event manager in Android 4.x ...check
CVE-2016-0844The Qualcomm RF driver in Android 6.x before 2016-04-01 does not ...check
CVE-2016-0846libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x ...check
CVE-2016-0847The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-0848Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x ...check
CVE-2016-0849Multiple integer overflows in minzip/SysUtil.c in the Recovery ...check
CVE-2016-0850The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before ...check
CVE-2016-0871Eaton Lighting EG2 Web Control 4.04P and earlier allows remote ...check
CVE-2016-0887EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x and 4.1.x before 4.1.5, ...check
CVE-2016-0889An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual ...check
CVE-2016-1006Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1011Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 ...check
CVE-2016-1012Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1013Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 ...check
CVE-2016-1014Untrusted search path vulnerability in Adobe Flash Player before ...check
CVE-2016-1015Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1016Use-after-free vulnerability in the Transform object implementation in ...check
CVE-2016-1017Use-after-free vulnerability in the LoadVars.decode function in Adobe ...check
CVE-2016-1018Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 ...check
CVE-2016-1019Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to ...check
CVE-2016-1020Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1021Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1022Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1023Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1024Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1025Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1026Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1027Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1028Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1029Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1030Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1031Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 ...check
CVE-2016-1032Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1033Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before ...check
CVE-2016-1034The Sync Process in the JavaScript API for Creative Cloud Libraries in ...check
CVE-2016-1035Adobe RoboHelp Server 9 before 9.0.1 mishandles SQL queries, which ...check
CVE-2016-1036Cross-site scripting (XSS) vulnerability in Adobe Analytics ...check
CVE-2016-1111Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, ...check
CVE-2016-1160Cross-site scripting (XSS) vulnerability in the WP Favorite Posts ...check
CVE-2016-1167Cross-site request forgery (CSRF) vulnerability on NEC Aterm WG300HP ...check
CVE-2016-1168Cross-site request forgery (CSRF) vulnerability on NEC Aterm WF800HP ...check
CVE-2016-1169Cross-site scripting (XSS) vulnerability in the Casebook plugin before ...check
CVE-2016-1170Cross-site request forgery (CSRF) vulnerability in the Casebook plugin ...check
CVE-2016-1171Cross-site scripting (XSS) vulnerability in the Recruit plugin before ...check
CVE-2016-1172Cross-site request forgery (CSRF) vulnerability in the Recruit plugin ...check
CVE-2016-1173Cross-site scripting (XSS) vulnerability in the Menubook plugin before ...check
CVE-2016-1174Cross-site request forgery (CSRF) vulnerability in the Menubook plugin ...check
CVE-2016-1175Cross-site request forgery (CSRF) vulnerability in AQUOS Photo Player ...check
CVE-2016-1176Buffer overflow in the ActiveX control in Sharp EVA Animeter allows ...check
CVE-2016-1177The management screen in Falcon WisePoint 4.3.1 and earlier and ...check
CVE-2016-1180Cross-site scripting (XSS) vulnerability in the Cyber-Will ...check
CVE-2016-1185The Cybozu kintone mobile application 1.x before 1.0.6 for Android ...check
CVE-2016-1199The login page in the management screen in LOCKON EC-CUBE 3.0.0 ...check
CVE-2016-1200The management screen in LOCKON EC-CUBE 3.0.7 through 3.0.9 allows ...check
CVE-2016-1201Cross-site request forgery (CSRF) vulnerability in LOCKON EC-CUBE ...check
CVE-2016-1202Untrusted search path vulnerability in Atom Electron before 0.33.5 ...check
CVE-2016-1205Cross-site scripting (XSS) vulnerability in the shiro8 (1) ...check
CVE-2016-1264Race condition in the Op command in Juniper Junos OS before ...check
CVE-2016-1267Race condition in the RPC functionality in Juniper Junos OS before ...check
CVE-2016-1268The administrative web services interface in Juniper ScreenOS before ...check
