2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-8632 | HIGH | 7.8 | 0.4% | Nov 28, 2016 | The tipc_msg_build function in net/tipc/msg.c in the Linux kernel through 4.8.11 does not validate the relationship betw... |
| CVE-2016-9562 | HIGH | 7.5 | 3.9% | Nov 23, 2016 | SAP NetWeaver AS JAVA 7.4 allows remote attackers to cause a Denial of Service (null pointer exception and icman outage)... |
| CVE-2016-8562 | HIGH | 7.5 | 3.6% | Nov 18, 2016 | A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < ... |
| CVE-2016-7913 | HIGH | 7.8 | 2.2% | Nov 16, 2016 | The xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in the Linux kernel before 4.6 allows local users ... |
| CVE-2016-7912 | HIGH | 7.8 | 2.1% | Nov 16, 2016 | Use-after-free vulnerability in the ffs_user_copy_worker function in drivers/usb/gadget/function/f_fs.c in the Linux ker... |
| CVE-2016-7911 | HIGH | 7.8 | 1.5% | Nov 16, 2016 | Race condition in the get_task_ioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to ... |
| CVE-2016-7910 | HIGH | 7.8 | 3.0% | Nov 16, 2016 | Use-after-free vulnerability in the disk_seqf_stop function in block/genhd.c in the Linux kernel before 4.7.1 allows loc... |
| CVE-2016-9294 | HIGH | 7.5 | 2.8% | Nov 12, 2016 | Artifex Software, Inc. MuJS before 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent attackers to conduc... |
| CVE-2016-9274 | HIGH | 7.8 | 0.9% | Nov 11, 2016 | Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.... |
| CVE-2016-5195 | HIGH | 7 | 83.5% | Nov 10, 2016 | Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by lev... |
| CVE-2016-7256 | HIGH | 8.8 | 64.8% | Nov 10, 2016 | atmfd.dll in the Windows font library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1,... |
| CVE-2016-7255 | HIGH | 7.8 | 81.0% | Nov 10, 2016 | The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, ... |
| CVE-2016-7201 | HIGH | 8.8 | 79.7% | Nov 10, 2016 | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2016-7200 | HIGH | 8.8 | 82.5% | Nov 10, 2016 | The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2016-9136 | HIGH | 7.5 | 1.4% | Nov 3, 2016 | Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain... |
| CVE-2016-8864 | HIGH | 7.5 | 38.7% | Nov 2, 2016 | named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-P1 allows remote attackers to c... |
| CVE-2016-7855 | HIGH | 8.8 | 25.2% | Nov 1, 2016 | Use-after-free vulnerability in Adobe Flash Player before 23.0.0.205 on Windows and OS X and before 11.2.202.643 on Linu... |
| CVE-2016-7919 | HIGH | 7.5 | 2.2% | Oct 28, 2016 | Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injectio... |
| CVE-2016-5625 | HIGH | 7 | 0.4% | Oct 25, 2016 | Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows local users to affect confidentiality, integrity, an... |
| CVE-2016-5558 | HIGH | 8.6 | 3.1% | Oct 25, 2016 | Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.5.1 thro... |
| CVE-2016-8666 | HIGH | 7.5 | 4.7% | Oct 16, 2016 | The IP stack in the Linux kernel before 4.6 allows remote attackers to cause a denial of service (stack consumption and ... |
| CVE-2016-7425 | HIGH | 7.8 | 0.4% | Oct 16, 2016 | The arcmsr_iop_message_xfer function in drivers/scsi/arcmsr/arcmsr_hba.c in the Linux kernel through 4.8.2 does not rest... |
| CVE-2016-7039 | HIGH | 7.5 | 7.6% | Oct 16, 2016 | The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption a... |
| CVE-2016-7193 | HIGH | 7.8 | 57.7% | Oct 14, 2016 | Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for M... |
| CVE-2016-3393 | HIGH | 7.8 | 68.7% | Oct 14, 2016 | Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows ... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now