VYPR

CVEs

31,174 total · page 565 of 624

  • CVE-2017-1000173CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.02

    Creolabs Gravity Version: 1.0 Heap Overflow Potential Code Execution. By creating a large loop whiling pushing data to a buffer, we can break out of the bounds checking of that buffer. When list.join is called on the data it will read past a buffer resulting in a…

  • CVE-2017-1000172CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.02

    Creolabs Gravity Version: 1.0 Use-After-Free Possible code execution. An example of a Heap-Use-After-Free after the 'sublexer' pointer has been freed. Line 542 of gravity_lexer.c. 'lexer' is being used to access a variable but 'lexer' has already been freed, creating a Heap…

  • CVE-2017-1000197CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.01

    October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.

  • CVE-2017-1000196CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.02

    October CMS build 412 is vulnerable to PHP code execution in the asset manager functionality resulting in site compromise and possibly other applications on the server.

  • CVE-2017-1000194CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.01

    October CMS build 412 is vulnerable to Apache configuration modification via file upload functionality resulting in site compromise and possibly other applications on the server.

  • CVE-2017-1000220CriNov 17, 2017
    risk 0.57cvss 9.8epss 0.05

    soyuka/pidusage <=1.1.4 is vulnerable to command injection in the module resulting in arbitrary command execution

  • CVE-2017-1000210CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.02

    picoTCP (versions 1.7.0 - 1.5.0) is vulnerable to stack buffer overflow resulting in code execution or denial of service attack

  • CVE-2017-1000219CriNov 17, 2017
    risk 0.57cvss 9.8epss 0.04

    npm/KyleRoss windows-cpu all versions vulnerable to command injection resulting in code execution as Node.js user

  • CVE-2017-1000218CriNov 17, 2017
    risk 0.64cvss 9.8epss 0.03

    LightFTP version 1.1 is vulnerable to a buffer overflow in the "writelogentry" function resulting a denial of services or a remote code execution.

  • CVE-2017-0854CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63873837.

  • CVE-2017-0853CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.00

    An information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63121644.

  • CVE-2017-0847CriNov 16, 2017
    risk 0.64cvss 9.8epss 0.00

    An elevation of privilege vulnerability in the Android media framework (mediaanalytics). Product: Android. Versions: 8.0. Android ID: A-65540999.

  • CVE-2017-0909CriNov 16, 2017
    risk 0.64cvss 9.8epss 0.02

    The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete blacklist of common private/local network addresses used to prevent server-side request forgery.

  • CVE-2017-16851CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.17

    Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do widgetid parameter.

  • CVE-2017-16850CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.17

    Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /showresource.do resourceid parameter in a getResourceProfiles action.

  • CVE-2017-16849CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.17

    Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do?method=viewDashBoard forpage parameter.

  • CVE-2017-16848CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.15

    Zoho ManageEngine Applications Manager 13 allows SQL injection via the /manageConfMons.do groupname parameter.

  • CVE-2017-16847CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.17

    Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /showresource.do resourceid parameter in a showPlasmaView action.

  • CVE-2017-16846CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.17

    Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /manageApplications.do?method=AddSubGroup haid parameter.

  • CVE-2017-16844CriNov 16, 2017
    risk 0.65cvss 9.8epss 0.13

    Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a different…

  • CVE-2017-5738CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.02

    Escalation of privilege vulnerability in admin portal for Intel Unite App versions 3.1.32.12, 3.1.41.18 and 3.1.45.26 allows an attacker with network access to cause a denial of service and/or information disclosure.

  • CVE-2017-12337CriNov 16, 2017
    risk 0.64cvss 9.8epss 0.06

    A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthorized, elevated access to an affected device. The vulnerability occurs when a…

  • CVE-2017-8807CriNov 16, 2017
    risk 0.59cvss 9.1epss 0.04

    vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache 4.1.x before 4.1.9 and 5.x before 5.2.1 allows remote attackers to obtain sensitive information from process memory because a VFP_GetStorage buffer is larger than intended in certain circumstances involving…

  • CVE-2017-5533CriNov 15, 2017
    risk 0.61cvss 9.3epss 0.02

    A vulnerability in the server content cache of TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO Jaspersoft Reporting and Analytics for AWS contains a…

  • CVE-2017-12634CriNov 15, 2017
    risk 0.57cvss 9.8epss 0.07

    The camel-castor component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

  • CVE-2017-12633CriNov 15, 2017
    risk 0.64cvss 9.8epss 0.07

    The camel-hessian component in Apache Camel 2.x before 2.19.4 and 2.20.x before 2.20.1 is vulnerable to Java object de-serialisation vulnerability. De-serializing untrusted data can lead to security flaws.

  • CVE-2017-8809CriNov 15, 2017
    risk 0.64cvss 9.8epss 0.08

    api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.

