Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2016-12-15 CVE-2016-4028 Credentials Management vulnerability in Open-Xchange OX Guard 2.4.0
An issue was discovered in Open-Xchange OX Guard before 2.4.0-rev8.
network
high complexity
open-xchange CWE-255
7.5
7.5
2016-12-15 CVE-2016-3174 Open Redirect vulnerability in Open-Xchange Appsuite
An issue was discovered in Open-Xchange OX AppSuite before 7.8.0-rev27.
network
low complexity
open-xchange CWE-601
7.4
7.4
2016-12-15 CVE-2015-8542 Key Management Errors vulnerability in Open-Xchange OX Guard 2.0.0/2.2.0
An issue was discovered in Open-Xchange Guard before 2.2.0-rev8.
network
low complexity
open-xchange CWE-320
8.8
8.8
2016-12-14 CVE-2016-9035 Classic Buffer Overflow vulnerability in Joyent Smartos 20161110T013148Z
An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
high complexity
joyent CWE-120
7.0
7.0
2016-12-14 CVE-2016-9034 Classic Buffer Overflow vulnerability in Joyent Smartos 20120614/20161110T013148Z
An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
high complexity
joyent CWE-120
7.0
7.0
2016-12-14 CVE-2016-9033 Classic Buffer Overflow vulnerability in Joyent Smartos 20161110T013148Z
An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
high complexity
joyent CWE-120
7.0
7.0
2016-12-14 CVE-2016-9032 Classic Buffer Overflow vulnerability in Joyent Smartos 20161110T013148Z
An exploitable buffer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
high complexity
joyent CWE-120
7.0
7.0
2016-12-14 CVE-2016-9031 Integer Overflow or Wraparound vulnerability in Joyent Smartos 20161110T013148Z
An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
high complexity
joyent CWE-190
7.8
7.8
2016-12-14 CVE-2016-8733 Integer Overflow or Wraparound vulnerability in Joyent Smartos 20120614/20161110T013148Z
An exploitable integer overflow exists in the Joyent SmartOS 20161110T013148Z Hyprlofs file system.
local
low complexity
joyent CWE-190
8.8
8.8
2016-12-14 CVE-2016-6277 Cross-Site Request Forgery (CSRF) vulnerability in Netgear products
NETGEAR R6250 before 1.0.4.6.Beta, R6400 before 1.0.1.18.Beta, R6700 before 1.0.1.14.Beta, R6900, R7000 before 1.0.7.6.Beta, R7100LG before 1.0.0.28.Beta, R7300DST before 1.0.0.46.Beta, R7900 before 1.0.1.8.Beta, R8000 before 1.0.3.26.Beta, D6220, D6400, D7000, and possibly other routers allow remote attackers to execute arbitrary commands via shell metacharacters in the path info to cgi-bin/.
network
low complexity
netgear CWE-352
8.8
8.8