VYPR

CVEs

100,081 total · page 1903 of 2,002

  • CVE-2015-8763HigMar 27, 2017
    risk 0.53cvss 8.1epss 0.01

    The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impact via a crafted (1) commit or (2) confirm message, which triggers an out-of-bounds read.

  • CVE-2015-0864HigMar 27, 2017
    risk 0.52cvss 8.0epss 0.01

    Samsung Account (AKA com.osp.app.signin) before 1.6.0069 and 2.x before 2.1.0069 allows man-in-the-middle attackers to obtain sensitive information and execute arbitrary code.

  • CVE-2015-0863HigMar 27, 2017
    risk 0.52cvss 8.0epss 0.01

    GALAXY Apps (aka Samsung Apps, Samsung Updates, or com.sec.android.app.samsungapps) before 14120405.03.012 allows man-in-the-middle attackers to obtain sensitive information and execute arbitrary code.

  • CVE-2017-5932HigMar 27, 2017
    risk 0.51cvss 7.8epss 0.00

    The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote) character and a command substitution metacharacter.

  • CVE-2017-5931HigMar 27, 2017
    risk 0.57cvss 8.8epss 0.01

    Integer overflow in hw/virtio/virtio-crypto.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (QEMU process crash) or possibly execute arbitrary code on the host via a crafted virtio-crypto request, which triggers a heap-based…

  • CVE-2017-5899HigMar 27, 2017
    risk 0.49cvss 7.0epss 0.01

    Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a .. (dot dot) in the randstr argument.

  • CVE-2017-5850HigMar 27, 2017
    risk 0.53cvss 7.5epss 0.17

    httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a series of requests for a large file using an HTTP Range header.

  • CVE-2017-5330HigMar 27, 2017
    risk 0.51cvss 7.8epss 0.03

    ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications.

  • CVE-2015-8026HigMar 27, 2017
    risk 0.44cvss 7.8epss 0.04

    Heap-based buffer overflow in the verify_vbr_checksum function in exfatfsck in exfat-utils before 1.2.1 allows remote attackers to cause a denial of service (infinite loop) or possibly execute arbitrary code via a crafted filesystem.

  • CVE-2017-6957HigMar 27, 2017
    risk 0.53cvss 8.1epss 0.05

    Stack-based buffer overflow in the firmware in Broadcom Wi-Fi HardMAC SoC chips, when the firmware supports CCKM Fast and Secure Roaming and the feature is enabled in RAM, allows remote attackers to execute arbitrary code via a crafted reassociation response frame with a Cisco…

  • CVE-2017-6069HigMar 27, 2017
    risk 0.57cvss 8.8epss 0.01

    Subrion CMS 4.0.5 has CSRF in admin/blog/add/. The attacker can add any tag, and can optionally insert XSS via the tags parameter.

  • CVE-2017-6068HigMar 27, 2017
    risk 0.57cvss 8.8epss 0.01

    Subrion CMS 4.0.5 has CSRF in admin/blocks/add/. The attacker can create any block, and can optionally insert XSS via the content parameter.

  • CVE-2017-6066HigMar 27, 2017
    risk 0.57cvss 8.8epss 0.01

    Subrion CMS 4.0.5 has CSRF in admin/languages/edit/1/. The attacker can perform any Edit Language action, and can optionally insert XSS via the title parameter.

  • CVE-2017-6002HigMar 27, 2017
    risk 0.57cvss 8.8epss 0.00

    Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. The attacker can add any blog entry, and can optionally insert XSS into that entry via the body parameter.

  • CVE-2017-7263HigMar 26, 2017
    risk 0.51cvss 7.8epss 0.01

    The bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted BMP image. NOTE: this vulnerability exists because of an…

  • CVE-2016-10273HigMar 26, 2017
    risk 0.57cvss 8.8epss 0.03

    Multiple stack buffer overflow vulnerabilities in Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC) version 1.13, and Air:Link 59300 (AL59300) version 1.04 (Rev. 4) devices allow remote attackers to execute arbitrary code or crash the…

  • CVE-2016-10272HigMar 24, 2017
    risk 0.44cvss 7.8epss 0.02

    LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to "WRITE of size 2048" and libtiff/tif_next.c:64:9.

  • CVE-2016-10271HigMar 24, 2017
    risk 0.44cvss 7.8epss 0.02

    tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13.

  • CVE-2016-10270HigMar 24, 2017
    risk 0.44cvss 7.8epss 0.02

    LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 8" and libtiff/tif_read.c:523:22.

  • CVE-2016-10269HigMar 24, 2017
    risk 0.44cvss 7.8epss 0.02

    LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6 and 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted TIFF image,…

  • CVE-2016-10268HigMar 24, 2017
    risk 0.44cvss 7.8epss 0.02

    tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service (integer underflow and heap-based buffer under-read) or possibly have unspecified other impact via a crafted TIFF image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23.

  • CVE-2017-7243HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.02

    Eclipse tinydtls 0.8.2 for Eclipse IoT allows remote attackers to cause a denial of service (DTLS peer crash) by sending a "Change cipher spec" packet without pre-handshake.

