How severe is CVE-2016-9338?

This vulnerability has a severity rating of LOW with a CVSS score of 2.7 out of 10.

What type of vulnerability is CVE-2016-9338?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2016-9338

LOW Year: 2016

CVSS v3 Score

2.7

Low

CVSS v2 Score

4.0

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

An issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 controller 1763-L16AWA, Series A and B, Version 14.000 and prior versions; 1763-L16BBB, Series A and B, Version 14.000 and prior versions; 1763-L16BWA, Series A and B, Version 14.000 and prior versions; and 1763-L16DWD, Series A and B, Version 14.000 and prior versions. Because of an Incorrect Permission Assignment for Critical Resource, users with administrator privileges may be able to remove all administrative users requiring a factory reset to restore ancillary web server function. Exploitation of this vulnerability will still allow the affected device to function in its capacity as a controller.

CVE-2016-2868

LOW

CVSS:2.7(Low)

IBM Security QRadar SIEM 7.2.x before 7.2.7 allows remote authenticated administrators to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity refe...

NVD-CWE-Other2016

CVE-2016-5462

LOW

CVSS:2.7(Low)

Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote administrators to affect confidentiality via vecto...

NVD-CWE-Other2016

CVE-2017-10254

LOW

CVSS:2.7(Low)

Vulnerability in the PeopleSoft Enterprise FSCM component of Oracle PeopleSoft Products (subcomponent: Staffing Front Office). The supported version that is affected is 9.2. Easily exploitable vulnera...

NVD-CWE-Other2017

CVE-2017-10426

LOW

CVSS:2.7(Low)

NVD-CWE-Other2017

CVE-2017-9843

LOW

CVSS:2.7(Low)

SAP NetWeaver AS ABAP 7.40 allows remote authenticated users with certain privileges to cause a denial of service (process crash) via vectors involving disp+work.exe, aka SAP Security Note 2406841.

NVD-CWE-Other2017

CVE-2018-2497

LOW

CVSS:2.7(Low)

The security audit log of SAP HANA, versions 1.0 and 2.0, does not log SELECT events if these events are part of a statement with the syntax CREATE TABLE <table_name> AS SELECT.

NVD-CWE-Other2018

CVE-2016-9338

Vulnerability Description

Related Vulnerabilities

CVE-2016-2868

CVE-2016-5462

CVE-2017-10254

CVE-2017-10426

CVE-2017-9843

CVE-2018-2497