Vulnerabilities > Redhat > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-05-17 CVE-2016-3724 Information Exposure vulnerability in multiple products
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with extended read access to obtain sensitive password information by reading a job configuration.
network
low complexity
redhat jenkins CWE-200
6.5
2016-05-17 CVE-2016-3723 Information Exposure vulnerability in multiple products
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with read access to obtain sensitive plugin installation information by leveraging missing permissions checks in unspecified XML/JSON API endpoints.
network
low complexity
jenkins redhat CWE-200
4.3
2016-05-17 CVE-2016-3722 Permissions, Privileges, and Access Controls vulnerability in multiple products
Jenkins before 2.3 and LTS before 1.651.2 allow remote authenticated users with multiple accounts to cause a denial of service (unable to login) by editing the "full name."
network
low complexity
jenkins redhat CWE-264
4.3
2016-05-17 CVE-2016-3721 Code vulnerability in multiple products
Jenkins before 2.3 and LTS before 1.651.2 might allow remote authenticated users to inject arbitrary build parameters into the build environment via environment variables.
network
low complexity
redhat jenkins CWE-17
6.5
2016-05-16 CVE-2015-4598 Improper Input Validation vulnerability in multiple products
PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument save method or (2) the GD imagepsloadfont function, as demonstrated by a filename\0.html attack that bypasses an intended configuration in which client users may write to only .html files.
network
low complexity
redhat php CWE-20
6.5
2016-05-16 CVE-2015-3412 7PK - Security Features vulnerability in multiple products
PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read arbitrary files via crafted input to an application that calls the stream_resolve_include_path function in ext/standard/streamsfuncs.c, as demonstrated by a filename\0.extension attack that bypasses an intended configuration in which client users may read files with only one specific extension.
network
low complexity
php redhat CWE-254
5.3
2016-05-16 CVE-2015-3411 Improper Input Validation vulnerability in multiple products
PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted input to an application that calls (1) a DOMDocument load method, (2) the xmlwriter_open_uri function, (3) the finfo_file function, or (4) the hash_hmac_file function, as demonstrated by a filename\0.xml attack that bypasses an intended configuration in which client users may read only .xml files.
network
low complexity
redhat php CWE-20
6.5
2016-05-16 CVE-2015-3152 Improper Certificate Validation vulnerability in multiple products
Oracle MySQL before 5.7.3, Oracle MySQL Connector/C (aka libmysqlclient) before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack.
network
high complexity
oracle mariadb fedoraproject debian redhat php CWE-295
5.9
2016-05-14 CVE-2016-1665 Improper Input Validation vulnerability in multiple products
The JSGenericLowering class in compiler/js-generic-lowering.cc in Google V8, as used in Google Chrome before 50.0.2661.94, mishandles comparison operators, which allows remote attackers to obtain sensitive information via crafted JavaScript code.
network
low complexity
opensuse redhat google CWE-20
6.5
2016-05-14 CVE-2016-1664 7PK - Security Features vulnerability in multiple products
The HistoryController::UpdateForCommit function in content/renderer/history_controller.cc in Google Chrome before 50.0.2661.94 mishandles the interaction between subframe forward navigations and other forward navigations, which allows remote attackers to spoof the address bar via a crafted web site.
network
low complexity
google redhat opensuse CWE-254
4.3