Skip to main content
CVE-2016-9050 HIGH POC This Week

An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3.10.0.3. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Information Disclosure Database Server
NVD VulDB
CVSS 3.1
8.2
EPSS
0.6%
CVE-2016-8710 HIGH POC This Week

An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption RCE Libbpg
NVD VulDB
CVSS 3.1
7.8
EPSS
0.4%
CVE-2017-3794 HIGH This Week

A vulnerability in Cisco WebEx Meetings Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against an administrative user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco CSRF Webex Meetings Server
NVD VulDB
CVSS 3.0
8.8
EPSS
0.2%
CVE-2016-9218 HIGH This Week

A vulnerability in Cisco Hybrid Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against the user of the web interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco CSRF Hybrid Meeting Server
NVD VulDB
CVSS 3.0
8.8
EPSS
0.2%
CVE-2016-10013 HIGH PATCH This Week

Xen through 4.8.x allows local 64-bit x86 HVM guest OS users to gain privileges by leveraging mishandling of SYSCALL singlestep during emulation. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Xen
NVD VulDB
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-8225 HIGH This Week

Unquoted service path vulnerability in Lenovo Edge and Lenovo Slim USB Keyboard Driver versions earlier than 1.21 allows local users to execute code with elevated privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Lenovo Edge Keyboard Driver Slim Usb Keyboard Driver
NVD VulDB
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-8227 HIGH This Week

Privilege escalation vulnerability in Lenovo Transition application used in Lenovo Yoga, Flex and Miix systems running Windows allows local users to execute code with elevated privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Authentication Bypass Privilege Escalation Lenovo Transition
NVD VulDB
CVSS 3.0
7.8
EPSS
0.0%
CVE-2017-3796 HIGH This Week

A vulnerability in Cisco WebEx Meetings Server could allow an authenticated, remote attacker to execute predetermined shell commands on other hosts. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Command Injection Webex Meetings Server
NVD VulDB
CVSS 3.0
7.2
EPSS
0.9%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy