VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-cmsz-uwmb-aaak

Essentials
Severities (113)
References (66)
Severity details (64)
Exploits (1)
EPSS
History (0)

Vulnerability ID	VCID-cmsz-uwmb-aaak
Aliases	CVE-2016-5198
Summary	V8 in Google Chrome prior to 54.0.2840.90 for Linux, and 54.0.2840.85 for Android, and 54.0.2840.87 for Windows and Mac included incorrect optimisation assumptions, which allowed a remote attacker to perform arbitrary read/write operations, leading to code execution, via a crafted HTML page.
Status	Published
Exploitability	2.0
Weighted Severity	9.0
Risk	10.0
Affected and Fixed Packages	Package Details

Weaknesses (2)

CWE-125	Out-of-bounds Read
CWE-787	Out-of-bounds Write

System	Score	Found at
generic_textual	Medium	http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-5198.html
cvssv3.1	8.8	http://rhn.redhat.com/errata/RHSA-2016-2672.html
ssvc	Attend	http://rhn.redhat.com/errata/RHSA-2016-2672.html
rhas	Important	https://access.redhat.com/errata/RHSA-2016:2672
cvssv3	8.8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5198.json
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.46080	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.64605	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.64605	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.64605	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.64605	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.6823	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.74718	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.74718	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.74718	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.74718	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75623	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.75689	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
epss	0.85935	https://api.first.org/data/v1/epss?cve=CVE-2016-5198
rhbs	high	https://bugzilla.redhat.com/show_bug.cgi?id=1391356
cvssv3.1	8.8	https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop.html
ssvc	Attend	https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop.html
cvssv3.1	8.8	https://crbug.com/659475
ssvc	Attend	https://crbug.com/659475
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5181
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5182
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5183
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5184
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5185
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5186
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5187
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5188
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5189
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5190
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5191
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5192
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5194
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5198
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5199
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5200
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5201
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5202
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5203
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5204
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5205
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5206
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5207
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5208
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5209
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5210
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5211
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5212
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5213
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5214
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5215
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5216
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5217
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5218
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5219
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5220
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5221
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5222
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5223
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5224
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5225
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5226
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9650
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9651
generic_textual	Medium	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9652
cvssv2	6.8	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2	6.8	https://nvd.nist.gov/vuln/detail/CVE-2016-5198
cvssv3	8.8	https://nvd.nist.gov/vuln/detail/CVE-2016-5198
cvssv3	8.8	https://nvd.nist.gov/vuln/detail/CVE-2016-5198
cvssv3.1	8.8	https://nvd.nist.gov/vuln/detail/CVE-2016-5198
archlinux	Critical	https://security.archlinux.org/AVG-109
generic_textual	Medium	https://ubuntu.com/security/notices/USN-3133-1
cvssv3.1	8.8	http://www.securityfocus.com/bid/94079
ssvc	Attend	http://www.securityfocus.com/bid/94079
cvssv3.1	8.8	http://www.securitytracker.com/id/1037224
ssvc	Attend	http://www.securitytracker.com/id/1037224

Reference id	Reference type	URL
		http://people.canonical.com/~ubuntu-security/cve/2016/CVE-2016-5198.html
		http://rhn.redhat.com/errata/RHSA-2016-2672.html
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5198.json
		https://api.first.org/data/v1/epss?cve=CVE-2016-5198
		https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop.html
		https://crbug.com/659475
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5181
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5182
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5183
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5184
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5185
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5186
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5187
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5188
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5189
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5190
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5191
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5192
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5193
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5194
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5198
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5199
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5200
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5201
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5202
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5203
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5204
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5205
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5206
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5207
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5208
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5209
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5210
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5211
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5212
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5213
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5214
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5215
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5216
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5217
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5218
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5219
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5220
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5221
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5222
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5223
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5224
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5225
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5226
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9650
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9651
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9652
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
		https://ubuntu.com/security/notices/USN-3133-1
		http://www.securityfocus.com/bid/94079
		http://www.securitytracker.com/id/1037224
1391356		https://bugzilla.redhat.com/show_bug.cgi?id=1391356
ASA-201612-18		https://security.archlinux.org/ASA-201612-18
AVG-109		https://security.archlinux.org/AVG-109
cpe:2.3:a:google:chrome::::::::		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:google:chrome::::::::
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:::::::*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*		https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:::::::*
CVE-2016-5198		https://nvd.nist.gov/vuln/detail/CVE-2016-5198
RHSA-2016:2672		https://access.redhat.com/errata/RHSA-2016:2672
USN-3133-1		https://usn.ubuntu.com/3133-1/

Data source	KEV
Date added	June 8, 2022
Description	Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to perform read/write operations, leading to code execution, via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Required action	Apply updates per vendor instructions.
Due date	June 22, 2022
Note	https://nvd.nist.gov/vuln/detail/CVE-2016-5198
Ransomware campaign use	Unknown

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://rhn.redhat.com/errata/RHSA-2016-2672.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T17:18:09Z/ Found at http://rhn.redhat.com/errata/RHSA-2016-2672.html

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-5198.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop.html

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T17:18:09Z/ Found at https://chromereleases.googleblog.com/2016/11/stable-channel-update-for-desktop.html

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://crbug.com/659475

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T17:18:09Z/ Found at https://crbug.com/659475

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2016-5198

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2016-5198

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2016-5198

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2016-5198

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.securityfocus.com/bid/94079

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T17:18:09Z/ Found at http://www.securityfocus.com/bid/94079

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at http://www.securitytracker.com/id/1037224

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-01-29T17:18:09Z/ Found at http://www.securitytracker.com/id/1037224

Exploit Prediction Scoring System (EPSS)

Percentile	0.97533
EPSS Score	0.46080
Published At	Nov. 1, 2024, midnight

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.