LiveActive security incident?Get immediate response
CVE archive

May 2016

Browse CVE records published in May 2016, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 764 matching CVEs · Page 2 of 16.

Unknown · CVSS Not scored

CVE-2016-10533: express-restify-mongoose is a module to easily create a flexible REST interface for mongoose models.

express-restify-mongoose is a module to easily create a flexible REST interface for mongoose models. express-restify-mongoose 2.4.2 and earlier and 3.0.X through 3.0.1 allows a malicious user to send a request for `GET /User?distinct=password` and get all the passwords for all the users in the database, despite the field being set to private. This can be used for other private data if the malicious user knew what was set as private for specific routes.

Published May 31, 2018 · Updated Sep 17, 2024

Unknown · CVSS Not scored

CVE-2016-7054: ChaCha20/Poly1305 heap-buffer-overflow

In OpenSSL 1.1.0 before 1.1.0c, TLS connections using *-CHACHA20-POLY1305 ciphersuites are susceptible to a DoS attack by corrupting larger payloads. This can result in an OpenSSL crash. This issue is not considered to be exploitable beyond a DoS.

Published May 4, 2017 · Updated Sep 17, 2024

Unknown · CVSS Not scored

CVE-2016-10550: sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB,...

sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS If user input goes into the `limit` or `order` parameters, a malicious user can put in their own SQL statements. This affects sequelize 3.16.0 and earlier.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10593: ibapi is an Interactive Brokers API addon for NodeJS.

ibapi is an Interactive Brokers API addon for NodeJS. ibapi downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. Before 2.5.6, it may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-9099: Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxyS...

Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 prior to 6.7.2.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6, and ProxySG 6.7 prior to 6.7.2.1 are susceptible to an open redirection vulnerability. A remote attacker can use a crafted management console URL in a phishing attack to redirect the target user to a malicious web site.

Published May 11, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10680: adamvr-geoip-lite is a light weight native JavaScript implementation of GeoIP API from MaxMind adamvr-geoip...

adamvr-geoip-lite is a light weight native JavaScript implementation of GeoIP API from MaxMind adamvr-geoip-lite downloads geoip resources over HTTP, which leaves it vulnerable to MITM attacks. This impacts the integrity and availability of this geoip data that may alter the decisions made by an application using this data.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10589: selenium-binaries downloads Selenium related binaries for your OS.

selenium-binaries downloads Selenium related binaries for your OS. selenium-binaries downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10565: operadriver is a Opera Driver for Selenium.

operadriver is a Opera Driver for Selenium. operadriver versions below 0.2.3 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10658: native-opencv is the OpenCV library installed via npm native-opencv downloads binary resources over HTTP, w...

native-opencv is the OpenCV library installed via npm native-opencv downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10532: console-io is a module that allows users to implement a web console in their application.

console-io is a module that allows users to implement a web console in their application. A malicious user could bypass the authentication and execute any command that the user who is running the console-io application 2.2.13 and earlier is able to run. This means that if console-io was running from root, the attacker would have full access to the system. This vulnerability exists because the console-io application does not configure socket.io to require authentication, which allows a malicious user to connect via a websocket to send commands and receive the response.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-7053: CMS Null dereference

In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. This is caused by a bug in the handling of the ASN.1 CHOICE type in OpenSSL 1.1.0 which can result in a NULL value being passed to the structure callback if an attempt is made to free certain invalid encodings. Only CHOICE structures using a callback which do not handle NULL value are affected.

Published May 4, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-9100: Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior t...

Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.13, ASG 6.7 prior to 6.7.3.1, ProxySG 6.5 prior to 6.5.10.6, ProxySG 6.6 prior to 6.6.5.13, and ProxySG 6.7 prior to 6.7.3.1 are susceptible to an information disclosure vulnerability. An attacker with local access to the client host of an authenticated administrator user can, under certain circumstances, obtain sensitive authentication credential information.

Published May 11, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10526: A common setup to deploy to gh-pages on every commit via a CI system is to expose a github token to ENV and...

A common setup to deploy to gh-pages on every commit via a CI system is to expose a github token to ENV and to use it directly in the auth part of the url. In module versions < 0.9.1 the auth portion of the url is outputted as part of the grunt tasks logging function. If this output is publicly available then the credentials should be considered compromised.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10591: Prince is a Node API for executing XML/HTML to PDF renderer PrinceXML via prince(1) CLI.

Prince is a Node API for executing XML/HTML to PDF renderer PrinceXML via prince(1) CLI. prince downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested tarball with an attacker controlled tarball if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10577: ibm_db is an asynchronous/synchronous interface for node.js to IBM DB2 and IBM Informix.

ibm_db is an asynchronous/synchronous interface for node.js to IBM DB2 and IBM Informix. ibm_db before 1.0.2 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10611: strider-sauce is Sauce Labs / Selenium support for Strider.

strider-sauce is Sauce Labs / Selenium support for Strider. strider-sauce downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested zip file with an attacker controlled zip file if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-4785: A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All version...

