CVE List - 2016 / April
Showing 101 - 200 of 653 CVEs for April 2016 (Page 2 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2016-1568 | 2016-04-08 | Use-after-free vulnerability in hw/ide/ahci.c in QEMU, when built with IDE... |
| CVE-2016-1885 | 2016-04-08 | Integer signedness error in the amd64_set_ldt function in sys/amd64/amd64/sys_machdep.c in... |
| CVE-2016-2857 | 2016-04-08 | The net_checksum_calculate function in net/checksum.c in QEMU allows local guest... |
| CVE-2015-8841 | 2016-04-08 | Heap-based buffer overflow in the Archive support module in ESET... |
| CVE-2016-3985 | 2016-04-08 | The Terminal Services Remote Desktop Protocol (RDP) client session restrictions... |
| CVE-2016-3986 | 2016-04-08 | Avast allows remote attackers to cause a denial of service... |
| CVE-2016-3987 | 2016-04-08 | The HTTP server in Trend Micro Password Manager allows remote... |
| CVE-2016-1006 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1011 | 2016-04-09 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x... |
| CVE-2016-1012 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1013 | 2016-04-09 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x... |
| CVE-2016-1014 | 2016-04-09 | Untrusted search path vulnerability in Adobe Flash Player before 18.0.0.343... |
| CVE-2016-1015 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1016 | 2016-04-09 | Use-after-free vulnerability in the Transform object implementation in Adobe Flash... |
| CVE-2016-1017 | 2016-04-09 | Use-after-free vulnerability in the LoadVars.decode function in Adobe Flash Player... |
| CVE-2016-1018 | 2016-04-09 | Stack-based buffer overflow in Adobe Flash Player before 18.0.0.343 and... |
| CVE-2016-1020 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1021 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1022 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1023 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1024 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1025 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1026 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1027 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1028 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1029 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1030 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1031 | 2016-04-09 | Use-after-free vulnerability in Adobe Flash Player before 18.0.0.343 and 19.x... |
| CVE-2016-1032 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2016-1033 | 2016-04-09 | Adobe Flash Player before 18.0.0.343 and 19.x through 21.x before... |
| CVE-2015-8240 | 2016-04-11 | The Traffic Management Microkernel (TMM) in F5 BIG-IP LTM, AAM,... |
| CVE-2016-0709 | 2016-04-11 | Directory traversal vulnerability in the Import/Export function in the Portal... |
| CVE-2016-0710 | 2016-04-11 | Multiple SQL injection vulnerabilities in the User Manager service in... |
| CVE-2016-0711 | 2016-04-11 | Multiple cross-site scripting (XSS) vulnerabilities in Apache Jetspeed before 2.3.1... |
| CVE-2016-0712 | 2016-04-11 | Cross-site scripting (XSS) vulnerability in Apache Jetspeed before 2.3.1 allows... |
| CVE-2016-0783 | 2016-04-11 | The sendHashByUser function in Apache OpenMeetings before 3.1.1 generates predictable... |
| CVE-2016-0784 | 2016-04-11 | Directory traversal vulnerability in the Import/Export System Backups functionality in... |
| CVE-2016-2163 | 2016-04-11 | Cross-site scripting (XSS) vulnerability in Apache OpenMeetings before 3.1.1 allows... |
| CVE-2016-2164 | 2016-04-11 | The (1) FileService.importFileByInternalUserId and (2) FileService.importFile SOAP API methods in... |
| CVE-2016-2171 | 2016-04-11 | The User Manager service in Apache Jetspeed before 2.3.1 does... |
| CVE-2016-2393 | 2016-04-11 | Lenovo Fingerprint Manager before 8.01.57 and Touch Fingerprint before 1.00.08... |
| CVE-2012-6698 | 2016-04-11 | The decode_search function in dhcp.c in dhcpcd 3.x allows remote... |
| CVE-2012-6699 | 2016-04-11 | The decode_search function in dhcp.c in dhcpcd 3.x allows remote... |
| CVE-2012-6700 | 2016-04-11 | The decode_search function in dhcp.c in dhcpcd 3.x does not... |
| CVE-2016-1235 | 2016-04-11 | The oarsh script in OAR before 2.5.7 allows remote authenticated... |
| CVE-2016-2193 | 2016-04-11 | PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security... |
| CVE-2016-2385 | 2016-04-11 | Heap-based buffer overflow in the encode_msg function in encode_msg.c in... |
| CVE-2016-3065 | 2016-04-11 | The (1) brin_page_type and (2) brin_metapage_info functions in the pageinspect... |
| CVE-2016-3659 | 2016-04-11 | SQL injection vulnerability in graph_view.php in Cacti 0.8.8.g allows remote... |
| CVE-2016-3675 | 2016-04-11 | SQL injection vulnerability in Huawei Policy Center with software before... |
| CVE-2016-3676 | 2016-04-11 | Huawei E3276s USB modems with software before E3276s-150TCPU-V200R002B436D09SP00C00 allow man-in-the-middle... |
| CVE-2016-3678 | 2016-04-11 | Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches with... |
