2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-4334 | MEDIUM | 6.1 | 0.8% | Apr 10, 2017 | Jive before 2016.3.1 has an open redirect from the external-link.jspa page. |
| CVE-2016-10221 | MEDIUM | 4.3 | 1.4% | Apr 3, 2017 | The count_entries function in pdf-layer.c in Artifex Software, Inc. MuPDF 1.10a allows remote attackers to cause a denia... |
| CVE-2016-8769 | MEDIUM | 6.7 | 1.6% | Apr 2, 2017 | Huawei UTPS earlier than UTPS-V200R003B015D16SPC00C983 has an unquoted service path vulnerability which can lead to the ... |
| CVE-2016-9473 | MEDIUM | 4.7 | 1.9% | Mar 28, 2017 | Brave Browser iOS before 1.2.18 and Brave Browser Android 1.9.56 and earlier suffer from Full Address Bar Spoofing, allo... |
| CVE-2016-9922 | MEDIUM | 5.5 | 0.4% | Mar 27, 2017 | The cirrus_do_copy function in hw/display/cirrus_vga.c in QEMU (aka Quick Emulator), when cirrus graphics mode is VGA, a... |
| CVE-2016-3179 | MEDIUM | 5.5 | 0.3% | Mar 24, 2017 | The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (... |
| CVE-2016-3178 | MEDIUM | 5.5 | 0.3% | Mar 24, 2017 | The processRequest function in minissdpd.c in MiniSSDPd 1.2.20130907-3 allows local users to cause a denial of service (... |
| CVE-2016-9388 | MEDIUM | 5.5 | 2.0% | Mar 23, 2017 | The ras_getcmap function in ras_dec.c in JasPer before 1.900.14 allows remote attackers to cause a denial of service (as... |
| CVE-2016-10058 | MEDIUM | 5.5 | 1.6% | Mar 23, 2017 | Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick before 6.9.6-3 allows remote attackers to cause... |
| CVE-2016-10053 | MEDIUM | 5.5 | 1.6% | Mar 23, 2017 | The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of ... |
| CVE-2016-10247 | MEDIUM | 5.5 | 1.6% | Mar 16, 2017 | Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allo... |
| CVE-2016-10246 | MEDIUM | 5.5 | 1.5% | Mar 16, 2017 | Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF before 1.10 allows rem... |
| CVE-2016-7103 | MEDIUM | 6.1 | 22.6% | Mar 15, 2017 | Cross-site scripting (XSS) vulnerability in jQuery UI before 1.12.0 might allow remote attackers to inject arbitrary web... |
| CVE-2016-10155 | MEDIUM | 6 | 0.4% | Mar 15, 2017 | Memory leak in hw/watchdog/wdt_i6300esb.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a... |
| CVE-2016-10070 | MEDIUM | 5.5 | 2.1% | Mar 3, 2017 | Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attack... |
| CVE-2016-10066 | MEDIUM | 5.5 | 1.7% | Mar 3, 2017 | Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to ... |
| CVE-2016-10061 | MEDIUM | 6.5 | 2.9% | Mar 3, 2017 | The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fput... |
| CVE-2016-10071 | MEDIUM | 5.5 | 1.9% | Mar 2, 2017 | coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and ... |
| CVE-2016-10062 | MEDIUM | 5.5 | 1.8% | Mar 2, 2017 | The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, whi... |
| CVE-2016-10060 | MEDIUM | 6.5 | 2.3% | Mar 2, 2017 | The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value... |
| CVE-2016-9559 | MEDIUM | 6.5 | 3.6% | Mar 1, 2017 | coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereferen... |
| CVE-2016-8508 | MEDIUM | 6.5 | 1.6% | Mar 1, 2017 | Yandex Browser for desktop before 17.1.1.227 does not show Protect (similar to Safebrowsing in Chromium) warnings in web... |
| CVE-2016-8507 | MEDIUM | 6.5 | 1.5% | Mar 1, 2017 | Yandex Browser for iOS before 16.10.0.2357 does not properly restrict processing of facetime:// URLs, which allows remot... |
| CVE-2016-9261 | MEDIUM | 5.4 | 0.7% | Feb 28, 2017 | Cross-site scripting (XSS) vulnerability in Tenable Log Correlation Engine (aka LCE) before 4.8.1 allows remote authenti... |
| CVE-2016-10029 | MEDIUM | 5.5 | 0.4% | Feb 27, 2017 | The virtio_gpu_set_scanout function in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows lo... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now