CVE-2026-0016

CVE-2026-0016 affects CredentialManagerService.java (updateProvidersWhenServiceRemoved). The vulnerability arises from a permissions bypass that could allow overriding settings across users, causing local information disclosure with no extra execution privileges required. Exploitation status is n...

RHSA-2026:0016 Red Hat Security Advisory: firefox security update

Bulletin has no description...

EUVD-2023-35132

Malicious code in bioql PyPI...

VMware vCenter Server 7.0.x < 7.0 U3w / 8.0.x < 8.0 U3g SMTP Header Injection (VMSA-2025-0016)

The version of VMware vCenter Server installed on the remote host is 7.0.x prior to 7.0 U3w, or 8.0.x prior to 8.0 U3g. It is, therefore, affected by a vulnerability as referenced in the VMSA-2025-0016 advisory: - VMware vCenter contains an SMTP header injection vulnerability. A malicious actor...

CVE-2025-0016

creationtimestamp| type| source ---|---|--- 2025-09-30 08:28:35+00:00| seen| https://gist.github.com/Darkcrai86/c13969010103b69e0105cf1f0b7454db...

CVE-2023-30768

Improper access control in the IntelR Server Board S2600WTT belonging to the IntelR Server Board S2600WT Family with the BIOS version 0016 may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2020-0016

In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-171413483...

CVE-2025-27672

Vasion Print formerly PrinterLogic before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows OAUTH Security Bypass OVE-20230524-0016...

VMware ESXi 6.7 / 7.0 Multiple Vulnerabilities (VMSA-2022-0016)

The version of VMware ESXi installed on the remote host is prior to 6.7 P07, or 7.x prior to 7.0 Update 3e. It is, therefore, affected by multiple vulnerabilities as referenced in the VMSA-2022-0016 advisory: - Incomplete cleanup of multi-core shared buffers for some IntelR Processors may allow a...

CVE-2024-0016

creationtimestamp| type| source ---|---|--- 2024-02-16 21:21:47+00:00| seen| https://t.me/ctinow/186631...

CVE-2024-0016

In multiple locations, there is a possible out of bounds read due to a missing bounds check. This could lead to paired device information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-0016

CVE-2024-0016 is an Android/Bluetooth-related issue described as an out-of-bounds read caused by a missing bounds check. It could lead to disclosure of paired device information without any user interaction or privileges. The connected documents confirm the vulnerability exists in multiple locati...

CentOS 8 : webkit2gtk3 (CESA-2023:0016)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:0016 advisory. - A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS...

KB5034134: Windows 10 LTS 1507 Security Update (January 2024)

The remote Windows host is missing security update 5034134. It is, therefore, affected by multiple vulnerabilities - Microsoft ODBC Driver Remote Code Execution Vulnerability CVE-2024-20654 - BitLocker Security Feature Bypass Vulnerability CVE-2024-20666 - Windows Kerberos Security Feature Bypass...

RHEL 8 : tigervnc (RHSA-2024:0016)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0016 advisory. Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine...

Rocky Linux 8 : webkit2gtk3 (RLSA-2023:0016)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0016 advisory. - A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS...

SUSE CVE-2014-0016

stunnel before 5.00, when using fork threading, does not properly update the state of the OpenSSL pseudo-random number generator PRNG, which causes subsequent children with the same process ID to use the same entropy pool and allows remote attackers to obtain private keys for EC ECDSA or DSA...

CVE-2023-0016

creationtimestamp| type| source ---|---|--- 2023-01-10 07:28:05+00:00| seen| https://t.me/cibsecurity/56208...

CVE-2023-0016 SQL Injection vulnerability in SAP Business Planning and Consolidation MS

SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries. The exploitation of this issue could lead to SQL injection vulnerability and could allow an attacker to access, modify, and/or delete data from the backend database...

Oracle Linux 8 : webkit2gtk3 (ELSA-2023-0016)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0016 advisory. 2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153735 Tenable has extracted the preceding description block directly from the Oracle Linux security...