2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-1469 | HIGH | 7.5 | 2.1% | Sep 12, 2016 | The HTTP framework on Cisco SPA300, SPA500, and SPA51x devices allows remote attackers to cause a denial of service (dev... |
| CVE-2016-6318 | HIGH | 7.8 | 0.7% | Sep 7, 2016 | Stack-based buffer overflow in the FascistGecosUser function in lib/fascist.c in cracklib allows local users to cause a ... |
| CVE-2016-2183 | HIGH | 7.5 | 95.7% | Sep 1, 2016 | The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a bi... |
| CVE-2016-5335 | HIGH | 7.8 | 0.3% | Aug 31, 2016 | VMware Identity Manager 2.x before 2.7 and vRealize Automation 7.0.x before 7.1 allow local users to obtain root access ... |
| CVE-2016-5342 | HIGH | 7.8 | 0.5% | Aug 30, 2016 | Heap-based buffer overflow in the wcnss_wlan_write function in drivers/net/wireless/wcnss/wcnss_wlan.c in the wcnss_wlan... |
| CVE-2016-4657 | HIGH | 8.8 | 66.8% | Aug 25, 2016 | WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory ... |
| CVE-2016-4656 | HIGH | 7.8 | 23.6% | Aug 25, 2016 | The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denia... |
| CVE-2016-5645 | HIGH | 7.3 | 29.4% | Aug 24, 2016 | Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32B... |
| CVE-2016-0915 | HIGH | 8.1 | 2.2% | Aug 22, 2016 | The Self-Service Portal in EMC RSA Authentication Manager (AM) Prime Self-Service 3.0 and 3.1 before 3.1 1915.42871 allo... |
| CVE-2016-6367 | HIGH | 7.8 | 22.6% | Aug 18, 2016 | Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows loc... |
| CVE-2016-6366 | HIGH | 8.8 | 87.5% | Aug 18, 2016 | Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Service... |
| CVE-2016-5384 | HIGH | 7.8 | 0.4% | Aug 13, 2016 | fontconfig before 2.12.1 does not validate offsets, which allows local users to trigger arbitrary free calls and consequ... |
| CVE-2016-5421 | HIGH | 8.1 | 8.0% | Aug 10, 2016 | Use-after-free vulnerability in libcurl before 7.50.1 allows attackers to control which connection is used or possibly h... |
| CVE-2016-3309 | HIGH | 7.8 | 20.6% | Aug 9, 2016 | The kernel-mode drivers in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; ... |
| CVE-2016-5330 | HIGH | 7.8 | 18.0% | Aug 8, 2016 | Untrusted search path vulnerability in the HGFS (aka Shared Folders) feature in VMware Tools 10.0.5 in VMware ESXi 5.0 t... |
| CVE-2016-5340 | HIGH | 7.8 | 0.3% | Aug 7, 2016 | The is_ashmem_file function in drivers/staging/android/ashmem.c in a certain Qualcomm Innovation Center (QuIC) Android p... |
| CVE-2016-2065 | HIGH | 7.8 | 1.4% | Aug 7, 2016 | sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in Qualc... |
| CVE-2016-2064 | HIGH | 7.8 | 0.6% | Aug 7, 2016 | sound/soc/msm/qdsp6v2/msm-audio-effects-q6-v2.c in the MSM QDSP6 audio driver for the Linux kernel 3.x, as used in Qualc... |
| CVE-2016-2063 | HIGH | 7.8 | 0.5% | Aug 7, 2016 | Stack-based buffer overflow in the supply_lm_input_write function in drivers/thermal/supply_lm_core.c in the MSM Thermal... |
| CVE-2016-4029 | HIGH | 8.6 | 4.6% | Aug 7, 2016 | WordPress before 4.5 does not consider octal and hexadecimal IP address formats when determining an intranet address, wh... |
| CVE-2016-6128 | HIGH | 7.5 | 6.7% | Aug 7, 2016 | The gdImageCropThreshold function in gd_crop.c in the GD Graphics Library (aka libgd) before 2.2.3, as used in PHP befor... |
| CVE-2016-6187 | HIGH | 7.8 | 2.4% | Aug 6, 2016 | The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 4.6.5 does not validate the buff... |
| CVE-2016-3841 | HIGH | 7.3 | 0.3% | Aug 6, 2016 | The IPv6 stack in the Linux kernel before 4.3.3 mishandles options data, which allows local users to gain privileges or ... |
| CVE-2016-6185 | HIGH | 7.8 | 0.8% | Aug 2, 2016 | The XSLoader::load method in XSLoader in Perl does not properly locate .so files when called in a string eval, which mig... |
| CVE-2016-1238 | HIGH | 7.8 | 0.8% | Aug 2, 2016 | (1) cpan/Archive-Tar/bin/ptar, (2) cpan/Archive-Tar/bin/ptardiff, (3) cpan/Archive-Tar/bin/ptargrep, (4) cpan/CPAN/scrip... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now