Vulnerability & Exploit Database

Displaying vulnerability details 1 - 10 of 73361 in total

Debian: DSA-3553 (CVE-2015-8852): varnish -- security update Vulnerability

  • Severity: 4
  • Published: April 21, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From DSA-3553:

Régis Leroy from Makina Corpus discovered that varnish, a caching HTTP

reverse proxy, is vulnerable to HTTP smuggling issues, potenti...

Oracle MySQL Vulnerability: CVE-2016-0658 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to Optimizer.

Oracle MySQL Vulnerability: CVE-2016-0655 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows local users to affect availability via vectors related to InnoDB.

CESA-2016:0675: java-1.7.0-openjdk security update Vulnerability

  • Severity: 4
  • Published: April 20, 2016

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit.Security Fix(es):Note: If the web browser plug-in provided by the icedtea-web package was installed, the issues exposed via Java applets could have been exploited without user interaction if a user visited a mali...

Oracle MySQL Vulnerability: CVE-2016-0649 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to PS.

Oracle MySQL Vulnerability: CVE-2016-0654 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability than CVE-2016-0656.

Oracle MySQL Vulnerability: CVE-2016-0647 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.11 and earlier allows local users to affect availability via vectors related to FTS.

Oracle MySQL Vulnerability: CVE-2016-0644 Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier allows local users to affect availability via vectors related to DDL.

Oracle MySQL Vulnerability: CVE-2016-0639 Vulnerability

  • Severity: 10
  • Published: April 20, 2016

Unspecified vulnerability in Oracle MySQL 5.6.29 and earlier and 5.7.11 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Pluggable Authentication.

Ubuntu: USN-2952-1 (CVE-2016-3185): PHP vulnerabilities Vulnerability

  • Severity: 4
  • Published: April 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-2952-1:

It was discovered that the PHP Zip extension incorrectly handled directories when processing certain zip files. A remote attacker could possib...