Exploit Intelligence Platform – 370K+ CVEs, Ranked Exploits & EPSS Scores

CVE-2016-7233 6.5 MEDIUM EPSS 0.15

Microsoft Excel For Mac - Information Disclosure

Microsoft Word 2007, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Excel for Mac 2011, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2013 SP1, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read) via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability."

CWE-200 Nov 10, 2016

CVE-2016-7226 6.1 MEDIUM 1 PoC Analysis EPSS 0.01

Microsoft Windows 10 - Improper Access Control

Virtual Hard Disk Driver in Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability."

CWE-284 Nov 10, 2016

CVE-2016-7225 6.1 MEDIUM 1 PoC Analysis EPSS 0.01

Microsoft Windows 10 - Improper Access Control

Virtual Hard Disk Driver in Windows 10 Gold, 1511, and 1607 and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability."

CWE-284 Nov 10, 2016

CVE-2016-7224 6.1 MEDIUM 1 PoC Analysis EPSS 0.01

Microsoft Windows 10 - Improper Access Control

Virtual Hard Disk Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability."

CWE-284 Nov 10, 2016

CVE-2016-7223 6.1 MEDIUM EPSS 0.01

Microsoft Windows 10 - Improper Access Control

Virtual Hard Disk Driver in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 does not properly restrict access to files, which allows local users to gain privileges via a crafted application, aka "VHD Driver Elevation of Privilege Vulnerability."

CWE-284 Nov 10, 2016

CVE-2016-7218 4.7 MEDIUM EPSS 0.01

Microsoft Windows 10 - Information Disclosure

Bowser.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to obtain sensitive information via a crafted application, aka "Windows Bowser.sys Information Disclosure Vulnerability."

CWE-200 Nov 10, 2016

CVE-2016-7216 5.5 MEDIUM 1 PoC Analysis EPSS 0.03

Microsoft Windows 7 - Information Disclosure

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandles permissions, which allows local users to gain privileges via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability."

CWE-200 Nov 10, 2016

CVE-2016-7210 6.5 MEDIUM EPSS 0.35

Microsoft Windows 10 - Information Disclosure

atmfd.dll in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows remote attackers to obtain sensitive information from process memory via a crafted Open Type font on a web site, aka "Open Type Font Information Disclosure Vulnerability."

CWE-200 Nov 10, 2016

CVE-2016-7209 5.3 MEDIUM EPSS 0.07

Microsoft Edge - Improper Input Validation

Microsoft Edge allows remote attackers to spoof web content via a crafted web site, aka "Microsoft Edge Spoofing Vulnerability."

CWE-20 Nov 10, 2016

CVE-2016-7386 5.5 MEDIUM 1 PoC Analysis EPSS 0.00

Nvidia Gpu Driver < 342.00 - Information Disclosure

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x70000D4 which may lead to leaking of kernel memory contents to user space through an uninitialized buffer.

CWE-200 Nov 08, 2016

CVE-2016-5025 6.6 MEDIUM EPSS 0.00

Nvidia Gpu Driver < 341.96 - Improper Input Validation

For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVAPI support layer causes a denial of service vulnerability (blue screen crash) within the NVIDIA Windows graphics drivers.

CWE-20 Nov 08, 2016

CVE-2016-4961 5.5 MEDIUM EPSS 0.00

Nvidia Geforce Experience < - - Improper Input Validation

For the NVIDIA Quadro, NVS, and GeForce products, improper sanitization of parameters in the NVStreamKMS.sys API layer caused a denial of service vulnerability (blue screen crash) within the NVIDIA Windows graphics drivers.

CWE-20 Nov 08, 2016

CVE-2016-7851 6.1 MEDIUM 1 PoC Analysis EPSS 0.06

Adobe Connect < 9.5.6 - XSS

Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.

CWE-79 Nov 08, 2016

CVE-2016-9111 6.8 MEDIUM 1 PoC Analysis EPSS 0.03

Citrix Receiver Desktop Lock 4.5 - Auth Bypass

Incorrect access control mechanisms in Citrix Receiver Desktop Lock 4.5 allow an attacker to bypass the authentication requirement by leveraging physical access to a VDI for temporary disconnection of a LAN cable. NOTE: as of 20161208, the vendor could not reproduce the issue, stating "the researcher was unable to provide us with information that would allow us to confirm the behaviour and, despite extensive investigation on test deployments of supported products, we were unable to reproduce the behaviour as he described. The researcher has also, despite additional requests for information, ceased to respond to us."

CWE-284 Nov 07, 2016

CVE-2016-8910 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The rtl8139_cplus_transmit function in hw/net/rtl8139.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) by leveraging failure to limit the ring descriptor count.

CWE-835 Nov 04, 2016

CVE-2016-8909 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The intel_hda_xfer function in hw/audio/intel-hda.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (infinite loop and CPU consumption) via an entry with the same value for buffer length and pointer position.

CWE-835 Nov 04, 2016

CVE-2016-8669 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The serial_update_parameters function in hw/char/serial.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via vectors involving a value of divider greater than baud base.

CWE-369 Nov 04, 2016

CVE-2016-8668 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The rocker_io_writel function in hw/net/rocker/rocker.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds read and QEMU process crash) by leveraging failure to limit DMA buffer size.

CWE-120 Nov 04, 2016

CVE-2016-8667 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The rc4030_write function in hw/dma/rc4030.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (divide-by-zero error and QEMU process crash) via a large interval timer reload value.

CWE-369 Nov 04, 2016

CVE-2016-8578 6.0 MEDIUM EPSS 0.00

QEMU - DoS

The v9fs_iov_vunmarshal function in fsdev/9p-iov-marshal.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (NULL pointer dereference and QEMU process crash) by sending an empty string parameter to a 9P operation.

Nov 04, 2016

CVE & Exploit Intelligence Database

Investigate

Ecosystems

Reference Indexes

Recent Blog Posts

CVEForge Labs

KEV Gaps