Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project 2016 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-6298
The _Rsa15 class in the RSA 1.5 algorithm implementation in jwa.py in jwcrypto prior to 0.3.2 lacks the Random Filling protection mechanism, which makes it easier for remote malicious users to obtain cleartext data via a Million Message Attack (MMA).
Jwcrypto Project Jwcrypto
6.4
CVSSv2
CVE-2016-6582
The Doorkeeper gem prior to 4.2.0 for Ruby might allow remote malicious users to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.
Doorkeeper Project Doorkeeper
6.4
CVSSv2
CVE-2016-9584
libical allows remote malicious users to cause a denial of service (use-after-free) and possibly read heap memory via a crafted ics file.
Libical Project Libical
6.8
CVSSv2
CVE-2016-5637
The restore_tqb_pixels function in libbpg 0.9.5 up to and including 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a &qu...
Libbpg Project Libbpg
4.3
CVSSv2
CVE-2016-5029
The create_fullest_file_path function in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted dwarf file.
Libdwarf Project Libdwarf
4.3
CVSSv2
CVE-2016-5034
dwarf_elf_access.c in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (out-of-bounds write) via a crafted file, related to relocation records.
Libdwarf Project Libdwarf
5
CVSSv2
CVE-2016-5038
The dwarf_get_macro_startend_file function in dwarf_macro5.c in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted string offset for .debug_str.
Libdwarf Project Libdwarf
5
CVSSv2
CVE-2016-5041
dwarf_macro5.c in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a debugging information entry using DWARF5 and without a DW_AT_name.
Libdwarf Project Libdwarf
5
CVSSv2
CVE-2016-5042
The dwarf_get_aranges_list function in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (infinite loop and crash) via a crafted DWARF section.
Libdwarf Project Libdwarf
5
CVSSv2
CVE-2016-5043
The dwarf_dealloc function in libdwarf prior to 20160923 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted DWARF section.
Libdwarf Project Libdwarf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »