Skip to main content
CVE-2016-5108 CRITICAL POC THREAT Emergency

Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 20.8%.

Denial Of Service RCE Buffer Overflow Debian Linux Vlc Media Player
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
20.8%
Threat
4.1
CVE-2016-4359 CRITICAL Act Now

Stack-based buffer overflow in mchan.dll in the agent in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and 12.50 through patch 3 and. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 27.9% and no vendor patch available.

RCE Buffer Overflow Loadrunner Performance Center
NVD
CVSS 3.0
9.8
EPSS
27.9%
CVE-2016-4366 CRITICAL Act Now

HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Systems Insight Manager
NVD
CVSS 3.0
9.8
EPSS
2.4%
CVE-2016-2024 CRITICAL Act Now

HPE Insight Control before 7.5.1 allow remote attackers to obtain sensitive information, modify data, or cause a denial of service via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Insight Contol Server Migration Package
NVD
CVSS 3.0
9.8
EPSS
1.5%
CVE-2016-4368 CRITICAL Act Now

HPE Universal CMDB 10.0 through 10.21, Universal CMDB Configuration Manager 10.0 through 10.21, and Universal Discovery 10.0 through 10.21 allow remote attackers to execute arbitrary commands via a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Java Apache Universal Cmbd Foundation Universal Cmbd Configuration Manager +1
NVD
CVSS 3.0
9.8
EPSS
1.2%
CVE-2016-4360 CRITICAL Act Now

web/admin/data.js in the Performance Center Virtual Table Server (VTS) component in HPE LoadRunner 11.52 through patch 3, 12.00 through patch 1, 12.01 through patch 3, 12.02 through patch 2, and. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Loadrunner Performance Center
NVD
CVSS 3.0
9.1
EPSS
3.7%
CVE-2016-2018 CRITICAL Act Now

HPE Systems Insight Manager (SIM) before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Systems Insight Manager Matrix Operating Environment
NVD
CVSS 3.0
9.1
EPSS
1.5%
CVE-2016-2029 CRITICAL Act Now

HPE Matrix Operating Environment before 7.5.1 allows remote attackers to obtain sensitive information or modify data via unspecified vectors, a different vulnerability than CVE-2016-4358. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Systems Insight Manager Matrix Operating Environment
NVD
CVSS 3.0
9.1
EPSS
1.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy