Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27887 of 28111

CVE-2016-3109

Posted by Cyberthreat Blog | Apr 21, 2017 | CVE Notifications |

The backend/Login/load/ script in Shopware before 5.1.5 allows remote attackers to execute arbitrary code.

CVE-2016-3702

Posted by Cyberthreat Blog | Apr 21, 2017 | CVE Notifications |

Padding oracle flaw in CloudForms Management Engine (aka CFME) 5 allows remote attackers to obtain sensitive cleartext information.

CVE-2016-1518

Posted by Cyberthreat Blog | Apr 21, 2017 | CVE Notifications |

The auto-provisioning mechanism in the Grandstream Wave app 1.0.1.26 and earlier for Android and Grandstream Video IP phones allows man-in-the-middle attackers to spoof provisioning data and consequently modify device...

CVE-2016-1187

Posted by Cyberthreat Blog | Apr 21, 2017 | CVE Notifications |

Cybozu KUNAI for iPhone 2.0.3 through 3.1.5 and for Android 2.1.2 through 3.0.4 does not verify SSL certificates.

CVE-2017-8050

Posted by Cyberthreat Blog | Apr 21, 2017 | CVE Notifications |

Tenable Appliance 4.4.0, and possibly prior, contains a flaw in the Web UI that allows for the unauthorized manipulation of the admin password.

Author: Cyberthreat Blog

CVE-2016-3109

CVE-2016-3702

CVE-2016-1518

CVE-2016-1187

CVE-2017-8050