2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-10028 | MEDIUM | 5.5 | 0.4% | Feb 27, 2017 | The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Devic... |
| CVE-2016-7510 | MEDIUM | 6.5 | 1.6% | Feb 17, 2017 | The read_line_table_program function in dwarf_line_table_reader_common.c in libdwarf before 20160923 allows remote attac... |
| CVE-2016-6191 | MEDIUM | 6.1 | 1.2% | Feb 17, 2017 | Multiple cross-site scripting (XSS) vulnerabilities in the View Raw Source page in the Web Calendar in SOGo before 3.1.3... |
| CVE-2016-6189 | MEDIUM | 4.3 | 1.4% | Feb 17, 2017 | Incomplete blacklist in SOGo before 2.3.12 and 3.x before 3.1.1 allows remote authenticated users to obtain sensitive in... |
| CVE-2016-5037 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The _dwarf_load_section function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NULL ... |
| CVE-2016-5035 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The _dwarf_read_line_table_header function in dwarf_line_table_reader.c in libdwarf before 20160923 allows remote attack... |
| CVE-2016-5034 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | dwarf_elf_access.c in libdwarf before 20160923 allows remote attackers to cause a denial of service (out-of-bounds write... |
| CVE-2016-5033 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The print_exprloc_content function in libdwarf before 20160923 allows remote attackers to cause a denial of service (out... |
| CVE-2016-5032 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The dwarf_get_xu_hash_entry function in libdwarf before 20160923 allows remote attackers to cause a denial of service (c... |
| CVE-2016-5031 | MEDIUM | 5.5 | 2.0% | Feb 17, 2017 | The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a denial of service (ou... |
| CVE-2016-5030 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The _dwarf_calculate_info_section_end_ptr function in libdwarf before 20160923 allows remote attackers to cause a denial... |
| CVE-2016-5029 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The create_fullest_file_path function in libdwarf before 20160923 allows remote attackers to cause a denial of service (... |
| CVE-2016-5028 | MEDIUM | 6.5 | 2.9% | Feb 17, 2017 | The print_frame_inst_bytes function in libdwarf before 20160923 allows remote attackers to cause a denial of service (NU... |
| CVE-2016-8681 | MEDIUM | 5.5 | 2.1% | Feb 15, 2017 | The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to caus... |
| CVE-2016-8680 | MEDIUM | 6.5 | 2.9% | Feb 15, 2017 | The _dwarf_get_abbrev_for_code function in dwarf_util.c in libdwarf 20161001 and earlier allows remote attackers to caus... |
| CVE-2016-8679 | MEDIUM | 6.5 | 2.9% | Feb 15, 2017 | The _dwarf_get_size_of_val function in libdwarf/dwarf_util.c in Libdwarf before 20161124 allows remote attackers to caus... |
| CVE-2016-9360 | MEDIUM | 6.7 | 0.4% | Feb 13, 2017 | An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy H... |
| CVE-2016-9339 | MEDIUM | 5.3 | 1.7% | Feb 13, 2017 | An issue was discovered in INTERSCHALT Maritime Systems VDR G4e Versions 5.220 and prior. External input is used to cons... |
| CVE-2016-8367 | MEDIUM | 5.3 | 4.3% | Feb 13, 2017 | An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU... |
| CVE-2016-8359 | MEDIUM | 6.1 | 1.2% | Feb 13, 2017 | An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and... |
| CVE-2016-8350 | MEDIUM | 6.3 | 0.6% | Feb 13, 2017 | An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and... |
| CVE-2016-5811 | MEDIUM | 6.1 | 1.1% | Feb 13, 2017 | An issue was discovered in Visonic PowerLink2, all versions prior to October 2016 firmware release. User controlled inpu... |
| CVE-2016-6210 | MEDIUM | 5.9 | 88.9% | Feb 13, 2017 | sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static ... |
| CVE-2016-4988 | MEDIUM | 6.1 | 1.2% | Feb 9, 2017 | Cross-site scripting (XSS) vulnerability in the Build Failure Analyzer plugin before 1.16.0 in Jenkins allows remote att... |
| CVE-2016-4987 | MEDIUM | 6.5 | 3.0% | Feb 9, 2017 | Directory traversal vulnerability in the Image Gallery plugin before 1.4 in Jenkins allows remote attackers to list arbi... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now