Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-13 | CVE-2016-10325 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Osip 4.1.0 In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote DoS. | 7.5 |
| 2017-04-13 | CVE-2010-1821 | Improper Input Validation vulnerability in Apple mac OS X and mac OS X Server Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows local users to obtain system privileges. | 7.8 |
| 2017-04-13 | CVE-2010-1816 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X and mac OS X Server Buffer overflow in ImageIO in Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a crafted image. | 7.8 |
| 2017-04-13 | CVE-2017-7219 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Citrix Netscaler Gateway Firmware A heap overflow vulnerability in Citrix NetScaler Gateway versions 10.1 before 135.8/135.12, 10.5 before 65.11, 11.0 before 70.12, and 11.1 before 52.13 allows a remote authenticated attacker to run arbitrary commands via unspecified vectors. | 8.8 |
| 2017-04-13 | CVE-2016-4970 | Infinite Loop vulnerability in multiple products handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service (infinite loop). | 7.5 |
| 2017-04-13 | CVE-2016-1914 | SQL Injection vulnerability in Blackberry Enterprise Service Multiple SQL injection vulnerabilities in the com.rim.mdm.ui.server.ImageServlet servlet in BlackBerry Enterprise Server 12 (BES12) Self-Service before 12.4 allow remote attackers to execute arbitrary SQL commands via the imageName parameter to (1) mydevice/client/image, (2) admin/client/image, (3) myapps/client/image, (4) ssam/client/image, or (5) all/client/image. | 8.8 |
| 2017-04-13 | CVE-2016-1132 | Improper Certificate Validation vulnerability in Docomo Shoplat Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates. | 7.5 |
| 2017-04-13 | CVE-2016-10123 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges. | 7.8 |
| 2017-04-13 | CVE-2016-10122 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail does not properly clean environment variables, which allows local users to gain privileges. | 7.8 |
| 2017-04-13 | CVE-2016-10121 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges. | 7.8 |