cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2016-7039,https://securityvulnerability.io/vulnerability/CVE-2016-7039,,"The IP stack in the Linux kernel through 4.8.2 allows remote attackers to cause a denial of service (stack consumption and panic) or possibly have unspecified other impact by triggering use of the GRO path for large crafted packets, as demonstrated by packets that contain only VLAN headers, a related issue to CVE-2016-8666.",Oracle,"Vm Server,Linux",7.5,HIGH,0.005080000031739473,false,false,false,false,,false,false,2016-10-16T21:00:00.000Z,0
CVE-2016-3991,https://securityvulnerability.io/vulnerability/CVE-2016-3991,,Heap-based buffer overflow in the loadImage function in the tiffcrop tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image with zero tiles.,Oracle,Vm Server,7.8,HIGH,0.01486000046133995,false,false,false,false,,false,false,2016-09-21T18:00:00.000Z,0
CVE-2016-4470,https://securityvulnerability.io/vulnerability/CVE-2016-4470,,"The key_reject_and_link function in security/keys/key.c in the Linux kernel through 4.6.3 does not ensure that a certain data structure is initialized, which allows local users to cause a denial of service (system crash) via vectors involving a crafted keyctl request2 command.",Oracle,Vm Server,5.5,MEDIUM,0.0004600000102072954,false,false,false,false,,false,false,2016-06-27T10:00:00.000Z,0
CVE-2016-4962,https://securityvulnerability.io/vulnerability/CVE-2016-4962,,The libxl device-handling in Xen 4.6.x and earlier allows local OS guest administrators to cause a denial of service (resource consumption or management facility confusion) or gain host OS privileges by manipulating information in guest controlled areas of xenstore.,Oracle,Vm Server,6.7,MEDIUM,0.0027099999133497477,false,false,false,false,,false,false,2016-06-07T14:00:00.000Z,0
CVE-2016-4480,https://securityvulnerability.io/vulnerability/CVE-2016-4480,,"The guest_walk_tables function in arch/x86/mm/guest_walk.c in Xen 4.6.x and earlier does not properly handle the Page Size (PS) page table entry bit at the L4 and L3 page table levels, which might allow local guest OS users to gain privileges via a crafted mapping of memory.",Oracle,Vm Server,8.4,HIGH,0.009150000289082527,false,false,false,false,,false,false,2016-05-18T14:00:00.000Z,0
CVE-2016-3712,https://securityvulnerability.io/vulnerability/CVE-2016-3712,,Integer overflow in the VGA module in QEMU allows local guest OS users to cause a denial of service (out-of-bounds read and QEMU process crash) by editing VGA registers in VBE mode.,Oracle,Vm Server,5.5,MEDIUM,0.00279000005684793,false,false,false,false,,false,false,2016-05-11T21:00:00.000Z,0
CVE-2016-2117,https://securityvulnerability.io/vulnerability/CVE-2016-2117,,"The atl2_probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.",Oracle,Vm Server,7.5,HIGH,0.003220000071451068,false,false,false,false,,false,false,2016-05-02T10:00:00.000Z,0
CVE-2016-3159,https://securityvulnerability.io/vulnerability/CVE-2016-3159,,"The fpu_fxrstor function in arch/x86/i387.c in Xen 4.x does not properly handle writes to the hardware FSW.ES bit when running on AMD64 processors, which allows local guest OS users to obtain sensitive register content information from another guest by leveraging pending exception and mask bits.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-2076.",Oracle,Vm Server,3.8,LOW,0.003010000102221966,false,false,false,false,,false,false,2016-04-13T16:00:00.000Z,0
CVE-2015-8000,https://securityvulnerability.io/vulnerability/CVE-2015-8000,,db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attribute.,Oracle,"Linux,Solaris,Vm Server",,,0.9517899751663208,false,false,false,false,,false,false,2015-12-16T15:00:00.000Z,0
CVE-2015-0452,https://securityvulnerability.io/vulnerability/CVE-2015-0452,,Unspecified vulnerability in the Oracle VM Server for SPARC component in Oracle Sun Systems Products Suite 3.1 and 3.2 allows remote attackers to affect confidentiality via unknown vectors related to Ldom Manager.,Oracle,Vm Server,,,0.0016299999551847577,false,false,false,false,,false,false,2015-04-16T16:00:00.000Z,0