Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-06-30 | CVE-2015-8801 | Improper Access Control vulnerability in Symantec Endpoint Protection Manager 12.1.6 Race condition in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6 MP5 allows local users to bypass intended restrictions on USB file transfer by conducting filesystem operations before the SEP device manager recognizes a new USB device. | 2.9 |
| 2016-06-26 | CVE-2016-0259 | Information Exposure vulnerability in IBM Websphere MQ runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authority requirement and obtain sensitive information via unspecified display commands. | 2.5 |
| 2016-06-26 | CVE-2015-7473 | Improper Access Control vulnerability in IBM Websphere MQ runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue-manager command access restrictions by leveraging authority for +connect and +dsp. | 2.5 |
| 2016-06-19 | CVE-2016-1862 | 7PK - Security Features vulnerability in Apple mac OS X Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860. | 3.3 |
| 2016-06-19 | CVE-2016-1860 | 7PK - Security Features vulnerability in Apple mac OS X Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1862. | 3.3 |
| 2016-06-19 | CVE-2016-1183 | Permissions, Privileges, and Access Controls vulnerability in Nttdata Terasoluna Server Framework for Java web NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 through 2.0.6.1, as used in Fujitsu Interstage Business Application Server and other products, allows remote attackers to bypass a file-extension protection mechanism, and consequently read arbitrary files, via a crafted pathname. | 3.7 |
| 2016-06-10 | CVE-2016-5233 | Information Exposure vulnerability in Huawei Mate 8 Firmware Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before NXT-CL00C92B182, NXT-DL00 before NXT-DL00C17B182, and NXT-TL00 before NXT-TL00C01B182 allow remote base stations to obtain sensitive subscriber signal strength information via vectors involving improper security status verification, aka HWPSIRT-2015-12007. | 3.7 |
| 2016-06-10 | CVE-2016-4527 | Credentials Management vulnerability in ABB Pcm600 2.6 ABB PCM600 before 2.7 improperly stores PCM600 authentication credentials, which allows local users to obtain sensitive information via unspecified vectors. | 3.3 |
| 2016-06-10 | CVE-2016-4516 | Information Exposure vulnerability in ABB Pcm600 2.6 ABB PCM600 before 2.7 improperly stores the main application password after a password change, which allows local users to obtain sensitive information via unspecified vectors. | 3.3 |
| 2016-06-10 | CVE-2016-4511 | Cryptographic Issues vulnerability in ABB Pcm600 2.6 ABB PCM600 before 2.7 uses an improper hash algorithm for the main application password, which makes it easier for local users to obtain sensitive cleartext information by leveraging read access to the ACTConfig configuration file. | 2.8 |