CVEs classified under CWE-16, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2013-4316 — CVSS 10.0 (critical): Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.
CVE-2013-1221 — CVSS 10.0 (critical): The Tomcat Web Management feature in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 does not properly configure…
CVE-2011-4501 — CVSS 10.0 (critical): The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with…
CVE-2010-4586 — CVSS 10.0 (critical): The default configuration of Opera before 11.00 enables WebSockets functionality, which has unspecified impact and remote attack vectors…
CVE-2010-2977 — CVSS 10.0 (critical): Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 does not properly implement TLS and SSL, which has unspecified impact and…
CVE-2010-2276 — CVSS 10.0 (critical): The default configuration of the build process in Dojo 0.4.x before 0.4.4, 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4…
CVE-2009-3956 — CVSS 10.0 (critical): The default configuration of Adobe Reader and Acrobat 9.x before 9.3, and 8.x before 8.2 on Windows and Mac OS X, does not enable the…
CVE-2009-2357 — CVSS 10.0 (critical): The default configuration of TekRADIUS 3.0 uses the sa account to communicate with Microsoft SQL Server, which makes it easier for remote…
CVE-2008-6820 — CVSS 10.0 (critical): The db2fmp process in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 on Windows runs with "OS privilege," which has unknown…
CVE-2009-0621 — CVSS 10.0 (critical): Cisco ACE 4710 Application Control Engine Appliance before A1(8a) uses default (1) usernames and (2) passwords for (a) the administrator…
CVE-2008-4212 — CVSS 10.0 (critical): Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite…
CVE-2008-1662 — CVSS 10.0 (critical): Unspecified vulnerability in the HP System Administration Manager (SAM) on HP-UX B.11.11 and B.11.23, when used to configure NFS, might…
CVE-2008-1392 — CVSS 10.0 (critical): The default configuration of VMware Workstation 6.0.2, VMware Player 2.0.x before 2.0.3, and VMware ACE 2.0.x before 2.0.1 makes the…
CVE-2007-5419 — CVSS 10.0 (critical): The 3Com 3CRWER100-75 router with 1.2.10ww software, when enabling an optional virtual server, configures this server to accept all source…
CVE-2007-4074 — CVSS 10.0 (critical): The default configuration of Centre for Speech Technology Research (CSTR) Festival 1.95 beta (aka 2.0 beta) on Gentoo Linux, SUSE Linux…
CVE-2005-4837 — CVSS 10.0 (critical): snmp_api.c in snmpd in Net-SNMP 5.2.x before 5.2.2, 5.1.x before 5.1.3, and 5.0.x before 5.0.10.2, when running in master agentx mode…
CVE-2003-1357 — CVSS 10.0 (critical): ProxyView has a default administrator password of Administrator for Embedded Windows NT, which allows remote attackers to gain access.
CVE-2003-1422 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in the installer for SYSLINUX 2.01, when running setuid root, allow local users to gain privileges via…
CVE-2024-46909 — CVSS 9.8 (critical): In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage this vulnerability to execute code in…
CVE-2018-11922 — CVSS 9.8 (critical): Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.
CVE-2019-3949 — CVSS 9.8 (critical): Arlo Basestation firmware 1.12.0.1_27940 and prior firmware contain a networking misconfiguration that allows access to restricted network…
CVE-2018-15386 — CVSS 9.8 (critical): A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication…
CVE-2015-9197 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9635M…
CVE-2016-10388 — CVSS 9.8 (critical): In all Qualcomm products with Android releases from CAF using the Linux kernel, a configuration vulnerability exists when loading a…
CVE-2007-5856 — CVSS 9.4 (critical): Quick Look Apple Mac OS X 10.5.1, when previewing an HTML file, does not prevent plug-ins from making network requests, which might allow…
CVE-2011-2981 — CVSS 9.3 (critical): The event-management implementation in Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other…
CVE-2011-1645 — CVSS 9.3 (critical): The web management interface on the Cisco RVS4000 Gigabit Security Router with software 1.x before 1.3.3.4 and 2.x before 2.0.2.7, and the…
CVE-2010-1913 — CVSS 9.3 (critical): The default configuration of pluginlicense.ini for the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent…
CVE-2009-3376 — CVSS 9.3 (critical): Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override (aka RLO…
CVE-2009-0641 — CVSS 9.3 (critical): sys_term.c in telnetd in FreeBSD 7.0-RELEASE and other 7.x versions deletes dangerous environment variables with a method that was valid…
CVE-2008-6171 — CVSS 9.3 (critical): includes/bootstrap.inc in Drupal 5.x before 5.12 and 6.x before 6.6, when the server is configured for "IP-based virtual hosts," allows…
CVE-2006-7236 — CVSS 9.3 (critical): The default configuration of xterm on Debian GNU/Linux sid and possibly Ubuntu enables the allowWindowOps resource, which allows…
CVE-2007-6199 — CVSS 9.3 (critical): rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files…
CVE-2007-4687 — CVSS 9.3 (critical): The remote_cmds component in Apple Mac OS X 10.4 through 10.4.10 contains a symbolic link from the tftpboot private directory to the root…
CVE-2007-5338 — CVSS 9.3 (critical): Mozilla Firefox before 2.0.0.8 and SeaMonkey before 1.1.5 allow remote attackers to execute arbitrary Javascript with user privileges by…
CVE-2007-2216 — CVSS 9.3 (critical): The tblinf32.dll (aka vstlbinf.dll) ActiveX control for Internet Explorer 5.01, 6 SP1, and 7 uses an incorrect IObjectsafety…
CVE-2006-3291 — CVSS 9.3 (critical): The web interface on Cisco IOS 12.3(8)JA and 12.3(8)JA1, as used on the Cisco Wireless Access Point and Wireless Bridge, reconfigures…
CVE-2004-2687 — CVSS 9.3 (critical): distcc 2.x, as used in XCode 1.5 and others, when not configured to restrict access to the server port, allows remote attackers to execute…
CVE-2004-2692 — CVSS 9.3 (critical): The exec_dir PHP patch (php-exec-dir) 4.3.2 through 4.3.7 with safe mode disabled allows remote attackers to bypass restrictions and…
CVE-1999-0766 — CVSS 9.3 (critical): The Microsoft Java Virtual Machine allows a malicious Java applet to execute arbitrary commands outside of the sandbox environment.
CVE-2023-39385 — CVSS 9.1 (critical): Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause…
CVE-2010-1972 — CVSS 9.0 (critical): The default configuration of HP Client Automation (HPCA) Enterprise Infrastructure (aka Radia) allows remote attackers to read log files…
CVE-1999-0886 — CVSS 9.0 (critical): The security descriptor for RASMAN allows users to point to an alternate location via the Windows NT Service Control Manager.
CVE-2021-22957 — CVSS 8.8 (high): A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor…
CVE-2008-6638 — CVSS 8.8 (high): Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to…
CVE-2018-0262 — CVSS 8.1 (high): A vulnerability in Cisco Meeting Server could allow an unauthenticated, remote attacker to gain unauthorized access to components of, or…
CVE-2010-0386 — CVSS 8.1 (high): The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for…
CVE-2017-3210 — CVSS 7.8 (high): Applications developed using the Portrait Display SDK, versions 2.30 through 2.34, default to insecure configurations which allow arbitrary…
CVE-2013-1222 — CVSS 7.8 (high): The Tomcat Web Management feature in Cisco Unified Customer Voice Portal (CVP) Software before 9.0.1 ES 11 does not properly configure…