| CVE-2015-0265 | 2016-04-11 | Cross-site scripting (XSS) vulnerability in the Policy Admin Tool in... |
| CVE-2015-0266 | 2016-04-11 | The Policy Admin Tool in Apache Ranger before 0.5.0 allows... |
| CVE-2016-0735 | 2016-04-11 | Apache Ranger 0.5.x before 0.5.2 allows remote authenticated users to... |
| CVE-2014-9759 | 2016-04-11 | Incomplete blacklist vulnerability in the config_is_private function in config_api.php in... |
| CVE-2015-5233 | 2016-04-11 | Foreman before 1.8.4 and 1.9.x before 1.9.1 do not properly... |
| CVE-2015-5303 | 2016-04-11 | The TripleO Heat templates (tripleo-heat-templates), when deployed via the commandline... |
| CVE-2015-5313 | 2016-04-11 | Directory traversal vulnerability in the virStorageBackendFileSystemVolCreate function in storage/storage_backend_fs.c in... |
| CVE-2015-5329 | 2016-04-11 | The TripleO Heat templates (tripleo-heat-templates), as used in Red Hat... |
| CVE-2015-5349 | 2016-04-11 | The CSV export in Apache LDAP Studio and Apache Directory... |
| CVE-2015-7330 | 2016-04-11 | Puppet Enterprise 2015.3 before 2015.3.1 allows remote attackers to bypass... |
| CVE-2015-7502 | 2016-04-11 | Red Hat CloudForms 3.2 Management Engine (CFME) 5.4.4 and CloudForms... |
| CVE-2015-7528 | 2016-04-11 | Kubernetes before 1.2.0-alpha.5 allows remote attackers to read arbitrary pod... |
| CVE-2015-8398 | 2016-04-11 | Cross-site scripting (XSS) vulnerability in Atlassian Confluence before 5.8.17 allows... |
| CVE-2015-8399 | 2016-04-11 | Atlassian Confluence before 5.8.17 allows remote authenticated users to read... |
| CVE-2015-8604 | 2016-04-11 | SQL injection vulnerability in the host_new_graphs function in graphs_new.php in... |
| CVE-2015-8614 | 2016-04-11 | Multiple stack-based buffer overflows in the (1) conv_jistoeuc, (2) conv_euctojis,... |
| CVE-2015-8708 | 2016-04-11 | Stack-based buffer overflow in the conv_euctojis function in codeconv.c in... |
| CVE-2015-8710 | 2016-04-11 | The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to... |
| CVE-2015-3268 | 2016-04-12 | Cross-site scripting (XSS) vulnerability in the DisplayEntityField.getDescription method in ModelFormField.java... |
| CVE-2015-5167 | 2016-04-12 | The Policy Admin Tool in Apache Ranger before 0.5.1 allows... |
| CVE-2015-8021 | 2016-04-12 | Incomplete blacklist vulnerability in the Configuration utility in F5 BIG-IP... |
| CVE-2015-8346 | 2016-04-12 | app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x... |
| CVE-2015-8473 | 2016-04-12 | The Issues API in Redmine before 2.6.8, 3.0.x before 3.0.6,... |
| CVE-2015-8474 | 2016-04-12 | Open redirect vulnerability in the valid_back_url function in app/controllers/application_controller.rb in... |
| CVE-2015-8537 | 2016-04-12 | app/views/journals/index.builder in Redmine before 2.6.9, 3.0.x before 3.0.7, and 3.1.x... |
| CVE-2015-8702 | 2016-04-12 | The DNS::GetResult function in dns.cpp in InspIRCd before 2.0.19 allows... |
| CVE-2016-0733 | 2016-04-12 | The Admin UI in Apache Ranger before 0.5.1 does not... |
| CVE-2016-1866 | 2016-04-12 | Salt 2015.8.x before 2015.8.4 does not properly handle clear messages... |
| CVE-2016-2140 | 2016-04-12 | The libvirt driver in OpenStack Compute (Nova) before 2015.1.4 (kilo)... |
| CVE-2016-2166 | 2016-04-12 | The (1) proton.reactor.Connector, (2) proton.reactor.Container, and (3) proton.utils.BlockingConnection classes in... |
| CVE-2016-2170 | 2016-04-12 | Apache OFBiz 12.04.x before 12.04.06 and 13.07.x before 13.07.03 allow... |
| CVE-2016-2556 | 2016-04-12 | The Escape interface in the Kernel Mode Driver layer in... |
| CVE-2016-2557 | 2016-04-12 | The Escape interface in the Kernel Mode Driver layer in... |
| CVE-2016-2558 | 2016-04-12 | The Escape interface in the Kernel Mode Driver layer in... |
| CVE-2016-3162 | 2016-04-12 | The File module in Drupal 7.x before 7.43 and 8.x... |
| CVE-2016-3163 | 2016-04-12 | The XML-RPC system in Drupal 6.x before 6.38 and 7.x... |
| CVE-2016-3164 | 2016-04-12 | Drupal 6.x before 6.38, 7.x before 7.43, and 8.x before... |
| CVE-2016-3165 | 2016-04-12 | The Form API in Drupal 6.x before 6.38 ignores access... |
| CVE-2016-3166 | 2016-04-12 | CRLF injection vulnerability in the drupal_set_header function in Drupal 6.x... |
| CVE-2016-3167 | 2016-04-12 | Open redirect vulnerability in the drupal_goto function in Drupal 6.x... |
| CVE-2016-3168 | 2016-04-12 | The System module in Drupal 6.x before 6.38 and 7.x... |
| CVE-2016-3169 | 2016-04-12 | The User module in Drupal 6.x before 6.38 and 7.x... |
| CVE-2016-3170 | 2016-04-12 | The "have you forgotten your password" links in the User... |
| CVE-2016-3171 | 2016-04-12 | Drupal 6.x before 6.38, when used with PHP before 5.4.45,... |
| CVE-2016-0785 | 2016-04-12 | Apache Struts 2.x before 2.3.28 allows remote attackers to execute... |
| CVE-2016-2162 | 2016-04-12 | Apache Struts 2.x before 2.3.25 does not sanitize text in... |
| CVE-2016-3157 | 2016-04-12 | The __switch_to function in arch/x86/kernel/process_64.c in the Linux kernel does... |
| CVE-2016-3172 | 2016-04-12 | SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier... |