2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-4181 | HIGH | 8.8 | 4.5% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4180 | HIGH | 8.8 | 4.5% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4179 | HIGH | 8.8 | 20.5% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4177 | HIGH | 8.8 | 17.6% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4176 | HIGH | 8.8 | 17.6% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4175 | HIGH | 8.8 | 20.5% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4174 | HIGH | 8.8 | 6.0% | Jul 13, 2016 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows ... |
| CVE-2016-4173 | HIGH | 8.8 | 6.0% | Jul 13, 2016 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows ... |
| CVE-2016-4172 | HIGH | 8.8 | 4.3% | Jul 13, 2016 | Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632... |
| CVE-2016-4994 | HIGH | 7.8 | 3.1% | Jul 12, 2016 | Use-after-free vulnerability in the xcf_load_image function in app/xcf/xcf-load.c in GIMP allows remote attackers to cau... |
| CVE-2016-4533 | HIGH | 7.8 | 12.8% | Jul 12, 2016 | Heap-based buffer overflow in WECON LeviStudio allows remote attackers to execute arbitrary code via a crafted file. |
| CVE-2016-2068 | HIGH | 7.8 | 0.7% | Jul 11, 2016 | The MSM QDSP6 audio driver (aka sound driver) for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) And... |
| CVE-2016-2067 | HIGH | 7.8 | 0.7% | Jul 11, 2016 | drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for the Linux kernel 3.x, as used in Qualcomm Innovat... |
| CVE-2016-2119 | HIGH | 7.5 | 3.1% | Jul 7, 2016 | libcli/smb/smbXcli_base.c in Samba 4.x before 4.2.14, 4.3.x before 4.3.11, and 4.4.x before 4.4.5 allows man-in-the-midd... |
| CVE-2016-1443 | HIGH | 8.1 | 1.1% | Jul 7, 2016 | The virtual network stack on Cisco AMP Threat Grid Appliance devices before 2.1.1 allows remote attackers to bypass a sa... |
| CVE-2016-4957 | HIGH | 7.5 | 44.9% | Jul 5, 2016 | ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. ... |
| CVE-2016-4954 | HIGH | 7.5 | 13.3% | Jul 5, 2016 | The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial o... |
| CVE-2016-4953 | HIGH | 7.5 | 17.2% | Jul 5, 2016 | ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (ephemeral-association demobilizatio... |
| CVE-2016-4997 | HIGH | 7.8 | 5.7% | Jul 3, 2016 | The compat IPT_SO_SET_REPLACE and IP6T_SO_SET_REPLACE setsockopt implementations in the netfilter subsystem in the Linux... |
| CVE-2016-1228 | HIGH | 8.8 | 1.2% | Jul 3, 2016 | Cross-site request forgery (CSRF) vulnerability on NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and R... |
| CVE-2016-1227 | HIGH | 7.2 | 2.5% | Jul 3, 2016 | NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1006 and earlier and NTT WEST Hikari ... |
| CVE-2016-3956 | HIGH | 7.5 | 6.7% | Jul 2, 2016 | The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before... |
| CVE-2016-4971 | HIGH | 8.8 | 45.9% | Jun 30, 2016 | GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted F... |
| CVE-2016-4472 | HIGH | 8.1 | 11.9% | Jun 30, 2016 | The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attacke... |
| CVE-2016-4309 | HIGH | 7.5 | 9.4% | Jun 30, 2016 | Session fixation vulnerability in Symphony CMS 2.6.7, when session.use_only_cookies is disabled, allows remote attackers... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now