Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-30 | CVE-2016-9113 | NULL Pointer Dereference vulnerability in Uclouvain Openjpeg 2.1.2 There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. | 7.5 |
| 2016-10-29 | CVE-2016-9112 | Divide By Zero vulnerability in Uclouvain Openjpeg 2.1.2 Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2. | 7.5 |
| 2016-10-29 | CVE-2016-7506 | Out-of-bounds Read vulnerability in Artifex Mujs An out-of-bounds read vulnerability was observed in Sp_replace_regexp function of Artifex Software, Inc. | 7.5 |
| 2016-10-29 | CVE-2016-7505 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Artifex Mujs A buffer overflow vulnerability was observed in divby function of Artifex Software, Inc. | 9.8 |
| 2016-10-29 | CVE-2016-7504 | Use After Free vulnerability in Artifex Mujs A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. | 9.8 |
| 2016-10-29 | CVE-2016-5920 | Cross-site Scripting vulnerability in IBM Financial Transaction Manager Cross-site scripting (XSS) vulnerability in the Web UI in IBM Financial Transaction Manager (FTM) for ACH Services 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. | 5.4 |
| 2016-10-29 | CVE-2016-3060 | Improper Access Control vulnerability in IBM Financial Transaction Manager Payments Director in IBM Financial Transaction Manager (FTM) for ACH Services, Check Services, and Corporate Payment Services (CPS) 3.0.0.x before fp0015 and 3.0.1.0 before iFix0002 allows remote authenticated users to conduct clickjacking attacks via a crafted web site. | 5.7 |
| 2016-10-28 | CVE-2016-4396 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP System Management Homepage HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. | 7.5 |
| 2016-10-28 | CVE-2016-4395 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in HP System Management Homepage HPE System Management Homepage before v7.6 allows remote attackers to have an unspecified impact via unknown vectors, related to a "Buffer Overflow" issue. | 7.5 |
| 2016-10-28 | CVE-2016-4394 | 7PK - Security Features vulnerability in HP System Management Homepage HPE System Management Homepage before v7.6 allows remote attackers to obtain sensitive information via unspecified vectors, related to an "HSTS" issue. | 6.5 |