Vulnerabilities > Low

DATE CVE VULNERABILITY TITLE RISK
2016-04-25 CVE-2016-4053 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization.
network
high complexity
squid-cache oracle canonical CWE-119
3.7
2016-04-21 CVE-2016-3428 Unspecified vulnerability in Oracle Agile Engineering Data Management 6.1.3.0/6.2.0.0
Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect availability via vectors related to Engineering Communication Interface.
high complexity
oracle
3.1
2016-04-21 CVE-2016-3426 Unspecified vulnerability in Oracle JDK and JRE
Unspecified vulnerability in Oracle Java SE 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality via vectors related to JCE.
network
high complexity
oracle
3.1
2016-04-21 CVE-2016-3419 Unspecified vulnerability in Oracle Solaris 10/11.3
Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect availability via vectors related to Filesystem.
local
low complexity
oracle
3.3
2016-04-21 CVE-2016-0691 Unspecified vulnerability in Oracle Database 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0690.
local
low complexity
oracle
3.3
2016-04-21 CVE-2016-0690 Unspecified vulnerability in Oracle Database 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0691.
local
low complexity
oracle
3.3
2016-04-21 CVE-2016-0688 Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.2.0.0/12.1.3.0.0
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via vectors related to Core Components.
network
high complexity
oracle
3.7
2016-04-21 CVE-2016-0671 Unspecified vulnerability in Oracle Http Server 12.1.2.0
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 12.1.2.0 allows remote attackers to affect confidentiality via vectors related to OSSL Module.
network
high complexity
oracle
3.7
2016-04-21 CVE-2016-0643 Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier and MariaDB before 5.5.49, 10.0.x before 10.0.25, and 10.1.x before 10.1.14 allows local users to affect confidentiality via vectors related to DML.
local
low complexity
debian redhat ibm opensuse oracle mariadb
3.3
2016-04-20 CVE-2015-8842 Permissions, Privileges, and Access Controls vulnerability in Opensuse 13.2
tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file.
local
low complexity
opensuse CWE-264
3.3