CVEs from 2017
Total
11,681
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-8755 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the scripting eng… | |||
| CVE-2017-8751 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft… | |||
| CVE-2017-8740 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in… | |||
| CVE-2017-8734 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft E… | |||
| CVE-2017-8731 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses object… | |||
| CVE-2017-8729 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scripting engine handles objects in… | |||
| CVE-2017-11764 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scri… | |||
| CVE-2017-14335 | high | 7.5 | 8.5 | 9y ago | On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change. | |||
| CVE-2017-0901 | high | 7.5 | 8.5 | 9y ago | RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem. | |||
| CVE-2017-11662 | high | 7.5 | 8.5 | 9y ago | The _WM_ParseNewMidi function in f_midi.c in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. | |||
| CVE-2017-11661 | high | 7.5 | 8.5 | 9y ago | The _WM_SetupMidiEvent function in internal_midi.c:2318 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file. | |||
| CVE-2017-8671 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser … | |||
| CVE-2017-8670 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaSc… | |||
| CVE-2017-8657 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser … | |||
| CVE-2017-8656 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaSc… | |||
| CVE-2017-8646 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript… | |||
| CVE-2017-8645 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript… | |||
| CVE-2017-8641 | high | 7.5 | 8.5 | 9y ago | Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow… | |||
| CVE-2017-8640 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser Java… | |||
| CVE-2017-8636 | high | 7.5 | 8.5 | 9y ago | Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow… | |||
| CVE-2017-8635 | high | 7.5 | 8.5 | 9y ago | Microsoft browsers in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow… | |||
| CVE-2017-8634 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user due to the way that Microsoft browser JavaScript engines render content whe… | |||
| CVE-2017-11155 | high | 7.5 | 8.5 | 9y ago | An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors. | |||
| CVE-2017-11152 | high | 7.5 | 8.5 | 9y ago | Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to write arbitrary files via the path parameter. | |||
| CVE-2017-9415 | high | 7.5 | 8.5 | 9y ago | Cross-site request forgery (CSRF) vulnerability in subsonic 6.1.1 allows remote attackers with knowledge of the target username to hijack the authentication of users for requests that change password… | |||
| CVE-2017-11469 | high | 7.5 | 8.5 | 9y ago | get2post.php in IDERA Uptime Monitor 7.8 has directory traversal in the file_name parameter. | |||
| CVE-2017-11456 | high | 7.5 | 8.5 | 9y ago | Geneko GWR routers allow directory traversal sequences starting with a /../ substring, as demonstrated by unauthenticated read access to the configuration file. | |||
| CVE-2017-9812 | high | 7.5 | 8.5 | 9y ago | The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.31… | |||
| CVE-2017-1000028 | high | 7.5 | 8.5 | 9y ago | Oracle, GlassFish Server Open Source Edition 4.1 is vulnerable to both authenticated and unauthenticated Directory Traversal vulnerability, that can be exploited by issuing a specially crafted HTTP G… | |||
| CVE-2017-8618 | high | 7.5 | 8.5 | 9y ago | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 In… | |||
| CVE-2017-8601 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fa… | |||
| CVE-2017-8594 | high | 7.5 | 8.5 | 9y ago | Internet Explorer on Microsoft Windows 8.1 and Windows RT 8.1, and Windows Server 2012 R2 allows an attacker to execute arbitrary code in the context of the current user when Internet Explorer improp… | |||
| CVE-2017-10974 | high | 7.5 | 8.5 | 9y ago | Yaws 1.91 allows Unauthenticated Remote File Disclosure via HTTP Directory Traversal with /%5C../ to port 8080. NOTE: this CVE is only about use of an initial /%5C sequence to defeat traversal protec… | |||