  • CVE-2017-12739CriNov 15, 2017
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected devices could allow unauthenticated remote attackers to execute arbitrary code…

  • CVE-2017-10272CriNov 14, 2017
    risk 0.64cvss 9.9epss 0.01

    Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). Supported versions that are affected are 11.1.1, 12.1.1, 12.1.3 and 12.2.2. Easily exploitable vulnerability allows low privileged attacker with network access via Jolt to compromise…

  • CVE-2017-10269CriNov 14, 2017
    risk 0.65cvss 10.0epss 0.02

    Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). Supported versions that are affected are 11.1.1, 12.1.1, 12.1.3 and 12.2.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via Jolt to compromise…

  • CVE-2017-3891CriNov 14, 2017
    risk 0.63cvss 9.6epss 0.01

    In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an elevation of privilege vulnerability in the default configuration of the QNX SDP with QNet enabled on networks comprising two or more QNet nodes could allow an attacker to access local and remote files or take…

  • CVE-2017-16820CriNov 14, 2017
    risk 0.64cvss 9.8epss 0.04

    The csnmp_read_table function in snmp.c in the SNMP plugin in collectd before 5.6.3 is susceptible to a double free in a certain error case, which could lead to a crash (or potentially have other impact).

  • CVE-2017-12635CriNov 14, 2017
    risk 0.68cvss 9.8epss 1.00

    Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is possible in Apache CouchDB before 1.7.0 and 2.x before 2.1.1 to submit _users documents with duplicate keys for 'roles' used for access control within the database, including the special…

  • CVE-2017-6274CriNov 14, 2017
    risk 0.64cvss 9.8epss 0.00

    An elevation of Privilege vulnerability exists in the Thermal Driver, where a missing bounds checks in the thermal throttle driver can cause an out-of-bounds write in the kernel. This issue is rated as moderate. Product: Pixel. Version: N/A. Android ID: A-34705801. References:…

  • CVE-2017-1710CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.04

    A vulnerability in the Service Assistant GUI in IBM Storwize V7000 (2076) 8.1 could allow a remote attacker to perform a privilege escalation. IBM X-Force ID: 134531.

  • CVE-2017-1221CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.02

    IBM Tivoli Endpoint Manager (IBM BigFix 9.2 and 9.5) does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 123861.

  • CVE-2017-14024CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.06

    A Stack-based Buffer Overflow issue was discovered in Schneider Electric InduSoft Web Studio v8.0 SP2 Patch 1 and prior versions, and InTouch Machine Edition v8.0 SP2 Patch 1 and prior versions. The stack-based buffer overflow vulnerability has been identified, which may allow…

  • CVE-2017-0907CriNov 13, 2017
    risk 0.57cvss 9.8epss 0.03

    The Recurly Client .NET Library before 1.0.1, 1.1.10, 1.2.8, 1.3.2, 1.4.14, 1.5.3, 1.6.2, 1.7.1, 1.8.1 is vulnerable to a Server-Side Request Forgery vulnerability due to incorrect use of "Uri.EscapeUriString" that could result in compromise of API keys or other critical…

  • CVE-2017-0906CriNov 13, 2017
    risk 0.57cvss 9.8epss 0.03

    The Recurly Client Python Library before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource.get" method that could result in compromise of API keys or other critical resources.

  • CVE-2017-0905CriNov 13, 2017
    risk 0.57cvss 9.8epss 0.03

    The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource#find" method that could result in compromise of API keys or other…

  • CVE-2017-0889CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.03

    Paperclip ruby gem version 3.1.4 and later suffers from a Server-SIde Request Forgery (SSRF) vulnerability in the Paperclip::UriAdapter class. Attackers may be able to access information about internal network resources.

  • CVE-2017-10871CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.02

    Buffer overflow in NTT DOCOMO Wi-Fi STATION L-02F Software version L02F-MDM9625-V10h-JUN-23-2017-DCM-JP and earlier allows an attacker to execute arbitrary code via unspecified vectors.

  • CVE-2017-13846CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the third-party "PCRE" product. Versions before 8.40 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

  • CVE-2017-13832CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "802.1X" component. It allows attackers to have an unspecified impact by leveraging TLS 1.0 support.

  • CVE-2017-13815CriNov 13, 2017
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the third-party "file" product. Versions before 5.31 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

  • CVE-2017-16783CriNov 10, 2017
    risk 0.67cvss 9.8epss 0.08

    In CMS Made Simple 2.1.6, there is Server-Side Template Injection via the cntnt01detailtemplate parameter.

  • CVE-2017-16780CriNov 10, 2017
    risk 0.67cvss 9.8epss 0.06

    The installer in MyBB before 1.8.13 allows remote attackers to execute arbitrary code by writing to the configuration file.

  • CVE-2017-16764CriNov 10, 2017
    risk 0.57cvss 9.8epss 0.03

    An exploitable vulnerability exists in the YAML parsing functionality in the read_yaml_file method in io_utils.py in django_make_app 0.1.3. A YAML parser can execute arbitrary Python commands resulting in command execution. An attacker can insert Python into loaded YAML to…

  • CVE-2017-16763CriNov 10, 2017
    risk 0.57cvss 9.8epss 0.04

    An exploitable vulnerability exists in the YAML parsing functionality in config.py in Confire 0.2.0. Due to the user-specific configuration being loaded from "~/.confire.yaml" using the yaml.load function, a YAML parser can execute arbitrary Python commands resulting in command…

  • CVE-2017-16521CriNov 10, 2017
    risk 0.64cvss 9.8epss 0.02

    In Inedo BuildMaster before 5.8.2, XslTransform was used where XslCompiledTransform should have been used.