CVEs from 2017
Total
11,665
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-8135 | high | 8.8 | 8.8 | 9y ago | The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated att… | |||
| CVE-2017-8134 | high | 8.8 | 8.8 | 9y ago | The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated att… | |||
| CVE-2017-8133 | high | 8.8 | 8.8 | 9y ago | Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection vulnerability. An authenticated, remote attacker could exploit this vulnerability to send malicious packets to… | |||
| CVE-2017-8132 | high | 8.8 | 8.8 | 9y ago | The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated att… | |||
| CVE-2017-8131 | high | 8.8 | 8.8 | 9y ago | The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated att… | |||
| CVE-2017-2737 | high | 8.8 | 8.8 | 9y ago | VCM5010 with software versions earlier before V100R002C50SPC100 has an arbitrary file upload vulnerability. The software does not validate the files that uploaded. An authenticated attacker could upl… | |||
| CVE-2017-2722 | high | 8.8 | 8.8 | 9y ago | DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100… | |||
| CVE-2017-2719 | high | 8.8 | 8.8 | 9y ago | FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnera… | |||
| CVE-2017-2718 | high | 8.8 | 8.8 | 9y ago | FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnera… | |||
| CVE-2017-16923 | high | 8.8 | 8.8 | 9y ago | Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_A… | |||
| CVE-2017-16664 | high | 8.8 | 8.8 | 9y ago | Code injection exists in Kernel/System/Spelling.pm in Open Ticket Request System (OTRS) 5 before 5.0.24, 4 before 4.0.26, and 3.3 before 3.3.20. In the agent interface, an authenticated remote attack… | |||
| CVE-2017-15044 | high | 8.8 | 8.8 | 9y ago | The default installation of DocuWare Fulltext Search server through 6.11 allows remote users to connect to and download searchable text from the embedded Solr service, bypassing DocuWare's access con… | |||
| CVE-2017-16544 | high | 8.8 | 8.8 | 9y ago | In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and res… | |||
| CVE-2017-1000217 | high | 8.8 | 8.8 | 9y ago | Opencast RCE Vulnerability | |||
| CVE-2017-1000203 | high | 8.8 | 8.8 | 9y ago | ROOT version 6.9.03 and below is vulnerable to an authenticated shell metacharacter injection in the rootd daemon resulting in remote code execution | |||
| CVE-2017-4934 | high | 8.8 | 8.8 | 9y ago | VMware Workstation (12.x before 12.5.8) and Fusion (8.x before 8.5.9) contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host. | |||
| CVE-2017-1000238 | high | 8.8 | 8.8 | 9y ago | InvoicePlane version 1.4.10 is vulnerable to a Arbitrary File Upload resulting in an authenticated user can upload a malicious file to the webserver. It is possible for an attacker to upload a script… | |||
| CVE-2017-1000208 | high | 8.8 | 8.8 | 9y ago | Deserialization of Untrusted Data in swagger-parser | |||
| CVE-2017-15516 | high | 8.8 | 8.8 | 9y ago | NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user inte… | |||
| CVE-2017-16777 | high | 7.8 | 8.8 | 9y ago | If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo h… | |||
| CVE-2017-15864 | high | 8.8 | 8.8 | 9y ago | In the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL it is possible to gain information like database user and password. | |||
| CVE-2017-14034 | high | 8.8 | 8.8 | 9y ago | The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote attackers to cause a denial… | |||
| CVE-2017-13136 | high | 8.8 | 8.8 | 9y ago | The image_alloc function in bpgenc.c in libbpg 0.9.7 has an integer overflow, with a resultant invalid malloc and NULL pointer dereference. | |||
| CVE-2017-14961 | high | 7.8 | 8.8 | 9y ago | In IKARUS anti.virus 2.16.7, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300000c. | |||
| CVE-2017-11879 | high | 8.8 | 8.8 | 9y ago | Open redirect in ASP.NET Core | |||
| CVE-2017-11876 | high | 8.8 | 8.8 | 9y ago | Microsoft Project Server and Microsoft SharePoint Enterprise Server 2016 allow an attacker to use cross-site forgery to read content that they are not authorized to read, use the victim's identity to… | |||
| CVE-2017-11854 | high | 8.8 | 8.8 | 9y ago | Microsoft Word 2007 Service Pack 3, Microsoft Word 2010 Service Pack 2, Microsoft Office 2010 Service Pack 2, and Microsoft Office Compatibility Pack Service Pack 3 allow an attacker to run arbitrary… | |||
