CVE-2016-2069
- EPSS 0.32%
- Veröffentlicht 27.04.2016 17:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
Race condition in arch/x86/mm/tlb.c in the Linux kernel before 4.4.1 allows local users to gain privileges by triggering access to a paging structure by a different CPU.
- EPSS 14.55%
- Veröffentlicht 27.04.2016 17:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via crafted packets.
CVE-2016-4002
- EPSS 6.34%
- Veröffentlicht 26.04.2016 14:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in the mipsnet_receive function in hw/net/mipsnet.c in QEMU, when the guest NIC is configured to accept large packets, allows remote attackers to cause a denial of service (memory corruption and QEMU crash) or possibly execute arbitra...
CVE-2016-3074
- EPSS 36.97%
- Veröffentlicht 26.04.2016 14:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflo...
CVE-2016-4054
- EPSS 77.56%
- Veröffentlicht 25.04.2016 14:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.
CVE-2016-4053
- EPSS 14.36%
- Veröffentlicht 25.04.2016 14:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization.
CVE-2016-4052
- EPSS 12.87%
- Veröffentlicht 25.04.2016 14:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple stack-based buffer overflows in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote HTTP servers to cause a denial of service or execute arbitrary code via crafted Edge Side Includes (ESI) responses.
CVE-2016-4051
- EPSS 16.89%
- Veröffentlicht 25.04.2016 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
Buffer overflow in cachemgr.cgi in Squid 2.x, 3.x before 3.5.17, and 4.x before 4.0.9 might allow remote attackers to cause a denial of service or execute arbitrary code by seeding manager reports with crafted data.
CVE-2016-2115
- EPSS 10.23%
- Veröffentlicht 25.04.2016 00:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SMB signing within a DCERPC session over ncacn_np, which allows man-in-the-middle attackers to spoof SMB clients by modifying the client-server data stream.
CVE-2016-2114
- EPSS 2.6%
- Veröffentlicht 25.04.2016 00:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not recognize the "server signing = mandatory" setting, which allows man-in-the-middle attackers to spoof SMB servers by modifying the client...