VYPR

CVEs

11,223 total · page 200 of 225

  • CVE-2016-7923CriJan 28, 2017
    risk 0.64cvss 9.8epss 0.03

    The ARP parser in tcpdump before 4.9.0 has a buffer overflow in print-arp.c:arp_print().

  • CVE-2016-7922CriJan 28, 2017
    risk 0.64cvss 9.8epss 0.03

    The AH parser in tcpdump before 4.9.0 has a buffer overflow in print-ah.c:ah_print().

  • CVE-2017-3324CriJan 27, 2017
    risk 0.65cvss 10.0epss 0.02

    Vulnerability in the Primavera P6 Enterprise Project Portfolio Management component of Oracle Primavera Products Suite (subcomponent: Web Access). Supported versions that are affected are 8.2, 8.3, 8.4, 15.1, 15.2, 16.1 and 16.2. Easily exploitable vulnerability allows…

  • CVE-2017-3310CriJan 27, 2017
    risk 0.59cvss 9.0epss 0.02

    Vulnerability in the OJVM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Easily exploitable vulnerability allows low privileged attacker having Create Session, Create Procedure privilege with network access via multiple…

  • CVE-2017-3289CriJan 27, 2017
    risk 0.63cvss 9.6epss 0.02

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network access…

  • CVE-2017-3272CriJan 27, 2017
    risk 0.63cvss 9.6epss 0.03

    Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111. Easily exploitable vulnerability allows unauthenticated attacker with network…

  • CVE-2017-3266CriJan 27, 2017
    risk 0.64cvss 9.8epss 0.03

    Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Supported versions that are affected are 8.5.2 and 8.5.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to…

  • CVE-2017-3248CriJan 27, 2017
    risk 0.74cvss 9.8epss 0.97

    Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.0 and 12.2.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network…

  • CVE-2017-3241CriJan 27, 2017
    risk 0.64cvss 9.0epss 0.33

    Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u131, 7u121 and 8u112; Java SE Embedded: 8u111; JRockit: R28.3.12. Difficult to exploit vulnerability allows…

  • CVE-2016-9636CriJan 27, 2017
    risk 0.64cvss 9.8epss 0.09

    Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'write count' that goes beyond…

  • CVE-2016-9635CriJan 27, 2017
    risk 0.64cvss 9.8epss 0.09

    Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by providing a 'skip count' that goes beyond…

  • CVE-2016-9634CriJan 27, 2017
    risk 0.64cvss 9.8epss 0.09

    Heap-based buffer overflow in the flx_decode_delta_fli function in gst/flx/gstflxdec.c in the FLIC decoder in GStreamer before 1.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via the start_line parameter.

  • CVE-2016-8325CriJan 27, 2017
    risk 0.59cvss 9.1epss 0.02

    Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: Internal Operations). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily exploitable vulnerability allows…

  • CVE-2016-5528CriJan 27, 2017
    risk 0.59cvss 9.0epss 0.02

    Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Security). Supported versions that are affected are 2.1.1, 3.0.1 and 3.1.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple…

  • CVE-2016-8411CriJan 27, 2017
    risk 0.64cvss 9.8epss 0.01

    Buffer overflow vulnerability while processing QMI QOS TLVs. Product: Android. Versions: versions that have qmi_qos_srvc.c. Android ID: 31805216. References: QC CR#912775.

  • CVE-2016-9054CriJan 26, 2017
    risk 0.64cvss 9.8epss 0.08

    An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_list_by_set_binid resulting in remote code…

  • CVE-2016-9052CriJan 26, 2017
    risk 0.64cvss 9.8epss 0.08

    An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow in the function as_sindex__simatch_by_iname resulting in remote code execution.…

  • CVE-2016-6912CriJan 26, 2017
    risk 0.64cvss 9.8epss 0.04

    Double free vulnerability in the gdImageWebPtr function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via large width and height values.

  • CVE-2016-9307CriJan 25, 2017
    risk 0.64cvss 9.8epss 0.02

    Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code when reading or converting malformed 3DS format files.

  • CVE-2016-9306CriJan 25, 2017
    risk 0.64cvss 9.8epss 0.02

    Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code when reading or converting malformed DAE format files.

  • CVE-2016-9305CriJan 25, 2017
    risk 0.64cvss 9.8epss 0.01

    Improper handling in the Autodesk FBX-SDK before 2017.1 of type mismatches and previously deleted objects related to reading and converting malformed FBX format files can allow attackers to gain access to uninitialized pointers.

  • CVE-2016-9303CriJan 25, 2017
    risk 0.64cvss 9.8epss 0.04

    Multiple buffer overflows in the Autodesk FBX-SDK before 2017.1 can allow attackers to execute arbitrary code or cause an infinite loop condition when reading or converting malformed FBX format files.

  • CVE-2016-10160CriJan 24, 2017
    risk 0.57cvss 9.8epss 0.07

    Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch.