CVE-2016-1269Juniper Junos OS before 12.1X44-D60, 12.1X46 before 12.1X46-D40, ...check
CVE-2016-1270The rpd daemon in Juniper Junos OS before 12.1X44-D60, 12.1X46 before ...check
CVE-2016-1271Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 ...check
CVE-2016-1273Juniper Junos OS before 13.2X51-D40, 14.x before 14.1X53-D30, and 15.x ...check
CVE-2016-1274Juniper Junos OS 14.1X53 before 14.1X53-D30 on QFX Series switches ...check
CVE-2016-1290The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and ...check
CVE-2016-1291Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved ...check
CVE-2016-1313Cisco UCS Invicta C3124SA Appliance 4.3.1 through 5.0.1, UCS Invicta ...check
CVE-2016-1339Cisco Unified Computing System (UCS) Platform Emulator 2.5(2)TS4, ...check
CVE-2016-1340Heap-based buffer overflow in Cisco Unified Computing System (UCS) ...check
CVE-2016-1343The XML parser in Cisco Information Server (CIS) 6.2 allows remote ...check
CVE-2016-1346The kernel in Cisco TelePresence Server 3.0 through 4.2(4.18) on ...check
CVE-2016-1362Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless ...check
CVE-2016-1363Buffer overflow in the redirection functionality in Cisco Wireless LAN ...check
CVE-2016-1364Cisco Wireless LAN Controller (WLC) Software 7.4 before 7.4.130.0(MD) ...check
CVE-2016-1367The DHCPv6 relay implementation in Cisco Adaptive Security Appliance ...check
CVE-2016-1384The NTP implementation in Cisco IOS 15.1 and 15.5 and IOS XE 3.2 ...check
CVE-2016-1386The API in Cisco Application Policy Infrastructure Controller ...check
CVE-2016-1389Open redirect vulnerability in Cisco WebEx Meetings Server (CWMS) 2.6 ...check
CVE-2016-1547check
CVE-2016-1548check
CVE-2016-1549check
CVE-2016-1550check
CVE-2016-1551check
CVE-2016-1563NetApp Clustered Data ONTAP 8.3.1 does not properly verify X.509 ...check
CVE-2016-1593Directory traversal vulnerability in the import users feature in Micro ...check
CVE-2016-1594Micro Focus Novell Service Desk before 7.2 allows remote authenticated ...check
CVE-2016-1595LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in ...check
CVE-2016-1596Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus ...check
CVE-2016-1599Cross-site scripting (XSS) vulnerability in NetIQ Self Service ...check
CVE-2016-1621libvpx in mediaserver in Android 4.x before 4.4.4, 5.x before 5.1.1 ...check
CVE-2016-1732AppleRAID in Apple OS X before 10.11.4 allows local users to obtain ...check
CVE-2016-1733AppleRAID in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1734AppleUSBNetworking in Apple iOS before 9.3 and OS X before 10.11.4 ...check
CVE-2016-1735Bluetooth in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1736Bluetooth in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1737Carbon in Apple OS X before 10.11.4 allows remote attackers to execute ...check
CVE-2016-1738dyld in Apple OS X before 10.11.4 allows attackers to bypass a ...check
CVE-2016-1740FontParser in Apple iOS before 9.3, OS X before 10.11.4, tvOS before ...check
CVE-2016-1741The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X ...check
CVE-2016-1743The Intel driver in the Graphics Drivers subsystem in Apple OS X ...check
CVE-2016-1744The Intel driver in the Graphics Drivers subsystem in Apple OS X ...check
CVE-2016-1745IOFireWireFamily in Apple OS X before 10.11.4 allows local users to ...check
CVE-2016-1746IOGraphics in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1747IOGraphics in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1748IOHIDFamily in Apple iOS before 9.3, OS X before 10.11.4, tvOS before ...check
CVE-2016-1749IOUSBFamily in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1750Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS ...check
CVE-2016-1751The kernel in Apple iOS before 9.3, tvOS before 9.2, and watchOS ...check
CVE-2016-1752The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before ...check
CVE-2016-1753Multiple integer overflows in the kernel in Apple iOS before 9.3, OS X ...check
CVE-2016-1754The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before ...check
CVE-2016-1755The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before ...check
CVE-2016-1756The kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows ...check
CVE-2016-1757Race condition in the kernel in Apple iOS before 9.3 and OS X before ...check
CVE-2016-1758The kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows ...check
CVE-2016-1759The kernel in Apple OS X before 10.11.4 allows attackers to execute ...check
CVE-2016-1760The XPC Services API in LaunchServices in Apple iOS before 9.3 allows ...check
