VYPR

CVEs

101,963 total · page 1867 of 2,040

  • CVE-2015-2988HigOct 10, 2017
    risk 0.48cvss 7.4epss 0.01

    Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.

  • CVE-2015-2856HigOct 10, 2017
    risk 0.56cvss 7.5epss 0.57

    Directory traversal vulnerability in the template function in function.inc in Accellion File Transfer Appliance devices before FTA_9_11_210 allows remote attackers to read arbitrary files via a .. (dot dot) in the statecode cookie.

  • CVE-2017-14943HigOct 10, 2017
    risk 0.49cvss 7.5epss 0.01

    Trapeze TransitMaster is vulnerable to information disclosure (emails / hashed passwords) via a modified userID field in JSON data to ManageSubscriber.aspx/GetSubscriber. NOTE: this software is independently deployed at multiple municipal transit systems; it is not found…

  • CVE-2017-5637HigOct 10, 2017
    risk 0.58cvss 7.5epss 0.74

    Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from this issue,…

  • CVE-2017-14603HigOct 10, 2017
    risk 0.49cvss 7.5epss 0.03

    In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allow reading stale buffer contents and when combined with the "nat" and…

  • CVE-2017-13723HigOct 10, 2017
    risk 0.51cvss 7.8epss 0.00

    In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via…

  • CVE-2015-7842HigOct 10, 2017
    risk 0.46cvss 7.1epss 0.01

    Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2 with software before…

  • CVE-2017-14972HigOct 9, 2017
    risk 0.49cvss 7.5epss 0.01

    InFocus Mondopad 2.2.08 is vulnerable to authentication bypass when accessing uploaded files by entering Control-Alt-Delete, and then using Task Manager to reach a file.

  • CVE-2015-2673HigOct 6, 2017
    risk 0.62cvss 8.8epss 0.19

    The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the option_name and…

  • CVE-2015-2143HigOct 6, 2017
    risk 0.60cvss 8.8epss 0.02

    Multiple cross-site request forgery (CSRF) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to hijack the authentication of users for requests that cause an unspecified impact via unknown parameters.

  • CVE-2015-2142HigOct 6, 2017
    risk 0.55cvss 8.0epss 0.02

    Multiple cross-site request forgery (CSRF) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote authenticated users to (1) hijack the authentication of users for requests that cause an unspecified impact via the id parameter to project.php, (2) hijack the…

  • CVE-2015-1429HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.02

    Directory traversal vulnerability in Cybele Software Thinfinity Remote Desktop Workstation 3.0.0.3 32-bit and 64-bit allows remote attackers to download arbitrary files via a .. (dot dot) in an unspecified parameter.

  • CVE-2017-15079HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.03

    The Smush Image Compression and Optimization plugin before 2.7.6 for WordPress allows directory traversal.

  • CVE-2017-9272HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.01

    The Bi-directional driver in IDM 4.5 before 4.0.3.0 could be susceptible to a denial of service attack.

  • CVE-2017-13068HigOct 6, 2017
    risk 0.52cvss 7.5epss 0.03

    QNAP has already patched this vulnerability. This security concern allows a remote attacker to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does not require any privileges to successfully execute this attack.

  • CVE-2017-1002153HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.01

    Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission.

  • CVE-2015-5246HigOct 6, 2017
    risk 0.53cvss 8.1epss 0.01

    The LDAP Authentication functionality in Foreman might allow remote attackers with knowledge of old passwords to gain access via vectors involving the password lifetime period in Active Directory.

  • CVE-2015-2297HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.02

    nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header.

  • CVE-2015-2158HigOct 6, 2017
    risk 0.51cvss 7.8epss 0.03

    Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file.

  • CVE-2014-0047HigOct 6, 2017
    risk 0.51cvss 7.8epss 0.00

    Docker before 1.5 allows local users to have unspecified impact via vectors involving unsafe /tmp usage.

  • CVE-2017-1000254HigOct 6, 2017
    risk 0.49cvss 7.5epss 0.08

    libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in (anonymous or not), it asks the server for the current directory with the `PWD` command. The server then responds with a 257 response containing…

  • CVE-2017-15063HigOct 6, 2017
    risk 0.50cvss 8.8epss 0.01

    There are CSRF vulnerabilities in Subrion CMS 4.1.x through 4.1.5, and before 4.2.0, because of a logic error. Although there is functionality to detect CSRF, it is called too late in the ia.core.php code, allowing (for example) an attack against the query parameter to…

  • CVE-2017-15056HigOct 6, 2017
    risk 0.51cvss 7.8epss 0.01

    p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by an Invalid Pointer Read in PackLinuxElf64::unpack().

  • CVE-2017-12730HigOct 6, 2017
    risk 0.51cvss 7.8epss 0.01

    An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Application services utilize unquoted search path elements, which could allow an attacker to execute arbitrary code with elevated privileges.

