Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-02-27 CVE-2016-9816 Improper Access Control vulnerability in XEN 4.7.0/4.7.1
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host crash) via vectors involving an asynchronous abort while at EL2.
local
low complexity
xen CWE-284
6.5
2017-02-27 CVE-2016-9815 Improper Access Control vulnerability in XEN 4.7.0/4.7.1
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host panic) by sending an asynchronous abort.
local
low complexity
xen CWE-284
6.5
2017-02-27 CVE-2016-5240 Improper Input Validation vulnerability in Graphicsmagick
The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined SVG file.
local
low complexity
graphicsmagick CWE-20
5.5
2017-02-27 CVE-2016-10029 Out-of-bounds Read vulnerability in Qemu
The virtio_gpu_set_scanout function in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a scanout id in a VIRTIO_GPU_CMD_SET_SCANOUT command larger than num_scanouts.
local
low complexity
qemu CWE-125
5.5
2017-02-27 CVE-2016-10028 Out-of-bounds Read vulnerability in Qemu
The virgl_cmd_get_capset function in hw/display/virtio-gpu-3d.c in QEMU (aka Quick Emulator) built with Virtio GPU Device emulator support allows local guest OS users to cause a denial of service (out-of-bounds read and process crash) via a VIRTIO_GPU_CMD_GET_CAPSET command with a maximum capabilities size with a value of 0.
local
low complexity
qemu CWE-125
5.5
2017-02-27 CVE-2015-8903 Infinite Loop vulnerability in Imagemagick
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8902 Infinite Loop vulnerability in Imagemagick
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted PDB file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8901 Infinite Loop vulnerability in Imagemagick
ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.
network
low complexity
imagemagick CWE-835
6.5
2017-02-27 CVE-2015-8900 Infinite Loop vulnerability in Imagemagick
The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file.
local
low complexity
imagemagick CWE-835
5.5
2017-02-27 CVE-2016-8105 Unspecified vulnerability in Intel X710 Series Driver and Xl710 Series Driver
Drivers for the Intel Ethernet Controller X710 and Intel Ethernet Controller XL710 families before version 22.0 are vulnerable to a denial of service in certain layer 2 network configurations.
low complexity
intel
6.5