| CVE-2017-10688 | high | 7.5 | 8.5 | 9y ago | In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack. | |||
| CVE-2017-9833 | high | 7.5 | 8.5 | 9y ago | /cgi-bin/wapopen in Boa 0.94.14rc21 allows the injection of "../.." using the FILECAMERA variable (sent by GET) to read files with root privileges. NOTE: multiple third parties report that this is a … | |||
| CVE-2017-9675 | high | 7.5 | 8.5 | 9y ago | On D-Link DIR-605L devices, firmware before 2.08UIBetaB01.bin allows an unauthenticated GET request to trigger a reboot. | |||
| CVE-2017-8548 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system when Microsoft Edge imprope… | |||
| CVE-2017-8496 | high | 7.5 | 8.5 | 9y ago | Microsoft Edge in Windows 10 1607 and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user when Microsoft Edge improperly accesses objects in memory, ak… | |||
| CVE-2017-7314 | high | 7.5 | 8.5 | 9y ago | An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, while creating a new role, a list of database tables and their columns is available. | |||
| CVE-2017-5243 | high | 8.5 | 8.5 | 9y ago | The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls … | |||
| CVE-2017-9353 | high | 7.5 | 8.5 | 9y ago | In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. This was addressed in epan/dissectors/packet-ipv6.c by validating an IPv6 address. | |||
| CVE-2017-9347 | high | 7.5 | 8.5 | 9y ago | In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/asn1/ros/packet-ros-template.c by validating an OID. | |||
| CVE-2017-9024 | high | 7.5 | 8.5 | 9y ago | Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing attackers to read arbitrary files via… | |||
| CVE-2017-5177 | high | 7.5 | 8.5 | 9y ago | A Stack Buffer Overflow issue was discovered in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafte… | |||
| CVE-2017-7478 | high | 7.5 | 8.5 | 9y ago | OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2. | |||
| CVE-2017-3730 | high | 7.5 | 8.5 | 9y ago | In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a … | |||
| CVE-2017-8779 | high | 7.5 | 8.5 | 9y ago | rpcbind through 0.2.4, LIBTIRPC through 1.0.1 and 1.0.2-rc through 1.0.2-rc3, and NTIRPC through 1.4.3 do not consider the maximum RPC data size during memory allocation for XDR strings, which allows… | |||
| CVE-2017-8223 | high | 7.5 | 8.5 | 9y ago | On Wireless IP Camera (P2P) WIFICAM devices, an attacker can use the RTSP server on port 10554/tcp to watch the streaming without authentication via tcp/av0_1 or tcp/av0_0. | |||
| CVE-2017-8222 | high | 7.5 | 8.5 | 9y ago | Wireless IP Camera (P2P) WIFICAM devices have an "Apple Production IOS Push Services" private RSA key and certificate stored in /system/www/pem/ck.pem inside the firmware, which allows attackers to o… | |||
| CVE-2017-8221 | high | 7.5 | 8.5 | 9y ago | Wireless IP Camera (P2P) WIFICAM devices rely on a cleartext UDP tunnel protocol (aka the Cloud feature) for communication between an Android application and a camera device, which allows remote atta… | |||
| CVE-2017-3599 | high | 7.5 | 8.5 | 9y ago | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Pluggable Auth). Supported versions that are affected are 5.6.35 and earlier and 5.7.17 and earlier. Easily "exploit… | |||
| CVE-2017-3523 | high | 8.5 | 8.5 | 9y ago | Improper Access Control in MySQL Connectors Java | |||
| CVE-2017-3493 | high | 8.5 | 8.5 | 9y ago | Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affect… | |||
| CVE-2017-7456 | high | 7.5 | 8.5 | 9y ago | Moxa MXView 2.8 allows remote attackers to cause a Denial of Service by sending overly long junk payload for the MXView client login credentials. | |||
| CVE-2017-7455 | high | 7.5 | 8.5 | 9y ago | Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control. | |||
| CVE-2017-0202 | high | 7.5 | 8.5 | 9y ago | A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrar… | |||
| CVE-2017-7185 | high | 7.5 | 8.5 | 9y ago | Use-after-free vulnerability in the mg_http_multipart_wait_for_boundary function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.7 and earlier and Mongoose OS 1.2 and earlier allows r… | |||
| CVE-2017-6190 | high | 7.5 | 8.5 | 9y ago | Directory traversal vulnerability in the web interface on the D-Link DWR-116 device with firmware before V1.05b09 allows remote attackers to read arbitrary files via a .. (dot dot) in a "GET /uir/" r… | |||
| CVE-2017-6019 | high | 7.5 | 8.5 | 9y ago | An issue was discovered in Schneider Electric Conext ComBox, model 865-1058, all firmware versions prior to V3.03 BN 830. A series of rapid requests to the device may cause it to reboot. | |||
| CVE-2017-7397 | high | 7.5 | 8.5 | 9y ago | BackBox Linux 4.6 allows remote attackers to cause a denial of service (ksoftirqd CPU consumption) via a flood of packets with Martian source IP addresses (as defined in RFC 1812 section 5.3.7). This… | |||
| CVE-2017-1001000 | high | 7.5 | 8.5 | 9y ago | The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows … | |||
| CVE-2017-7285 | high | 7.5 | 8.5 | 9y ago | A vulnerability in the network stack of MikroTik Version 6.38.5 released 2017-03-09 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of TCP RST packets, prevent… | |||
| CVE-2017-7183 | high | 7.5 | 8.5 | 9y ago | The TFTP server in ExtraPuTTY 0.30 and earlier allows remote attackers to cause a denial of service (crash) via a large (1) read or (2) write TFTP protocol message. | |||
| CVE-2017-5850 | high | 7.5 | 8.5 | 9y ago | httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a series of requests for a large file using an HTTP Range header. | |||
| CVE-2017-7240 | high | 7.5 | 8.5 | 9y ago | An issue was discovered on Miele Professional PST10 devices. The corresponding embedded webserver "PST10 WebServer" typically listens to port 80 and is prone to a directory traversal attack; therefor… | |||
| CVE-2017-5227 | high | 7.5 | 8.5 | 9y ago | QNAP QTS before 4.2.4 Build 20170313 allows local users to obtain sensitive Domain Administrator password information by reading data in an XOR format within the /etc/config/uLinux.conf configuration… | |||
| CVE-2017-0070 | high | 7.5 | 8.5 | 9y ago | A remote code execution vulnerability exists in the way affected Microsoft scripting engines render when handling objects in memory in Microsoft browsers. These vulnerabilities could corrupt memory i… | |||
| CVE-2017-6510 | high | 7.5 | 8.5 | 9y ago | Easy File Sharing FTP Server version 3.6 is vulnerable to a directory traversal vulnerability which allows an attacker to list and download any file from any folder outside the FTP root Directory. | |||
| CVE-2017-5359 | high | 7.5 | 8.5 | 9y ago | EasyCom SQL iPlug allows remote attackers to cause a denial of service via the D$EVAL parameter to the default URI. | |||
| CVE-2017-6367 | high | 7.5 | 8.5 | 9y ago | In Cerberus FTP Server 8.0.10.1, a crafted HTTP request causes the Windows service to crash. The attack methodology involves a long Host header and an invalid Content-Length header. | |||
| CVE-2017-6444 | high | 7.5 | 8.5 | 9y ago | The MikroTik Router hAP Lite 6.25 has no protection mechanism for unsolicited TCP ACK packets in the case of a fast network connection, which allows remote attackers to cause a denial of service (CPU… | |||
| CVE-2017-6427 | high | 7.5 | 8.5 | 9y ago | A Buffer Overflow was discovered in EvoStream Media Server 1.7.1. A crafted HTTP request with a malicious header will cause a crash. An example attack methodology may include a long message-body in a… | |||
| CVE-2017-6527 | high | 7.5 | 8.5 | 9y ago | An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to a NUL-terminated directory traversal attack allowing an unauthenticated attacker to access system files readable by the… | |||
| CVE-2017-6552 | high | 7.5 | 8.5 | 9y ago | Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue… | |||
| CVE-2017-6104 | high | 7.5 | 8.5 | 9y ago | Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0. | |||
| CVE-2017-5982 | high | 7.5 | 8.5 | 9y ago | Directory traversal vulnerability in the Chorus2 2.4.2 add-on for Kodi allows remote attackers to read arbitrary files via a %2E%2E%252e (encoded dot dot slash) in the image path, as demonstrated by … | |||
| CVE-2017-6206 | high | 7.5 | 8.5 | 9y ago | D-Link DGS-1510-28XMP, DGS-1510-28X, DGS-1510-52X, DGS-1510-52, DGS-1510-28P, DGS-1510-28, and DGS-1510-20 Websmart devices with firmware before 1.31.B003 allow attackers to conduct Unauthenticated I… | |||
