How severe is CVE-2016-1524?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.6 out of 10.

What type of vulnerability is CVE-2016-1524?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2016-1524

CRITICAL Year: 2016

CVSS v3 Score

9.6

Critical

CVSS v2 Score

8.3

High

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Multiple unrestricted file upload vulnerabilities in NETGEAR Management System NMS300 1.5.0.11 and earlier allow remote attackers to execute arbitrary Java code by using (1) fileUpload.do or (2) lib-1.0/external/flash/fileUpload.do to upload a JSP file, and then accessing it via a direct request for a /null URI.

CVE-2015-8789

CRITICAL

CVSS:9.6(Critical)

Use-after-free vulnerability in the EbmlMaster::Read function in libEBML before 1.3.3 allows context-dependent attackers to have unspecified impact via a "deeply nested element with infinite size" fol...

NVD-CWE-Other2015

CVE-2016-0686

CRITICAL

CVSS:9.6(Critical)

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 and Java SE Embedded 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Serial...

NVD-CWE-Other2016

CVE-2016-0687

CRITICAL

CVSS:9.6(Critical)

NVD-CWE-Other2016

CVE-2016-3443

CRITICAL

CVSS:9.6(Critical)

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous informati...

NVD-CWE-Other2016

CVE-2016-3587

CRITICAL

CVSS:9.6(Critical)

Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Hotspot.

NVD-CWE-Other2016

CVE-2016-3598

CRITICAL

CVSS:9.6(Critical)

Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different ...

NVD-CWE-Other2016

CVE-2016-1524

Vulnerability Description

Related Vulnerabilities

CVE-2015-8789

CVE-2016-0686

CVE-2016-0687

CVE-2016-3443

CVE-2016-3587

CVE-2016-3598