Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 11 - 20 of 81063 in total

SUSE: CVE-2016-7032: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 21, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2016-7032:

This CVE is addressed in the SUSE advisories openSUSE-SU-2016:2878-1

Vermillion FTP Daemon obsolete software Vulnerability

  • Severity: 10
  • Published: November 21, 2016

Vermillion FTP Daemon is an obsolete piece of software and no longer supported. It may become or is already vulnerable to exploits.

SUSE: CVE-2016-6321: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3132-1:

Harry Sintonen discovered that tar incorrectly handled extracting files when path names are specified on the command line. If a user or automa...

Red Hat: CVE-2016-8638: Important: ipsilon security update (RHSA-2016:2809) Vulnerability

  • Severity: 4
  • Published: November 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2809:

The ipsilon packages provide the Ipsilon identity provider service for federated single sign-on (SSO). Ipsilon links authentication provid...

Oracle Linux: CVE-2016-8638: ELSA-2016-2809 - ipsilon security update Vulnerability

  • Severity: 4
  • Published: November 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2809:

The ipsilon packages provide the Ipsilon identity provider service for federated single sign-on (SSO). Ipsilon links authentication provid...

SUSE: CVE-2016-9137: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2016-9137:

This CVE is addressed in the SUSE advisories

Ubuntu: USN-3132-1 (CVE-2016-6321): tar vulnerability Vulnerability

  • Severity: 4
  • Published: November 20, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3132-1:

Harry Sintonen discovered that tar incorrectly handled extracting files when path names are specified on the command line. If a user or automa...

Cisco ASA: Input Validation File Injection Vulnerability (cisco-sa-20161116-asa) (CVE-2016-6461) Vulnerability

  • Severity: 4
  • Published: November 17, 2016

A vulnerability in the HTTP web-based management interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to inject arbitrary XML commands on the affected system. More Information: CSCva38556. Known Affected Releases: 9.1(6.10). Known Fixed Releases: 100.11(0.75) 100.15(0.137) 100.8(40.129)...

SUSE: CVE-2016-9069: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 17, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From USN-3124-1:

Christian Holler, Andrew McCreight, Dan Minor, Tyson Smith, Jon Coppeard, Jan-Ivar Bruaroey, Jesse Ruderman, Markus Stange, Olli Pettay, Ehsan...