Skip to main content
CVE-2016-3115 MEDIUM POC THREAT This Month

Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data,. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 47.1%.

SSH Authentication Bypass
NVD GitHub Exploit-DB VulDB
CVSS 3.1
6.4
EPSS
47.1%
Threat
4.2
CVE-2016-3116 MEDIUM POC THREAT This Month

CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 27.6%.

Authentication Bypass Dropbear Ssh
NVD GitHub Exploit-DB
CVSS 3.0
6.4
EPSS
27.6%
CVE-2016-1997 CRITICAL PATCH Act Now

HPE Operations Orchestration 10.x before 10.51 and Operations Orchestration content before 1.7.0 allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Apache Operations Orchestration Operations Orchestration Content
NVD
CVSS 3.0
9.8
EPSS
2.6%
CVE-2016-1998 CRITICAL PATCH Act Now

HPE Service Manager (SM) 9.3x before 9.35 P4 and 9.4x before 9.41.P2 allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Apache Service Manager
NVD
CVSS 3.0
9.8
EPSS
1.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy