Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Carbonblack Subscribe
Filtered by product Carbon Black
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-9568 1 Carbonblack 1 Carbon Black 2018-03-21 10.0 HIGH 9.8 CRITICAL
A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions.
CVE-2016-9570 1 Carbonblack 1 Carbon Black 2018-03-07 5.0 MEDIUM 7.5 HIGH
cb.exe in Carbon Black 5.1.1.60603 allows attackers to cause a denial of service (out-of-bounds read, invalid pointer dereference, and application crash) by leveraging access to the NetMon named pipe.
CVE-2016-9569 1 Carbonblack 1 Carbon Black 2018-03-07 4.9 MEDIUM 4.4 MEDIUM
The cbstream.sys driver in Carbon Black 5.1.1.60603 allows local users with admin privileges to cause a denial of service (out-of-bounds read and system crash) via a large counter value in an 0x62430028 IOCTL call.
CVE-2014-1615 1 Carbonblack 1 Carbon Black 2014-04-23 6.8 MEDIUM N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in Carbon Black before 4.1.0 allow remote attackers to hijack the authentication of administrators for requests that add new administrative users and have other unspecified action, as demonstrated by a request to api/user.