Lucene search

K

PRIOn knowledge basePRION:CVE-2016-4448

HistoryJun 09, 2016 - 4:59 p.m.

Format string

2016-06-0916:59:00

PRIOn knowledge base

www.prio-n.com

11

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

82.8%

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.

CPENameOperatorVersion
icloudlt5.2.1
iphone_osle9.3.2
itunesle12.4.1
mac_os_xlt10.11.6
tvosle9.2.1
watchosle2.2.1
icewall_federation_agenteq3.0
web_gatewayle7.5.2.10
web_gatewayge7.6.0.0
web_gatewayle7.6.2.3

Rows per page:

1-10 of 391

References

lists.apple.com/archives/security-announce/2016/Jul/msg00000.html

lists.apple.com/archives/security-announce/2016/Jul/msg00001.html

lists.apple.com/archives/security-announce/2016/Jul/msg00002.html

lists.apple.com/archives/security-announce/2016/Jul/msg00003.html

lists.apple.com/archives/security-announce/2016/Jul/msg00005.html

rhn.redhat.com/errata/RHSA-2016-2957.html

www.openwall.com/lists/oss-security/2016/05/25/2

www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

www.securityfocus.com/bid/90856

www.securitytracker.com/id/1036348

www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.404722

xmlsoft.org/news.html

access.redhat.com/errata/RHSA-2016:1292

bugzilla.redhat.com/show_bug.cgi?id=1338700

git.gnome.org/browse/libxml2/commit/?id=4472c3a5a5b516aaf59b89be602fbce52756c3e9

git.gnome.org/browse/libxml2/commit/?id=502f6a6d08b08c04b3ddfb1cd21b2f699c1b7f5b

h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05194709

kc.mcafee.com/corporate/index?page=content&id=SB10170

support.apple.com/HT206899

support.apple.com/HT206901

support.apple.com/HT206902

support.apple.com/HT206903

support.apple.com/HT206904

support.apple.com/HT206905

www.tenable.com/security/tns-2016-18

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.01 Low

EPSS

Percentile

82.8%

Related for PRION:CVE-2016-4448

veracode1 cve1 ubuntucve1 f52 redhatcve1 debiancve1 ibm20 slackware1 cloudfoundry1 nessus21 openvas19 ubuntu1 oraclelinux1 centos1 suse5 apple12 redhat2 amazon1 fedora2 mageia1 symantec1 tenable1