2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-11055 | MEDIUM | 4.3 | 0.3% | Apr 28, 2020 | Certain NETGEAR devices are affected by CSRF. This affects CM400 before 2017-01-11, CM600 before 2017-01-11, D1500 befor... |
| CVE-2016-11040 | MEDIUM | 4.6 | 0.1% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with L(5.0/5.1) (with USB OTG MyFile2014_L_ESS support) software. Ther... |
| CVE-2016-11035 | MEDIUM | 5.5 | 0.1% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with software through 2016-05-27 (Exynos AP chipsets). A local graphic... |
| CVE-2016-11034 | MEDIUM | 6.5 | 0.3% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with L(5.0/5.1) and M(6.0) software. The decode function in Qjpeg in Q... |
| CVE-2016-11032 | MEDIUM | 5.3 | 0.3% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with M(6.0) software. An attacker can disable all Sound functionality ... |
| CVE-2016-11053 | MEDIUM | 4.6 | 0.1% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with software through 2015-11-11 (supporting FRP/RL). There is a Facto... |
| CVE-2016-11050 | MEDIUM | 4.3 | 0.3% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software. An attack... |
| CVE-2016-11048 | MEDIUM | 4.6 | 0.1% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with L(5.0/5.1) (Spreadtrum or Marvell chipsets) software. There is a ... |
| CVE-2016-11041 | MEDIUM | 4.6 | 0.1% | Apr 7, 2020 | An issue was discovered on Samsung mobile devices with KK(4.4) software. Attackers can bypass the lockscreen by sending ... |
| CVE-2016-1000111 | MEDIUM | 5.3 | 2.4% | Mar 11, 2020 | Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not pro... |
| CVE-2016-1159 | MEDIUM | 6.5 | 3.3% | Mar 9, 2020 | In ZOHO Password Manager Pro (PMP) 8.3.0 (Build 8303) and 8.4.0 (Build 8400,8401,8402), underprivileged users can obtain... |
| CVE-2016-3182 | MEDIUM | 5.5 | 1.5% | Feb 20, 2020 | The color_esycc_to_rgb function in bin/common/color.c in OpenJPEG before 2.1.1 allows attackers to cause a denial of ser... |
| CVE-2016-1000109 | MEDIUM | 5.3 | 5.0% | Feb 19, 2020 | HHVM does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applicat... |
| CVE-2016-5710 | MEDIUM | 4.6 | 0.7% | Feb 11, 2020 | NetApp Snap Creator Framework before 4.3P1 allows remote authenticated users to conduct clickjacking attacks via unspeci... |
| CVE-2016-7524 | MEDIUM | 6.5 | 2.2% | Feb 6, 2020 | coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted fil... |
| CVE-2016-7523 | MEDIUM | 6.5 | 2.6% | Feb 6, 2020 | coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted fil... |
| CVE-2016-1000237 | MEDIUM | 6.1 | 0.8% | Jan 23, 2020 | sanitize-html before 1.4.3 has XSS. |
| CVE-2016-6585 | MEDIUM | 5.3 | 1.4% | Jan 8, 2020 | A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a... |
| CVE-2016-5346 | MEDIUM | 5.5 | 0.3% | Jan 8, 2020 | An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointe... |
| CVE-2016-6587 | MEDIUM | 5.5 | 0.5% | Jan 8, 2020 | An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Secur... |
| CVE-2016-6588 | MEDIUM | 5.4 | 0.8% | Jan 8, 2020 | A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management... |
| CVE-2016-6589 | MEDIUM | 6.5 | 1.7% | Jan 8, 2020 | A Denial of Service vulnerability exists in the ITMS workflow process manager login window in Symantec IT Management Sui... |
| CVE-2016-1000029 | MEDIUM | 4.8 | 0.9% | Dec 27, 2019 | Tenable Nessus before 6.8 has a stored XSS issue that requires admin-level authentication to the Nessus UI, and would po... |
| CVE-2016-1000028 | MEDIUM | 4.8 | 0.9% | Dec 27, 2019 | Tenable Nessus before 6.8 has a stored XSS issue that requires admin-level authentication to the Nessus UI, and would on... |
| CVE-2016-1000229 | MEDIUM | 6.1 | 4.0% | Dec 20, 2019 | swagger-ui has XSS in key names |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now