Vulnerability Database

The Rapid7 Vulnerability Database is a list of 70,000 vulnerabilities for security analyst and researchers to identify and address known security issues through vulnerability management solutions. Each vulnerability has links to relevant groups like Mitre and other CVE Numbering Authorities as well as additional technical documentation. These vulnerabilities are utilized by our vulnerability management tool Nexpose and provided here for additional visibility.


Displaying vulnerability details 31 - 40 of 81063 in total

Debian: DSA-3719 (CVE-2016-9374): wireshark -- security update Vulnerability

  • Severity: 4
  • Published: November 16, 2016

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable.

SUSE: CVE-2016-8862: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: November 16, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2016-8862:

This CVE is addressed in the SUSE advisories

Debian: DSA-3718: drupal7 -- security update Vulnerability

  • Severity: 4
  • Published: November 16, 2016

Multiple vulnerabilities has been found in the Drupal content management

framework. For additional information, please refer to the upstream advisory

athttps://www.drupal.org/SA-CORE-2016-005

Oracle Linux: CVE-2016-8635: ELSA-2016-2779 - nss and nss-util security update Vulnerability

  • Severity: 4
  • Published: November 15, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2779:

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and se...

Red Hat: CVE-2016-5285: Moderate: nss and nss-util security update (RHSA-2016:2779) Vulnerability

  • Severity: 4
  • Published: November 15, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2779:

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and se...

Oracle Linux: CVE-2016-5285: ELSA-2016-2779 - nss and nss-util security update Vulnerability

  • Severity: 4
  • Published: November 15, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2779:

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and se...

Red Hat: CVE-2016-8635: Moderate: nss and nss-util security update (RHSA-2016:2779) Vulnerability

  • Severity: 4
  • Published: November 15, 2016

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From RHSA-2016:2779:

Network Security Services (NSS) is a set of libraries designed to support the cross-platform development of security-enabled client and se...