Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-31 | CVE-2016-7990 | 7PK - Errors vulnerability in Google Android On Samsung Galaxy S4 through S7 devices, an integer overflow condition exists within libomacp.so when parsing OMACP messages (within WAP Push SMS messages) leading to a heap corruption that can result in Denial of Service and potentially remote code execution, a subset of SVE-2016-6542. | 9.8 |
| 2016-10-29 | CVE-2016-7505 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Artifex Mujs A buffer overflow vulnerability was observed in divby function of Artifex Software, Inc. | 9.8 |
| 2016-10-29 | CVE-2016-7504 | Use After Free vulnerability in Artifex Mujs A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. | 9.8 |
| 2016-10-28 | CVE-2016-8598 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libcsp Project Libcsp Buffer overflow in the zmq interface in csp_if_zmqhub.c in the libcsp library v1.4 and earlier allows hostile computers connected via a zmq interface to execute arbitrary code via a long packet. | 9.8 |
| 2016-10-28 | CVE-2016-8597 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libcsp Project Libcsp Buffer overflow in the csp_sfp_recv_fp in csp_sfp.c in the libcsp library v1.4 and earlier allows hostile components with network access to the SFP underlying network layers to execute arbitrary code via specially crafted SFP packets. | 9.8 |
| 2016-10-28 | CVE-2016-8596 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libcsp Project Libcsp Buffer overflow in the csp_can_process_frame in csp_if_can.c in the libcsp library v1.4 and earlier allows hostile components connected to the canbus to execute arbitrary code via a long csp packet. | 9.8 |
| 2016-10-28 | CVE-2016-8582 | SQL Injection vulnerability in Alienvault products A vulnerability exists in gauge.php of AlienVault OSSIM and USM before 5.3.2 that allows an attacker to execute an arbitrary SQL query and retrieve database information or read local system files via MySQL's LOAD_FILE. | 9.8 |
| 2016-10-28 | CVE-2016-8580 | Improper Access Control vulnerability in Alienvault products PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. | 9.8 |
| 2016-10-28 | CVE-2016-8339 | Out-of-bounds Write vulnerability in Redislabs Redis A buffer overflow in Redis 3.2.x prior to 3.2.4 causes arbitrary code execution when a crafted command is sent. | 9.8 |
| 2016-10-28 | CVE-2016-6397 | Improper Authentication vulnerability in Cisco IP Interoperability and Collaboration System A vulnerability in the interdevice communications interface of the Cisco IP Interoperability and Collaboration System (IPICS) Universal Media Services (UMS) could allow an unauthenticated, remote attacker to modify configuration parameters of the UMS and cause the system to become unavailable. | 9.8 |