  • CVE-2017-7240HigMar 24, 2017
    risk 0.53cvss 7.5epss 0.17

    An issue was discovered on Miele Professional PST10 devices. The corresponding embedded webserver "PST10 WebServer" typically listens to port 80 and is prone to a directory traversal attack; therefore, an unauthenticated attacker may be able to exploit this issue to access…

  • CVE-2017-5510HigMar 24, 2017
    risk 0.51cvss 7.8epss 0.02

    coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.

  • CVE-2017-5509HigMar 24, 2017
    risk 0.51cvss 7.8epss 0.02

    coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.

  • CVE-2017-5507HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.06

    Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.

  • CVE-2017-5506HigMar 24, 2017
    risk 0.51cvss 7.8epss 0.02

    Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.

  • CVE-2017-5335HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.08

    The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service (out-of-memory error and crash) via a crafted OpenPGP certificate.

  • CVE-2016-7797HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.03

    Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an unauthenticated connection.

  • CVE-2016-2225HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.02

    The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via a crafted packet.

  • CVE-2016-2224HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.03

    The __decode_dotted function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (infinite loop) via vectors involving compressed items in a reply.

  • CVE-2016-10146HigMar 24, 2017
    risk 0.42cvss 7.5epss 0.05

    Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

  • CVE-2016-10132HigMar 24, 2017
    risk 0.49cvss 7.5epss 0.02

    regexp.c in Artifex Software, Inc. MuJS allows attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to regular expression compilation.

  • CVE-2016-10129HigMar 24, 2017
    risk 0.42cvss 7.5epss 0.04

    The Git Smart Protocol support in libgit2 before 0.24.6 and 0.25.x before 0.25.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via an empty packet line.

  • CVE-2017-6087HigMar 24, 2017
    risk 0.61cvss 8.8epss 0.07

    EyesOfNetwork ("EON") 5.0 and earlier allows remote authenticated users to execute arbitrary code via shell metacharacters in the selected_events[] parameter in the (1) acknowledge, (2) delete, or (3) ownDisown function in module/monitoring_ged/ged_functions.php or the (4)…

  • CVE-2017-5869HigMar 24, 2017
    risk 0.63cvss 8.8epss 0.35

    Directory traversal vulnerability in the file import feature in Nuxeo Platform 6.0, 7.1, 7.2, and 7.3 allows remote authenticated users to upload and execute arbitrary JSP code via a .. (dot dot) in the X-File-Name header.

  • CVE-2016-10149HigMar 24, 2017
    risk 0.42cvss 7.5epss 0.04

    XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attackers to read arbitrary files via a crafted SAML XML request or response.

  • CVE-2017-6369HigMar 24, 2017
    risk 0.57cvss 8.8epss 0.03

    Insufficient checks in the UDF subsystem in Firebird 2.5.x before 2.5.7 and 3.0.x before 3.0.2 allow remote authenticated users to execute code by using a 'system' entrypoint from fbudf.so.

  • CVE-2017-5199HigMar 24, 2017
    risk 0.57cvss 8.8epss 0.03

    The editbanner feature in SolarWinds LEM (aka SIEM) through 6.3.1 allows remote authenticated users to execute arbitrary code by editing /usr/local/contego/scripts/mgrconfig.pl.

  • CVE-2017-5198HigMar 24, 2017
    risk 0.57cvss 8.8epss 0.01

    SolarWinds LEM (aka SIEM) before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh.

  • CVE-2017-7246HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.03

    Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.

  • CVE-2017-7245HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.02

    Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file.

  • CVE-2015-8625HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.02

    MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 do not properly sanitize parameters when calling the cURL library, which allows remote attackers to read arbitrary files via an @ (at sign) character in unspecified POST array…

  • CVE-2015-8624HigMar 23, 2017
    risk 0.57cvss 8.8epss 0.01

    The User::matchEditToken function in includes/User.php in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1.25.4, and 1.26.x before 1.26.1 does not perform token comparison in constant time before determining if a debugging message should be logged, which allows…

  • CVE-2015-8623HigMar 23, 2017
    risk 0.57cvss 8.8epss 0.01

    The User::matchEditToken function in includes/User.php in MediaWiki before 1.23.12 and 1.24.x before 1.24.5 does not perform token comparison in constant time before returning, which allows remote attackers to guess the edit token and bypass CSRF protection via a timing attack,…

  • CVE-2016-9399HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.04

    The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.

  • CVE-2016-9398HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.06

    The jpc_floorlog2 function in jpc_math.c in JasPer before 1.900.17 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.

  • CVE-2016-9397HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.04

    The jpc_dequantize function in jpc_dec.c in JasPer 1.900.13 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.

  • CVE-2016-9396HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.06

    The JPC_NOMINALGAIN function in jpc/jpc_t1cod.c in JasPer through 2.0.12 allows remote attackers to cause a denial of service (JPC_COX_RFT assertion failure) via unspecified vectors.

  • CVE-2016-9391HigMar 23, 2017
    risk 0.49cvss 7.5epss 0.04

    The jpc_bitstream_getbits function in jpc_bs.c in JasPer before 2.0.10 allows remote attackers to cause a denial of service (assertion failure) via a very large integer.