CVE-2016-3070
- EPSS 0.42%
- Veröffentlicht 06.08.2016 20:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The trace_writeback_dirty_page implementation in include/trace/events/writeback.h in the Linux kernel before 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash)...
CVE-2016-3822
- EPSS 1.27%
- Veröffentlicht 05.08.2016 20:59:10
- Zuletzt bearbeitet 06.05.2026 22:30:45
exif.c in Matthias Wandel jhead 2.87, as used in libjhead in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-08-01, allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds ac...
CVE-2016-6186
- EPSS 5.54%
- Veröffentlicht 05.08.2016 15:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
Cross-site scripting (XSS) vulnerability in the dismissChangeRelatedObjectPopup function in contrib/admin/static/admin/js/admin/RelatedObjectLookups.js in Django before 1.8.14, 1.9.x before 1.9.8, and 1.10.x before 1.10rc1 allows remote attackers to ...
CVE-2016-5403
- EPSS 0.52%
- Veröffentlicht 02.08.2016 16:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
The virtqueue_pop function in hw/virtio/virtio.c in QEMU allows local guest OS administrators to cause a denial of service (memory consumption and QEMU process crash) by submitting requests without waiting for completion.
CVE-2016-6185
- EPSS 0.79%
- Veröffentlicht 02.08.2016 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which might allow local users to execute arbitrary code via a Trojan horse library under the current working directory.
CVE-2016-1238
- EPSS 0.78%
- Veröffentlicht 02.08.2016 14:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
(1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scripts/cpan, (5) cpan/Digest-SHA/shasum, (6) cpan/Encode/bin/enc2xs, (7) cpan/Encode/bin/encguess, (8) cpan/Encode/bin/piconv, (9) cpa...
CVE-2016-3992
- EPSS 0.35%
- Veröffentlicht 26.07.2016 17:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
cronic before 3 allows local users to write to arbitrary files via a symlink attack on a (1) cronic.out.$$, (2) cronic.err.$$, or (3) cronic.trace.$$ file in /tmp.
CVE-2016-5131
- EPSS 2.27%
- Veröffentlicht 23.07.2016 19:59:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in libxml2 through 2.9.4, as used in Google Chrome before 52.0.2743.82, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the XPointer range-to function.
CVE-2016-4610
- EPSS 5.1%
- Veröffentlicht 22.07.2016 02:59:34
- Zuletzt bearbeitet 06.05.2026 22:30:45
libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud before 5.2.1 on Windows, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory corruption) or possibly ...
CVE-2016-4609
- EPSS 5.15%
- Veröffentlicht 22.07.2016 02:59:32
- Zuletzt bearbeitet 06.05.2026 22:30:45
libxslt in Apple iOS before 9.3.3, OS X before 10.11.6, iTunes before 12.4.2 on Windows, iCloud before 5.2.1 on Windows, tvOS before 9.2.2, and watchOS before 2.2.2 allows remote attackers to cause a denial of service (memory corruption) or possibly ...