2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-15045 | HIGH | 8.5 | 0.4% | Jul 23, 2025 | A local privilege escalation vulnerability exists in lastore-daemon, the system package manager daemon used in Deepin Li... |
| CVE-2016-10408 | HIGH | 7.8 | 0.1% | Nov 26, 2024 | QSEE will randomly experience a fatal error during execution due to speculative instruction fetches from device memory. ... |
| CVE-2016-10394 | HIGH | 7.8 | 0.1% | Nov 26, 2024 | Initial xbl_sec revision does not have all the debug policy features and critical checks. |
| CVE-2016-20022 | HIGH | 8.4 | 0.2% | Jun 27, 2024 | In the Linux kernel before 4.8, usb_parse_endpoint in drivers/usb/core/config.c does not validate the wMaxPacketSize fie... |
| CVE-2016-15036 | HIGH | 7.5 | 0.4% | Dec 23, 2023 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Deis Workflow Manager up to 2.3.2. It has been classified a... |
| CVE-2016-1203 | HIGH | 8.1 | 0.6% | Oct 31, 2023 | Improper file verification vulnerability in SaAT Netizen installer ver.1.2.0.424 and earlier, and SaAT Netizen ver.1.2.0... |
| CVE-2016-15026 | HIGH | 7.8 | 0.5% | Feb 20, 2023 | A vulnerability was found in 3breadt dd-plist 1.17 and classified as problematic. Affected by this issue is some unknown... |
| CVE-2016-15019 | HIGH | 7.5 | 0.7% | Jan 15, 2023 | A vulnerability was found in tombh jekbox. It has been rated as problematic. This issue affects some unknown processing ... |
| CVE-2016-15009 | HIGH | 8.8 | 0.3% | Jan 5, 2023 | A vulnerability classified as problematic has been found in OpenACS bug-tracker. Affected is an unknown function of the ... |
| CVE-2016-15005 | HIGH | 8.8 | 0.4% | Dec 27, 2022 | CSRF tokens are generated using math/rand, which is not a cryptographically secure random number generator, allowing an ... |
| CVE-2016-20018 | HIGH | 7.5 | 0.8% | Dec 19, 2022 | Knex Knex.js through 2.3.0 has a limited SQL injection vulnerability that can be exploited to ignore the WHERE clause of... |
| CVE-2016-20015 | HIGH | 7.5 | 0.5% | Sep 20, 2022 | In the ebuild package through smokeping-2.7.3-r1 for SmokePing on Gentoo, the initscript allows the smokeping user to ga... |
| CVE-2016-4427 | HIGH | 7.5 | 0.6% | Jul 28, 2022 | In zulip before 1.3.12, deactivated users could access messages if SSO was enabled. |
| CVE-2016-0796 | HIGH | 7.5 | 1.0% | Jul 28, 2022 | WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files is prone to multiple vulnerabilities, inclu... |
| CVE-2016-15003 | HIGH | 7.8 | 0.7% | Jul 18, 2022 | A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects un... |
| CVE-2016-15002 | HIGH | 8.8 | 0.9% | Jun 9, 2022 | A vulnerability, which was classified as critical, was found in MONyog Ultimate 6.63. This affects an unknown part of th... |
| CVE-2016-20013 | HIGH | 7.5 | 2.2% | Feb 19, 2022 | sha256crypt and sha512crypt through 0.6 allow attackers to cause a denial of service (CPU consumption) because the algor... |
| CVE-2016-3735 | HIGH | 8.1 | 1.4% | Jan 28, 2022 | Piwigo is image gallery software written in PHP. When a criteria is not met on a host, piwigo defaults to usingmt_rand i... |
| CVE-2016-20011 | HIGH | 7.5 | 1.5% | May 25, 2021 | libgrss through 0.7.0 fails to perform TLS certificate verification when downloading feeds, allowing remote attackers to... |
| CVE-2016-20003 | HIGH | 7.5 | 1.0% | Jan 1, 2021 | The REST/JSON project 7.x-1.x for Drupal allows user enumeration, aka SA-CONTRIB-2016-033. NOTE: This project is not cov... |
| CVE-2016-20008 | HIGH | 7.5 | 1.0% | Jan 1, 2021 | The REST/JSON project 7.x-1.x for Drupal allows session enumeration, aka SA-CONTRIB-2016-033. NOTE: This project is not ... |
| CVE-2016-20007 | HIGH | 7.5 | 1.0% | Jan 1, 2021 | The REST/JSON project 7.x-1.x for Drupal allows session name guessing, aka SA-CONTRIB-2016-033. NOTE: This project is no... |
| CVE-2016-20006 | HIGH | 7.5 | 1.0% | Jan 1, 2021 | The REST/JSON project 7.x-1.x for Drupal allows blockage of user logins, aka SA-CONTRIB-2016-033. NOTE: This project is ... |
| CVE-2016-11086 | HIGH | 7.4 | 0.7% | Sep 24, 2020 | lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby does not verify server X.509 certificates if a certif... |
| CVE-2016-7064 | HIGH | 7.5 | 0.7% | Jul 21, 2020 | A flaw was found in pritunl-client before version 1.0.1116.6. A lack of signature verification leads to sensitive inform... |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now