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. The integrated web server (port 80/tcp) of the affected devices could allow remote attackers to obtain a limited amount of device memory content if network access was obtained. This vulnerability only affects EN100 Ethernet module included in SIPROTEC4 and SIPROTEC Compact devices.

Published May 31, 2016 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10367: In Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x...

In Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch), an unauthenticated Directory Traversal vulnerability can be exploited by issuing a specially crafted HTTP GET request utilizing a simple URL encoding bypass, %252f instead of /.

Published May 3, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10635: broccoli-closure is a Closure compiler plugin for Broccoli.

broccoli-closure is a Closure compiler plugin for Broccoli. broccoli-closure before 1.3.1 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-9335: A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial...

A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running firmware Version 5.0.196 and Stride-Managed Ethernet Switches running firmware Version 5.0.190. Vulnerable versions of Stride-Managed Ethernet switches and Sixnet-Managed Industrial switches use hard-coded HTTP SSL/SSH keys for secure communication. Because these keys cannot be regenerated by users, all products use the same key. The attacker could disrupt communication or compromise the system. CVSS v3 base score: 10, CVSS vector string: (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H). Red Lion Controls recommends updating to SLX firmware Version 5.3.174.

Published May 9, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10570: pngcrush-installer is an installer for Pngcrush.

pngcrush-installer is an installer for Pngcrush. pngcrush-installer versions below 1.8.10 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10573: baryton-saxophone is a module to install and launch Selenium Server for Mac, Linux and Windows.

baryton-saxophone is a module to install and launch Selenium Server for Mac, Linux and Windows. baryton-saxophone versions below 3.0.1 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10529: Droppy versions <3.5.0 does not perform any verification for cross-domain websocket requests.

Droppy versions <3.5.0 does not perform any verification for cross-domain websocket requests. An attacker is able to make a specially crafted page that can send requests as the context of the currently logged in user. For example this means the malicious user could add a new admin account under his control and delete others.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10571: bkjs-wand is imagemagick wand support for node.js and backendjs bkjs-wand versions lower than 0.3.2 downloa...

bkjs-wand is imagemagick wand support for node.js and backendjs bkjs-wand versions lower than 0.3.2 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10590: cue-sdk-node is a Corsair Cue SDK wrapper for node.js.

cue-sdk-node is a Corsair Cue SDK wrapper for node.js. cue-sdk-node downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested zip file with an attacker controlled zip file if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10679: selenium-standalone-painful installs a start-selenium command line to start a standalone selenium server wi...

selenium-standalone-painful installs a start-selenium command line to start a standalone selenium server with chrome-driver. selenium-standalone-painful downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10567: product-monitor is a HTML/JavaScript template for monitoring a product by encouraging product developers to...

product-monitor is a HTML/JavaScript template for monitoring a product by encouraging product developers to gather all the information about the status of a product, including live monitoring, statistics, endpoints, and test results into one place. product-monitor versions below 2.2.5 download JavaScript resources over HTTP, which leaves the module vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested JavaScript file with an attacker controlled JavaScript file if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10530: The airbrake module 0.3.8 and earlier defaults to sending environment variables over HTTP.

The airbrake module 0.3.8 and earlier defaults to sending environment variables over HTTP. Environment variables can often times contain secret keys and other sensitive values. A malicious user could be on the same network as a regular user and intercept all the secret keys the user is sending. This goes against common best practice, which is to use HTTPS.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10569: embedza is a module to create HTML snippets/embeds from URLs using info from oEmbed, Open Graph, meta tags.

embedza is a module to create HTML snippets/embeds from URLs using info from oEmbed, Open Graph, meta tags. embedza versions below 1.2.4 download JavaScript resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested JavaScript file with an attacker controlled JavaScript file if the attacker is on the network or positioned in between the user and the remote server.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10572: mongodb-instance before 0.0.3 installs mongodb locally.

mongodb-instance before 0.0.3 installs mongodb locally. mongodb-instance downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-9097: The Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 pr...

The Symantec Advanced Secure Gateway (ASG) 6.6 prior to 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 prior to 6.6.5.8, and ProxySG 6.7 prior to 6.7.1.2 management consoles do not, under certain circumstances, correctly authorize administrator users. A malicious administrator with read-only access can exploit this vulnerability to access management console functionality that requires read-write access privileges.

Published May 11, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10524: i18n-node-angular is a module used to interact between i18n and angular without using additional resources.

i18n-node-angular is a module used to interact between i18n and angular without using additional resources. A REST API endpoint that is used for development in i18n-node-angular before 1.4.0 was not disabled in production environments a malicious user could fill up the server causing a Denial of Service or content injection.

Published May 31, 2018 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10368: Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior t...

Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the back parameter to the /login URI.

Published May 3, 2017 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2016-10559: selenium-download downloads the latest versions of the selenium standalone server and the chromedriver.

selenium-download downloads the latest versions of the selenium standalone server and the chromedriver. selenium-download before 2.0.7 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled binary if the attacker is on the network or positioned in between the user and the remote server.

Published May 29, 2018 · Updated Sep 16, 2024