  • CVE-2016-9081CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    Joomla! 3.4.4 through 3.6.3 allows attackers to reset username, password, and user group assignments and possibly perform other user account modifications via unspecified vectors.

  • CVE-2016-7567CriJan 23, 2017
    risk 0.68cvss 9.8epss 0.12

    Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string.

  • CVE-2016-7036CriJan 23, 2017
    risk 0.57cvss 9.8epss 0.02

    python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failure to use a constant time comparison for HMAC keys.

  • CVE-2016-6603CriJan 23, 2017
    risk 0.74cvss 9.8epss 0.87

    ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to bypass authentication and impersonate arbitrary users via the UserName HTTP header.

  • CVE-2016-6602CriJan 23, 2017
    risk 0.71cvss 9.8epss 0.55

    ZOHO WebNMS Framework 5.2 and 5.2 SP1 use a weak obfuscation algorithm to store passwords, which allows context-dependent attackers to obtain cleartext passwords by leveraging access to WEB-INF/conf/securitydbData.xml. NOTE: this issue can be combined with CVE-2016-6601 for a…

  • CVE-2016-6600CriJan 23, 2017
    risk 0.74cvss 9.8epss 0.90

    Directory traversal vulnerability in the file upload functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to upload and execute arbitrary JSP files via a .. (dot dot) in the fileName parameter to servlets/FileUploadServlet.

  • CVE-2016-6582CriJan 23, 2017
    risk 0.60cvss 9.1epss 0.05

    The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification.

  • CVE-2016-6517CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via a %2E%2E (encoded dot dot) in the minifierBundleDir parameter to barebone.jsp.

  • CVE-2016-6223CriJan 23, 2017
    risk 0.59cvss 9.1epss 0.03

    The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attackers to cause a denial of service (crash) or possibly obtain sensitive information via a negative index in a file-content buffer.

  • CVE-2016-6164CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size.

  • CVE-2016-5873CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.05

    Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow remote attackers to execute arbitrary code via non-printable characters in a URL.

  • CVE-2016-5742CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x before 6.1.3 and 6.2.x before 6.2.6 and Movable Type Open Source 5.2.13 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2016-4010CriJan 23, 2017
    risk 0.74cvss 9.8epss 0.93

    Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data.

  • CVE-2016-3177CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and attack vectors.

  • CVE-2016-3147CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.06

    Buffer overflow in the collector.exe listener of the Landesk Management Suite 10.0.0.271 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large packet.

  • CVE-2016-2783CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.04

    Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) before 4.2.3.0 and 5.x before 5.0.1.0 does not properly handle VLAN and I-SIS indexes, which allows remote attackers to obtain unauthorized access via crafted Ethernet frames.

  • CVE-2016-2242CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.07

    Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code via the sc parameter to install/index.php.

  • CVE-2016-1925CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.03

    Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a large header size value for the (1) level0 or (2) level1 header in a lha archive, which triggers a buffer overflow.

  • CVE-2015-8972CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.04

    Stack-based buffer overflow in the ValidateMove function in frontend/move.cc in GNU Chess (aka gnuchess) before 6.2.4 might allow context-dependent attackers to execute arbitrary code via a large input, as demonstrated when in UCI mode.

  • CVE-2015-8857CriJan 23, 2017
    risk 0.57cvss 9.8epss 0.04

    The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript.

  • CVE-2014-8362CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.03

    Vivint Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the alarm system and modify other security settings via the Web-enabled interface.

  • CVE-2017-5569CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a blind SQL injection within the template.jsp, which can be exploited without the need of authentication and via an HTTP POST request, and which can be used to dump database data out to a malicious…

  • CVE-2017-5575CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.03

    SQL injection vulnerability in inc/lib/Options.class.php in GeniXCMS before 1.0.0 allows remote attackers to execute arbitrary SQL commands via the modules parameter.

  • CVE-2017-5574CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows unauthenticated users to execute arbitrary SQL commands via the activation parameter.

  • CVE-2017-5539CriJan 23, 2017
    risk 0.59cvss 9.1epss 0.04

    The patch for directory traversal (CVE-2017-5480) in b2evolution version 6.8.4-stable has a bypass vulnerability. An attacker can use ..\/ to bypass the filter rule. Then, this attacker can exploit this vulnerability to delete or read any files on the server. It can also be used…

  • CVE-2016-10157CriJan 23, 2017
    risk 0.64cvss 9.8epss 0.02

    Akamai NetSession 1.9.3.1 is vulnerable to DLL Hijacking: it tries to load CSUNSAPI.dll without supplying the complete path. The issue is aggravated because the mentioned DLL is missing from the installation, thus making it possible to hijack the DLL and subsequently inject code…

  • CVE-2017-5545CriJan 21, 2017
    risk 0.59cvss 9.1epss 0.04

    The main function in plistutil.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short.