CVE-2016-1761libxml2 in Apple iOS before 9.3, OS X before 10.11.4, and watchOS ...check
CVE-2016-1762libxml2 in Apple iOS before 9.3, OS X before 10.11.4, Safari before ...check
CVE-2016-1763Messages in Apple iOS before 9.3 does not ensure that an auto-fill ...check
CVE-2016-1764The Content Security Policy (CSP) implementation in Messages in Apple ...check
CVE-2016-1765otool in Apple Xcode before 7.3 allows local users to gain privileges ...check
CVE-2016-1766The Profiles component in Apple iOS before 9.3 does not properly ...check
CVE-2016-1767QuickTime in Apple OS X before 10.11.4 allows remote attackers to ...check
CVE-2016-1768QuickTime in Apple OS X before 10.11.4 allows remote attackers to ...check
CVE-2016-1769QuickTime in Apple OS X before 10.11.4 allows remote attackers to ...check
CVE-2016-1770The Reminders component in Apple OS X before 10.11.4 allows attackers ...check
CVE-2016-1771The Downloads feature in Apple Safari before 9.1 mishandles file ...check
CVE-2016-1772The Top Sites feature in Apple Safari before 9.1 mishandles cookie ...check
CVE-2016-1773The code-signing subsystem in Apple OS X before 10.11.4 does not ...check
CVE-2016-1774The Time Machine server in Server App in Apple OS X Server before 5.1 ...check
CVE-2016-1775TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS ...check
CVE-2016-1776Web Server in Apple OS X Server before 5.1 does not properly restrict ...check
CVE-2016-1777Web Server in Apple OS X Server before 5.1 supports the RC4 algorithm, ...check
CVE-2016-1778WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote ...check
CVE-2016-1779WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote ...check
CVE-2016-1780WebKit in Apple iOS before 9.3 does not prevent hidden web views from ...check
CVE-2016-1781WebKit in Apple iOS before 9.3 and Safari before 9.1 mishandles ...check
CVE-2016-1782WebKit in Apple iOS before 9.3 and Safari before 9.1 does not properly ...check
CVE-2016-1783WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 ...check
CVE-2016-1784The History implementation in WebKit in Apple iOS before 9.3, Safari ...check
CVE-2016-1785The Page Loading implementation in WebKit in Apple iOS before 9.3 and ...check
CVE-2016-1786The Page Loading implementation in WebKit in Apple iOS before 9.3 and ...check
CVE-2016-1787Wiki Server in Apple OS X Server before 5.1 allows remote attackers to ...check
CVE-2016-1788Messages in Apple iOS before 9.3, OS X before 10.11.4, and watchOS ...check
CVE-2016-1789Apple iBooks Author before 2.4.1 allows remote attackers to read ...check
CVE-2016-1897FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and ...Recheck, the issue might be fixed incompletely, cf. #811519
CVE-2016-1916Cross-site scripting (XSS) vulnerability in the Management Console in ...check
CVE-2016-1917Cross-site scripting (XSS) vulnerability in the Management Console in ...check
CVE-2016-1918Cross-site scripting (XSS) vulnerability in the Management Console in ...check
CVE-2016-1979Use-after-free vulnerability in the ...check if really fixed already in 3.21 upstream or only in 3.21.1
CVE-2016-2052Multiple unspecified vulnerabilities in HarfBuzz before 1.0.6, as used ...check stable/oldstable
CVE-2016-2076Client Integration Plugin (CIP) in VMware vCenter Server 5.5 U3a, U3b, ...check
CVE-2016-2097Directory traversal vulnerability in Action View in Ruby on Rails ...check, for src:rails should actually not be affected since original patch complete
CVE-2016-2162Apache Struts 2.x before 2.3.25 does not sanitize text in the Locale ...check, possibly only 2.x
CVE-2016-2202The Inventory Solution component in the Management Agent in the client ...check
CVE-2016-2203The management console on Symantec Messaging Gateway (SMG) Appliance ...check
CVE-2016-2204The management console on Symantec Messaging Gateway (SMG) Appliance ...check
CVE-2016-2212The getOrderByStatusUrlKey function in the Mage_Rss_Helper_Order class ...check
CVE-2016-2224denial of service while parsing compressed itemsThe link in the previous line is broken. Please, consider replacing it. Error: 404
CVE-2016-2225crafted packet will make the parser terminate earlyThe link in the previous line is broken. Please, consider replacing it. Error: 404
CVE-2016-2272Eaton Lighting EG2 Web Control 4.04P and earlier allows remote ...check
CVE-2016-2277IAB.exe in Rockwell Automation Integrated Architecture Builder (IAB) ...check
CVE-2016-2280Buffer overflow in RDISERVER in Honeywell Uniformance Process History ...check
CVE-2016-2281Untrusted search path vulnerability in ABB Panel Builder 800 5.1 ...check
CVE-2016-2289Directory traversal vulnerability in ICONICS WebHMI 9 and earlier ...check