  • CVE-2017-14088HigOct 6, 2017
    risk 0.46cvss 7.0epss 0.01

    Memory Corruption Privilege Escalation vulnerabilities in Trend Micro OfficeScan 11.0 and XG allows local attackers to execute arbitrary code and escalate privileges to resources normally reserved for the kernel on vulnerable installations by exploiting tmwfp.sys. An attacker…

  • CVE-2017-14087HigOct 6, 2017
    risk 0.52cvss 7.5epss 0.08

    A Host Header Injection vulnerability in Trend Micro OfficeScan XG (12.0) may allow an attacker to spoof a particular Host header, allowing the attacker to render arbitrary links that point to a malicious website with poisoned Host header webpages.

  • CVE-2017-14086HigOct 6, 2017
    risk 0.52cvss 7.5epss 0.08

    Pre-authorization Start Remote Process vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to start the fcgiOfcDDA.exe executable or cause a potential INI corruption, which may cause the server disk space to…

  • CVE-2017-14084HigOct 6, 2017
    risk 0.56cvss 8.1epss 0.10

    A potential Man-in-the-Middle (MitM) attack vulnerability in Trend Micro OfficeScan 11.0 and XG may allow attackers to execute arbitrary code on vulnerable installations.

  • CVE-2017-14083HigOct 6, 2017
    risk 0.52cvss 7.5epss 0.06

    A vulnerability in Trend Micro OfficeScan 11.0 and XG allows remote unauthenticated users who can access the system to download the OfficeScan encryption file.

  • CVE-2017-13998HigOct 5, 2017
    risk 0.49cvss 7.5epss 0.01

    An Insufficiently Protected Credentials issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The application does not sufficiently protect sensitive information from unauthorized access.

  • CVE-2017-13996HigOct 5, 2017
    risk 0.57cvss 8.8epss 0.03

    A Relative Path Traversal issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web user interface fails to prevent access to critical files that non administrative users should not have access to, which could allow an attacker to create or modify files or execute…

  • CVE-2017-13992HigOct 5, 2017
    risk 0.53cvss 8.1epss 0.04

    An Insufficient Entropy issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The application does not utilize sufficiently random number generation for the web interface authentication mechanism, which could allow remote code execution.

  • CVE-2017-2920HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.02

    An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a…

  • CVE-2017-2880HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.01

    An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execution. An attacker can send specific .GIF file to trigger this vulnerability.

  • CVE-2017-12106HigOct 5, 2017
    risk 0.57cvss 8.8epss 0.02

    A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this…

  • CVE-2017-1378HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.00

    IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) disclosed unencrypted login credentials to Vmware vCenter in the application trace output which could be obtained by a local user. IBM X-Force ID: 126875.

  • CVE-2017-1201HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.00

    IBM BigFix Compliance Analytics 1.9.79 (TEMA SUAv1 SCA SCM) stores user credentials in clear text which can be read by a local user. IBM X-Force ID: 123676.

  • CVE-2017-14353HigOct 5, 2017
    risk 0.58cvss 8.8epss 0.05

    A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution.

  • CVE-2017-15037HigOct 5, 2017
    risk 0.53cvss 8.1epss 0.01

    In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition with a resultant out-of-bounds read, because it can cause t2p->t_name strings to lack a final '\0' character.

  • CVE-2017-15035HigOct 5, 2017
    risk 0.52cvss 7.5epss 0.06

    EmTec PyroBatchFTP before 3.18 allows remote servers to cause a denial of service (application crash).

  • CVE-2017-15033HigOct 5, 2017
    risk 0.49cvss 7.5epss 0.02

    ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.

  • CVE-2017-12270HigOct 5, 2017
    risk 0.49cvss 7.5epss 0.02

    A vulnerability in the gRPC code of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition when the emsd service stops. The vulnerability is due to the…

  • CVE-2017-12263HigOct 5, 2017
    risk 0.50cvss 7.5epss 0.11

    A vulnerability in the web interface of Cisco License Manager software could allow an unauthenticated, remote attacker to download and view files within the application that should be restricted, aka Directory Traversal. The issue is due to improper sanitization of user-supplied…

  • CVE-2017-12246HigOct 5, 2017
    risk 0.56cvss 8.6epss 0.07

    A vulnerability in the implementation of the direct authentication feature in Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) condition.…

  • CVE-2017-12245HigOct 5, 2017
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service vulnerability. If…

  • CVE-2017-12244HigOct 5, 2017
    risk 0.56cvss 8.6epss 0.02

    A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service (DoS) condition because the Snort process restarts unexpectedly. The…

  • CVE-2017-15020HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.02

    dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles pointers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file, related…

  • CVE-2017-15019HigOct 5, 2017
    risk 0.51cvss 7.8epss 0.01

    LAME 3.99.5 has a NULL Pointer Dereference in the hip_decode_init function within libmp3lame/mpglib_interface.c via a malformed mpg file, because of an incorrect calloc call.

  • CVE-2017-15017HigOct 5, 2017
    risk 0.57cvss 8.8epss 0.02

    ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c.

  • CVE-2017-15016HigOct 5, 2017
    risk 0.57cvss 8.8epss 0.02

    ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c.