Skip to main content
CVE-2016-9676 CRITICAL Act Now

Buffer overflow in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Citrix Provisioning Services
NVD VulDB
CVSS 3.0
9.8
EPSS
6.2%
CVE-2016-9678 CRITICAL Act Now

Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Citrix Use After Free RCE Provisioning Services
NVD VulDB
CVSS 3.0
9.8
EPSS
4.4%
CVE-2016-9679 CRITICAL Act Now

Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code by overwriting a function pointer. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Citrix Provisioning Services
NVD VulDB
CVSS 3.0
9.8
EPSS
3.8%
CVE-2016-7996 CRITICAL PATCH Act Now

Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Graphicsmagick
NVD VulDB
CVSS 3.0
9.8
EPSS
1.2%
CVE-2016-3415 CRITICAL Act Now

Zimbra Collaboration before 8.7.0 allows remote attackers to conduct deserialization attacks via unspecified vectors, aka bug 102276. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Zimbra Collaboration Suite
NVD VulDB
CVSS 3.0
9.1
EPSS
0.5%
CVE-2016-9584 CRITICAL Act Now

libical allows remote attackers to cause a denial of service (use-after-free) and possibly read heap memory via a crafted ics file. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Memory Corruption Use After Free Libical
NVD VulDB
CVSS 3.0
9.1
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy