Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cve-2016-8155 vulnerabilities and exploits

(subscribe to this query)

3.5
CVSSv2
CVE-2018-8155
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft...
Microsoft Sharepoint Foundation 2013Microsoft Sharepoint Server 2016
4.3
CVSSv2
CVE-2014-8155
GnuTLS before 2.9.10 does not verify the activation and expiration dates of CA certificates, which allows man-in-the-middle attackers to spoof servers via a certificate issued by a CA certificate that is (1) not yet valid or (2) no longer valid....
Gnu Gnutls
NA
CVE-2016-8155
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none....
5
CVSSv2
CVE-2014-10069
Hitron CVE-30360 devices use a 578A958E3DD933FC DES key that is shared across different customers' installations, which makes it easier for attackers to obtain sensitive information by decrypting a backup configuration file, as demonstrated by a password hash in the...
Hitrontech Cve-30360 Firmware 3.1.1.21
5
CVSSv2
CVE-2015-0282
GnuTLS before 3.1.0 does not verify that the RSA PKCS #1 signature algorithm matches the signature algorithm in the certificate, which allows remote attackers to conduct downgrade attacks via unspecified vectors....
Gnu Gnutls
5
CVSSv2
CVE-2015-0294
GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate....
Gnu GnutlsDebian Debian Linux 7.0Redhat Enterprise Linux 5.0Redhat Enterprise Linux 7.0
3.5
CVSSv2
CVE-2020-8155
An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross-site scripting vulnerability when opening a malicious PDF....
Nextcloud Nextcloud Server
5
CVSSv2
CVE-2019-8155
Magento prior to 1.9.4.3 and prior to 1.14.4.3 included a user's CSRF token in the URL of a GET request. This could be exploited by an attacker with access to network traffic to perform unauthorized actions....
Magento Magento
NA
CVE-2015-8155
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2015. Notes: none....
7.2
CVSSv2
CVE-2017-8155
The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the...
Huawei B2338-168 Firmware V100r001c00
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2021-24218CVE-2021-24086cameraCVE-2021-24198CVE-2018-13379XML external entityCVE-2021-24229CVE-2021-3465
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook