2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-3710 | HIGH | 8.8 | 0.9% | May 11, 2016 | The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS... |
| CVE-2016-0189 | HIGH | 7.5 | 93.2% | May 11, 2016 | The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other ... |
| CVE-2016-0185 | HIGH | 7.8 | 69.9% | May 11, 2016 | Media Center in Microsoft Windows Vista SP2, Windows 7 SP1, and Windows 8.1 allows remote attackers to execute arbitrary... |
| CVE-2016-4476 | HIGH | 7.5 | 2.9% | May 9, 2016 | hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject \n and \r characters in passphrase paramete... |
| CVE-2016-4074 | HIGH | 7.5 | 5.3% | May 6, 2016 | The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and applicat... |
| CVE-2016-2062 | HIGH | 7.8 | 0.2% | May 5, 2016 | The adreno_perfcounter_query_group function in drivers/gpu/msm/adreno_perfcounter.c in the Adreno GPU driver for the Lin... |
| CVE-2016-2059 | HIGH | 7 | 0.2% | May 5, 2016 | The msm_ipc_router_bind_control_port function in net/ipc_router/ipc_router_core.c in the IPC router kernel module for th... |
| CVE-2016-3714 | HIGH | 8.4 | 97.5% | May 5, 2016 | The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, (7) WIN, and (8) PLT coders in ImageMagick before 6.... |
| CVE-2016-2105 | HIGH | 7.5 | 39.6% | May 5, 2016 | Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2... |
| CVE-2016-2854 | HIGH | 7.8 | 0.9% | May 2, 2016 | The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local use... |
| CVE-2016-2853 | HIGH | 7.8 | 0.9% | May 2, 2016 | The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local user... |
| CVE-2016-2070 | HIGH | 7.5 | 3.3% | May 2, 2016 | The tcp_cwnd_reduction function in net/ipv4/tcp_input.c in the Linux kernel before 4.3.5 allows remote attackers to caus... |
| CVE-2016-1576 | HIGH | 7.8 | 1.1% | May 2, 2016 | The overlayfs implementation in the Linux kernel through 4.5.2 does not properly restrict the mount namespace, which all... |
| CVE-2016-1575 | HIGH | 7.8 | 0.9% | May 2, 2016 | The overlayfs implementation in the Linux kernel through 4.5.2 does not properly maintain POSIX ACL xattr data, which al... |
| CVE-2016-3135 | HIGH | 7.8 | 1.0% | Apr 27, 2016 | Integer overflow in the xt_alloc_table_info function in net/netfilter/x_tables.c in the Linux kernel through 4.5.2 on 32... |
| CVE-2016-2143 | HIGH | 7.8 | 0.6% | Apr 27, 2016 | The fork implementation in the Linux kernel before 4.5 on s390 platforms mishandles the case of four page-table levels, ... |
| CVE-2016-3441 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and... |
| CVE-2016-3418 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5... |
| CVE-2016-0694 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5... |
| CVE-2016-0692 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5... |
| CVE-2016-0689 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5... |
| CVE-2016-0682 | HIGH | 7.8 | 0.4% | Apr 21, 2016 | Unspecified vulnerability in the DataStore component in Oracle Berkeley DB 11.2.5.0.32, 11.2.5.1.29, 11.2.5.2.42, 11.2.5... |
| CVE-2016-3943 | HIGH | 7.8 | 1.2% | Apr 18, 2016 | Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a ... |
| CVE-2016-3630 | HIGH | 8.8 | 4.8% | Apr 13, 2016 | The binary delta decoder in Mercurial before 3.7.3 allows remote attackers to execute arbitrary code via a (1) clone, (2... |
| CVE-2016-2118 | HIGH | 7.5 | 37.0% | Apr 12, 2016 | The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x befor... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now