| CVE-2017-5991 | high | 7.5 | 8.5 | 9y ago | An issue was discovered in Artifex MuPDF before 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The pdf_run_xobject function in pdf-op-run.c encounters a NULL pointer dereference during a Fitz fz_paint_pix… | |||
| CVE-2017-5972 | high | 7.5 | 8.5 | 9y ago | The TCP stack in the Linux kernel 3.x does not properly implement a SYN cookie protection mechanism for the case of a fast network connection, which allows remote attackers to cause a denial of servi… | |||
| CVE-2017-5146 | high | 7.5 | 8.5 | 9y ago | An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Sensitive information is stored in clear-text. | |||
| CVE-2017-5630 | high | 7.5 | 8.5 | 10y ago | PEAR core file overwrite vulnerability | |||
| CVE-2017-5594 | high | 7.5 | 8.5 | 10y ago | Pagekit Weak Password Recovery Mechanism for Forgotten Password | |||
| CVE-2017-20226 | high | 8.4 | 8.4 | 2mo ago | Mapscrn 2.0.3 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized input buffer. Attackers can craft a malicious buffer… | |||
| CVE-2017-15357 | high | 7.4 | 8.4 | 9y ago | The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself. | |||
| CVE-2017-8001 | high | 8.4 | 8.4 | 9y ago | An issue was discovered in EMC ScaleIO 2.0.1.x. In a Linux environment, one of the support scripts saves the credentials of the ScaleIO MDM user who executed the script in clear text in temporary log… | |||
| CVE-2017-16927 | high | 8.4 | 8.4 | 9y ago | The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of servic… | |||
| CVE-2017-8155 | high | 8.4 | 8.4 | 9y ago | The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor … | |||
| CVE-2017-2726 | high | 8.4 | 8.4 | 9y ago | Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root priv… | |||
| CVE-2017-2724 | high | 8.4 | 8.4 | 9y ago | Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root priv… | |||
| CVE-2017-6168 | high | 7.4 | 8.4 | 9y ago | On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may b… | |||
| CVE-2017-15643 | high | 7.4 | 8.4 | 9y ago | An active network attacker (MiTM) can achieve remote code execution on a machine that runs IKARUS Anti Virus 2.16.7. IKARUS AV for Windows uses cleartext HTTP for updates along with a CRC32 checksum … | |||
| CVE-2017-10398 | high | 8.4 | 8.4 | 9y ago | Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications (subcomponent: BaseMasterPage). The supported version that is affected is 9.0.2.0. Easily … | |||
| CVE-2017-5700 | high | 8.4 | 8.4 | 9y ago | Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator… | |||
| CVE-2017-11652 | high | 8.4 | 8.4 | 9y ago | Razer Synapse 2.20.15.1104 and earlier uses weak permissions for the CrashReporter directory, which allows local users to gain privileges via a Trojan horse dbghelp.dll file. | |||
| CVE-2017-1000364 | high | 7.4 | 8.4 | 9y ago | An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this af… | |||
| CVE-2017-7884 | high | 8.4 | 8.4 | 9y ago | In Adam Kropelin adk0212 APC UPS Daemon through 3.14.14, the default installation of APCUPSD allows a local authenticated, but unprivileged, user to run arbitrary code with elevated privileges by rep… | |||
| CVE-2017-2214 | high | 8.4 | 8.4 | 9y ago | Untrusted search path vulnerability in AppCheck and AppCheck Pro prior to version 2.0.1.15 allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified direc… | |||
| CVE-2017-9355 | high | 7.4 | 8.4 | 9y ago | XML external entity (XXE) vulnerability in the import playlist feature in Subsonic 6.1.1 might allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted XSPF playlist… | |||
| CVE-2017-3582 | high | 8.4 | 8.4 | 9y ago | Vulnerability in the Oracle SuperCluster Specific Software component of Oracle Sun Systems Products Suite (subcomponent: Backup/Restore Utility). Supported versions that are affected are 2.3.8 and 2.… | |||
| CVE-2017-2583 | high | 8.4 | 8.4 | 9y ago | The load_segment_descriptor implementation in arch/x86/kvm/emulate.c in the Linux kernel before 4.9.5 improperly emulates a "MOV SS, NULL selector" instruction, which allows guest OS users to cause a… |