CVE-2016-2293The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and ...check
CVE-2016-2294The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and ...check
CVE-2016-2317check other versions (newest 1.3.23 is vulnerable according to reporter)
CVE-2016-2318check other versions (newest 1.3.23 is vulnerable according to reporter)
CVE-2016-2331The web interface on SysLINK SL-1000 Machine-to-Machine (M2M) Modular ...check
CVE-2016-2332flu.cgi in the web interface on SysLINK SL-1000 Machine-to-Machine ...check
CVE-2016-2333SysLINK SL-1000 Machine-to-Machine (M2M) Modular Gateway devices with ...check
CVE-2016-2340The AMF framework in Granite Data Services 3.1.1-SNAPSHOT allows ...check
CVE-2016-2346Allround Automations PL/SQL Developer 11 before 11.0.6 relies on ...check
CVE-2016-2393Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before ...check
CVE-2016-2405Huawei Policy Center with software before V100R003C10SPC020 allows ...check
CVE-2016-2409A Texas Instruments (TI) haptic kernel driver in Android 6.x before ...check
CVE-2016-2410A Qualcomm video kernel driver in Android 6.x before 2016-04-01 allows ...check
CVE-2016-2411A Qualcomm Power Management kernel driver in Android 6.x before ...check
CVE-2016-2412include/core/SkPostConfig.h in Skia, as used in System_server in ...check
CVE-2016-2413media/libmedia/IOMX.cpp in mediaserver in Android 5.0.x before 5.0.2, ...check
CVE-2016-2414The Minikin library in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, ...check
CVE-2016-2415exchange/eas/EasAutoDiscover.java in the Autodiscover implementation ...check
CVE-2016-2416libs/gui/BufferQueueConsumer.cpp in mediaserver in Android 4.x before ...check
CVE-2016-2417media/libmedia/IOMX.cpp in mediaserver in Android 4.x before 4.4.4, ...check
CVE-2016-2418media/libmedia/IOMX.cpp in mediaserver in Android 6.x before ...check
CVE-2016-2419media/libmedia/IDrm.cpp in mediaserver in Android 6.x before ...check
CVE-2016-2420rootdir/init.rc in Android 4.x before 4.4.4 does not ensure that the ...check
CVE-2016-2421Setup Wizard in Android 5.1.x before 5.1.1 and 6.x before 2016-04-01 ...check
CVE-2016-2422Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before ...check
CVE-2016-2423server/telecom/CallsManager.java in Telephony in Android 4.x before ...check
CVE-2016-2424server/content/SyncStorageEngine.java in SyncStorageEngine in Android ...check
CVE-2016-2425mail/compose/ComposeActivity.java in AOSP Mail in Android 4.x before ...check
CVE-2016-2426server/content/ContentService.java in the Framework component in ...check
CVE-2016-2427asn1/cms/GCMParameters.java in the Bouncy Castle Crypto APIs 1.54 for ...check
CVE-2016-2516check
CVE-2016-2517check
CVE-2016-2518check
CVE-2016-2519check
CVE-2016-2556The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2557The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2558The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU ...check
CVE-2016-2785incorrect URL decodingcheck versions, fixed in Puppet 4.4.2, possibly only 4.x
CVE-2016-2853The aufs module for the Linux kernel 3.x and 4.x does not properly ...doublecheck with Ben, aufs is available as udebs, but not as a standard kernel module (possibly only in use for live images)
CVE-2016-2854The aufs module for the Linux kernel 3.x and 4.x does not properly ...doublecheck with Ben, aufs is available as udebs, but not as a standard kernel module (possibly only in use for live images)
CVE-2016-3071Libreswan 3.16 might allow remote attackers to cause a denial of ...check other implementations
CVE-2016-3074Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or ...check (texlive, libwmf)
CVE-2016-3078integer overflow in ZipArchive::getFrom*check other php versions if affected
CVE-2016-3081Apache Struts 2.x before 2.3.20.2, 2.3.24.x before 2.3.24.2, and ...check
CVE-2016-3082XSLTResult in Apache Struts 2.x before 2.3.20.2, 2.3.24.x before ...check
CVE-2016-3126Cross-site scripting (XSS) vulnerability in the Management Console in ...check
CVE-2016-3182Heap Corruption in opj_free functioncheck, possibly as well src:openjpeg
CVE-2016-3187The Prepopulate module 7.x-2.x before 7.x-2.1 for Drupal allows remote ...check
CVE-2016-3188The _prepopulate_request_walk function in the Prepopulate module ...check
CVE-2016-3190The fill_xrgb32_lerp_opaque_spans function in cairo-image-compositor.c ...check indigo and texlive-bin enbedding it
CVE-2016-3416Unspecified vulnerability in the Oracle WebLogic Server component in ...check
CVE-2016-3417Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-3420Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2016-3421Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-3423Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-3428Unspecified vulnerability in the Oracle Agile Engineering Data ...check
