Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project 2016 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-10129
The Git Smart Protocol support in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 allows remote malicious users to cause a denial of service (NULL pointer dereference) via an empty packet line.
Libgit2 Project Libgit2 0.25.0
Libgit2 Project Libgit2
5.9
CVSSv3
CVE-2016-10130
The http_connect function in transports/http.c in libgit2 prior to 0.24.6 and 0.25.x prior to 0.25.1 might allow man-in-the-middle malicious users to spoof servers by leveraging clobbering of the error variable.
Libgit2 Project Libgit2
Libgit2 Project Libgit2 0.25.0
8.8
CVSSv3
CVE-2016-4370
HPE Project and Portfolio Management Center (PPM) 9.2x and 9.3x prior to 9.32.0002 allows remote authenticated users to execute arbitrary commands or obtain sensitive information via unspecified vectors.
Hpe Project And Portfolio Management Center 9.20
Hpe Project And Portfolio Management Center 9.21
Hpe Project And Portfolio Management Center 9.22
Hpe Project And Portfolio Management Center 9.30
Hpe Project And Portfolio Management Center 9.31
Hpe Project And Portfolio Management Center 9.32
7.5
CVSSv3
CVE-2016-2515
Hawk prior to 3.1.3 and 4.x prior to 4.1.1 allow remote malicious users to cause a denial of service (CPU consumption or partial outage) via a long (1) header or (2) URI that is matched against an improper regular expression.
Hawk Project Hawk 3.1.2
Hawk Project Hawk 4.1.0
7.8
CVSSv3
CVE-2016-8710
An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causing an out of bounds heap write leading to remote code execution. This vulnerabilit...
Libbpg Project Libbpg 0.9.7
Libbpg Project Libbpg 0.9.4
7.8
CVSSv3
CVE-2016-10075
The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.
Tqdm Project Tqdm 4.10
Tqdm Project Tqdm 4.4.1
6.5
CVSSv3
CVE-2020-1322
An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.
Microsoft 365 Apps -
Microsoft Office 2019
Microsoft Project 2010
Microsoft Project 2013
Microsoft Project 2016
5.4
CVSSv3
CVE-2018-8156
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint Elevation of Privilege Vulnerability." This affects Microsoft SharePoin...
Microsoft Project Server 2010
Microsoft Project Server 2013
Microsoft Sharepoint Server 2016
5.4
CVSSv3
CVE-2016-5533
Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.4, 15.x, and 16.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Oracle Primavera P6 Enterprise Project Portfolio Management 8.4
Oracle Primavera P6 Enterprise Project Portfolio Management 15.1
Oracle Primavera P6 Enterprise Project Portfolio Management 15.0
Oracle Primavera P6 Enterprise Project Portfolio Management 16.0
Oracle Primavera P6 Enterprise Project Portfolio Management 15.2
Oracle Primavera P6 Enterprise Project Portfolio Management 16.2
Oracle Primavera P6 Enterprise Project Portfolio Management 16.1
9.8
CVSSv3
CVE-2016-6829
The trove service user in (1) Openstack deployment (aka crowbar-openstack) and (2) Trove Barclamp (aka barclamp-trove and crowbar-barclamp-trove) in the Crowbar Framework has a default password, which makes it easier for remote malicious users to obtain access via unspecified vec...
Barclamp-trove Project Barclamp-trove -
Crowbar-openstack Project Crowbar-openstack -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »