CVE-2016-2164

EPSS 1.23% · P79 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-2164

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The (1) FileService.importFileByInternalUserId and (2) FileService.importFile SOAP API methods in Apache OpenMeetings before 3.1.1 improperly use the Java URL class without checking the specified protocol handler, which allows remote attackers to read arbitrary files by attempting to upload a file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apache OpenMeetings 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apache OpenMeetings是美国阿帕奇（Apache）软件基金会所研发的一套多语言可定制的视频会议和协作系统，它支持音频、视频并允许用户查看每个与会者的桌面等。 Apache OpenMeetings 3.1.1之前版本的FileService.importFileByInternalUserId和FileService.importFile SOAP API方法中存在安全漏洞，该漏洞源于程序使用Java URL类时没有检查API调用中指定的协议处理器。攻击者可利用该漏洞读取系统中的任意文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2016-2164

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-2164

请登录查看更多情报信息。

http://openmeetings.apache.org/security.htmlx_refsource_CONFIRM
http://packetstormsecurity.com/files/136434/Apache-OpenMeetings-3.0.7-Arbitary-File-Read.htmlx_refsource_MISC
https://www.apache.org/dist/openmeetings/3.1.1/CHANGELOGx_refsource_CONFIRM
http://www.securityfocus.com/archive/1/537887/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2016-2164

Same Patch Batch · n/a · 2016-04-11 · 40 CVEs total

CVE-2015-8240		多款F5产品拒绝服务漏洞
CVE-2012-6700		dhcpcd 拒绝服务漏洞
CVE-2016-1235		OAR 安全漏洞
CVE-2016-2193		PostgreSQL 安全绕过漏洞
CVE-2016-2385		kamailio SEAS模块基于堆的缓冲区溢出
CVE-2016-3065		PostgreSQL pageinspect扩展安全漏洞
CVE-2016-3659		Cacti SQL注入漏洞
CVE-2016-3675		Huawei Policy Center SQL注入漏洞
CVE-2016-3676		Huawei E3276s USB modems 安全漏洞
CVE-2016-3678		多款Huawei Quidway交换机拒绝服务漏洞
CVE-2012-6699		dhcpcd 拒绝服务漏洞
CVE-2016-0709		Apache Jetspeed Portal Site Manager 路径遍历漏洞
CVE-2016-0710		Apache Jetspeed User Manager服务SQL注入漏洞
CVE-2016-0711		Apache Jetspeed 跨站脚本漏洞
CVE-2016-0712		Apache Jetspeed 跨站脚本漏洞
CVE-2016-0783		Apache OpenMeetings 安全漏洞
CVE-2016-0784		Apache OpenMeetings 目录遍历漏洞
CVE-2016-2163		Apache OpenMeetings 跨站脚本漏洞
CVE-2016-2171		Apache Jetspeed User Manager服务安全漏洞
CVE-2016-2393		Lenovo Fingerprint Manager和Touch Fingerprint 安全漏洞

Showing top 20 of 40 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2016-2164

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-2164

I. Basic Information for CVE-2016-2164

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-2164

III. Intelligence Information for CVE-2016-2164

Same Patch Batch · n/a · 2016-04-11 · 40 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-2164

Leave a comment