CVE-2016-4497 (fpwin_pro)
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
Source: CVE-2016-4497 (fpwin_pro)
[월:] 2016년 05월
CVE-2016-4497
CVE-2016-4497
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service or possibly have unspecified other impact via vectors that leverage "type confusion."
Source: CVE-2016-4497
CVE-2016-4496 (fpwin_pro)
CVE-2016-4496 (fpwin_pro)
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by triggering a crafted index value, as demonstrated by an integer overflow.
Source: CVE-2016-4496 (fpwin_pro)
CVE-2016-4496
CVE-2016-4496
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by triggering a crafted index value, as demonstrated by an integer overflow.
Source: CVE-2016-4496
CVE-2016-1393 (cloud_network_automation_provisioner)
CVE-2016-1393 (cloud_network_automation_provisioner)
SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy72175.
Source: CVE-2016-1393 (cloud_network_automation_provisioner)
CVE-2016-1393
CVE-2016-1393
SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy72175.
Source: CVE-2016-1393
CVE-2016-3712
CVE-2016-3712
Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA registers in VBE mode.
Source: CVE-2016-3712
CVE-2016-3710
CVE-2016-3710
The VGA module in QEMU improperly performs bounds checking on banked access to video memory, which allows local guest OS users to execute arbitrary code on the host by changing access modes after setting the bank register, aka the "Dark Portal" issue.
Source: CVE-2016-3710
CVE-2016-1236
CVE-2016-1236
Multiple cross-site scripting (XSS) vulnerabilities in (1) revision.php, (2) log.php, (3) listing.php, and (4) comp.php in WebSVN allow context-dependent attackers to inject arbitrary web script or HTML via the name of a (a) file or (b) directory in a repository.
Source: CVE-2016-1236
CVE-2016-4116 (edge, flash_player, internet_explorer)
CVE-2016-4116 (edge, flash_player, internet_explorer)
Unspecified vulnerability in Adobe Flash Player 21.0.0.213 and earlier, as used in the Adobe Flash libraries in Microsoft Internet Explorer 10 and 11 and Microsoft Edge, has unknown impact and attack vectors, a different vulnerability than other CVEs listed in MS16-064.
Source: CVE-2016-4116 (edge, flash_player, internet_explorer)