Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-28 | CVE-2016-8579 | Resource Management Errors vulnerability in Docker2Aci Project Docker2Aci 0.12.3 docker2aci <= 0.12.3 has an infinite loop when handling local images with cyclic dependency chain. | 4.0 |
| 2016-10-28 | CVE-2016-7919 | SQL Injection vulnerability in Moodle 3.1.2 Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injection" issue affecting the Administration panel function in the installation process component. | 7.5 |
| 2016-10-28 | CVE-2016-8339 | Out-of-bounds Write vulnerability in Redislabs Redis A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. | 9.8 |
| 2016-10-28 | CVE-2016-8332 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Uclouvain Openjpeg 2.1.1 A buffer overflow in OpenJPEG 2.1.1 causes arbitrary code execution when parsing a crafted image. | 7.8 |
| 2016-10-28 | CVE-2016-6397 | Improper Authentication vulnerability in Cisco IP Interoperability and Collaboration System A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System (IPICS) Universal Media Services (UMS) could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. | 9.8 |
| 2016-10-28 | CVE-2016-6372 | Improper Input Validation vulnerability in Cisco Email Security Appliance and web Security Appliance A vulnerability in the email message and content filtering for malformed Multipurpose Internet Mail Extensions (MIME) headers of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass the filtering functionality of the targeted device. | 7.5 |
| 2016-10-28 | CVE-2016-6360 | Improper Input Validation vulnerability in Cisco Email Security Appliance and web Security Appliance A vulnerability in Advanced Malware Protection (AMP) for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition due to the AMP process unexpectedly restarting. | 7.5 |
| 2016-10-28 | CVE-2016-6358 | Improper Input Validation vulnerability in Cisco Email Security Appliance A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition when the FTP application unexpectedly quits. | 7.5 |
| 2016-10-28 | CVE-2016-6357 | 7PK - Errors vulnerability in Cisco Email Security Appliance 9.7.1066/9.9.6026 A vulnerability in the configured security policies, including drop email filtering, in Cisco AsyncOS for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass a configured drop filter by using an email with a corrupted attachment. | 7.5 |
| 2016-10-28 | CVE-2016-6356 | Improper Input Validation vulnerability in Cisco Email Security Appliance A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop scanning and forwarding email messages due to a denial of service (DoS) condition. | 7.5 |