CVE-2016-3431Unspecified vulnerability in the Oracle Agile PLM component in Oracle ...check
CVE-2016-3434Unspecified vulnerability in the Oracle Application Object Library ...check
CVE-2016-3435Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-3436Unspecified vulnerability in the Oracle Common Applications Calendar ...check
CVE-2016-3437Unspecified vulnerability in the Oracle CRM Wireless component in ...check
CVE-2016-3438Unspecified vulnerability in the Oracle Configurator component in ...check
CVE-2016-3439Unspecified vulnerability in the Oracle CRM Wireless component in ...check
CVE-2016-3442Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools ...check
CVE-2016-3447Unspecified vulnerability in the Oracle Applications Framework ...check
CVE-2016-3454Unspecified vulnerability in the Java VM component in Oracle Database ...check
CVE-2016-3455Unspecified vulnerability in the Oracle Outside In Technology ...check
CVE-2016-3456Unspecified vulnerability in the Oracle Complex Maintenance, Repair, ...check
CVE-2016-3457Unspecified vulnerability in the PeopleSoft Enterprise HCM ...check
CVE-2016-3460Unspecified vulnerability in the PeopleSoft Enterprise HCM component ...check
CVE-2016-3461Unspecified vulnerability in the MySQL Enterprise Monitor component in ...check
CVE-2016-3463Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...check
CVE-2016-3464Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking ...check
CVE-2016-3466Unspecified vulnerability in the Oracle Field Service component in ...check
CVE-2016-3624Out-of-bounds Write occurred in function cvtClump in rgb2ycbcrcheck
CVE-2016-3628Buffer overflow in tibemsd in the server in TIBCO Enterprise Message ...check
CVE-2016-3654The device management command line interface (CLI) in Palo Alto ...check
CVE-2016-3655The management web interface in Palo Alto Networks PAN-OS before ...check
CVE-2016-3656The GlobalProtect Portal in Palo Alto Networks PAN-OS before 5.0.18, ...check
CVE-2016-3657Buffer overflow in the GlobalProtect Portal in Palo Alto Networks ...check
CVE-2016-3658Illegal read occurs in the TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c when using tiffset commandcheck
CVE-2016-3688SQL injection vulnerability in dotCMS before 3.5 allows remote ...check
CVE-2016-3697privilege escalation via confusion of usernames and UIDscheck
CVE-2016-3711Setting cookie containing internal IP address of a podcheck
CVE-2016-3943Panda Endpoint Administration Agent before 7.50.00, as used in Panda ...check
CVE-2016-3945Out-of-bounds Write in the tiff2rgba toolcheck
CVE-2016-3948Squid 3.x before 3.5.16 and 4.x before 4.0.8 improperly perform bounds ...check src:squid, possibly as wel not-affected since CVE-2016-2569 was as well
CVE-2016-3971Cross-site scripting (XSS) vulnerability in lucene_search.jsp in ...check
CVE-2016-3972Directory traversal vulnerability in the dotTailLogServlet in dotCMS ...check
CVE-2016-4003Cross-site scripting (XSS) vulnerability in the URLDecoder function in ...check, possibly only 2.x
CVE-2016-4040SQL injection vulnerability in the Workflow Screen in dotCMS before ...check
CVE-2016-4052Multiple stack-based buffer overflows in Squid 3.x before 3.5.17 and ...check
CVE-2016-4053Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to ...check
CVE-2016-4054Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows ...check
CVE-2016-4478denial of service due to a buffer overflow in the XMLRPC response encoding codecheck
TEMP-0000000-0FC87DHeap-based buffer overread in xmlNextCharcheck versions, upstream but not yet public open but referenced in commit
TEMP-0000000-0FC87DHeap-based buffer overread in xmlNextCharvtk6, paraview, opencollada, xdmf, gettext appear to include the affected code
TEMP-0000000-3815A2Avoid unbounded SFTP extended attribute key/valuescheck
TEMP-0000000-9FAB83Kodi Cross-Site Request Forgerycheck kodi
TEMP-0000000-CD9D84Cross Site Request Forgery / Code Executioncheck
TEMP-0000000-EBC4D4EncryptedType uses static IV per keycheck
TEMP-0000000-FDAC72denial of service flaw in MIFF file processingThe link in the previous line is broken. Please, consider replacing it. Error: Name or service not known
TEMP-0760455-22ED59install-sh: insecure use of /tmpcheck other automake versions
TEMP-0803223-1A1108buffer overflow with handling pop3_deleted_flag settingThe link in the previous line is broken. Please, consider replacing it. Error: 404
TEMP-0816154-3134AEDouble free or corruption in zcatcheck

Search for package or bug name: Reporting problems