Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-16 | CVE-2016-9838 | Improper Access Control vulnerability in Joomla Joomla! An issue was discovered in components/com_users/models/registration.php in Joomla! before 3.6.5. | 7.5 |
| 2016-12-16 | CVE-2016-9837 | Permissions, Privileges, and Access Controls vulnerability in Joomla Joomla! An issue was discovered in templates/beez3/html/com_content/article/default.php in Joomla! before 3.6.5. | 7.5 |
| 2016-12-16 | CVE-2016-6657 | Open Redirect vulnerability in Pivotal Software products An open redirect vulnerability has been detected with some Pivotal Cloud Foundry Elastic Runtime components. | 7.4 |
| 2016-12-16 | CVE-2016-6656 | Command Injection vulnerability in Pivotal Software Greenplum An issue was discovered in Pivotal Greenplum before 4.3.10.0. | 7.2 |
| 2016-12-15 | CVE-2016-9566 | Link Following vulnerability in Nagios base/logging.c in Nagios Core before 4.2.4 allows local users with access to an account in the nagios group to gain root privileges via a symlink attack on the log file. | 7.8 |
| 2016-12-15 | CVE-2015-6574 | Resource Management Errors vulnerability in Sisco Ax-S4 Iccp Firmware and Mms-Ease Firmware The SNAP Lite component in certain SISCO MMS-EASE and AX-S4 ICCP products allows remote attackers to cause a denial of service (CPU consumption) via a crafted packet. | 7.5 |
| 2016-12-15 | CVE-2016-7892 | Use After Free vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the TextField class. | 8.8 |
| 2016-12-15 | CVE-2016-7890 | Unspecified vulnerability in Adobe Flash Player and Flash Player Desktop Runtime Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy. | 8.8 |
| 2016-12-15 | CVE-2016-7889 | Information Exposure vulnerability in Adobe Digital Editions Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure. | 7.5 |
| 2016-12-15 | CVE-2016-7887 | Information Exposure vulnerability in Adobe Coldfusion Builder Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure. | 7.5 |