| CVE-2017-1453 | high | 8.8 | 8.8 | 9y ago | IBM Security Access Manager Appliance 9.0.3 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit … | |||
| CVE-2017-9314 | high | 8.8 | 8.8 | 9y ago | Authentication vulnerability found in Dahua NVR models NVR50XX, NVR52XX, NVR54XX, NVR58XX with software before DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Attacker could exploit this vulnerability to … | |||
| CVE-2017-11169 | high | 8.8 | 8.8 | 9y ago | Privilege Escalation on iBall iB-WRA300N3GT iB-WRA300N3GT_1.1.1 devices allows remote authenticated users to obtain root privileges by leveraging a guest/user/normal account to submit a modified priv… | |||
| CVE-2017-13803 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected… | |||
| CVE-2017-13793 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected… | |||
| CVE-2017-13788 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected… | |||
| CVE-2017-16671 | high | 8.8 | 8.8 | 9y ago | A Buffer Overflow issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. No size checking is done when… | |||
| CVE-2017-16669 | high | 8.8 | 8.8 | 9y ago | coders/wpg.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted f… | |||
| CVE-2017-9096 | high | 8.8 | 8.8 | 9y ago | Improper Restriction of XML External Entity Reference in iText | |||
| CVE-2017-2917 | high | 8.8 | 8.8 | 9y ago | An exploitable vulnerability exists in the notifications functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause an OS command injection. An attacker c… | |||
| CVE-2017-2916 | high | 8.8 | 8.8 | 9y ago | An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause an arbitrary file to be overwrit… | |||
| CVE-2017-2890 | high | 8.8 | 8.8 | 9y ago | An exploitable vulnerability exists in the /api/CONFIG/restore functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause an OS command injection. An atta… | |||
| CVE-2017-2881 | high | 8.8 | 8.8 | 9y ago | An exploitable vulnerability exists in the torlist update functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause the product to run an attacker-suppli… | |||
| CVE-2017-2866 | high | 8.8 | 8.8 | 9y ago | An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney. Specially crafted network packets can cause an OS command injection. An attacker can send an HTTP re… | |||
| CVE-2017-16001 | high | 7.8 | 8.8 | 9y ago | In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.1, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges. | |||
| CVE-2017-15672 | high | 8.8 | 8.8 | 9y ago | The read_header function in libavcodec/ffv1dec.c in FFmpeg 2.4 and 3.3.4 and possibly earlier allows remote attackers to have unspecified impact via a crafted MP4 file, which triggers an out-of-bound… | |||
| CVE-2017-16565 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) in /cgi-bin/login on Vonage (Grandstream) HT802 devices allows attackers to authenticate a user via the login screen using the default password of 123 and submit arb… | |||
| CVE-2017-16547 | high | 8.8 | 8.8 | 9y ago | The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of s… | |||
| CVE-2017-16546 | high | 8.8 | 8.8 | 9y ago | The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uni… | |||
| CVE-2017-16545 | high | 8.8 | 8.8 | 9y ago | The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote attackers to cause a denial of service (ImportIndexQuantumType in… | |||
| CVE-2017-1000150 | high | 8.8 | 8.8 | 9y ago | Mahara 15.04 before 15.04.7 and 15.10 before 15.10.3 are vulnerable to prevent session IDs from being regenerated on login or logout. This makes users of the site more vulnerable to session fixation … | |||
| CVE-2017-1000148 | high | 8.8 | 8.8 | 9y ago | Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to PHP code execution as Mahara would pass portions of the XML through the PHP "unserialize()" function wh… | |||
| CVE-2017-16522 | high | 8.8 | 8.8 | 9y ago | MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16 devices allow remote authenticated users to obtain root access by specifying /bin/sh as the command to execute. | |||
| CVE-2017-16513 | high | 7.8 | 8.8 | 9y ago | Ipswitch WS_FTP Professional before 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729. | |||
| CVE-2017-16237 | high | 7.8 | 8.8 | 9y ago | In Vir.IT eXplorer Anti-Virus before 8.5.42, the driver file (VIAGLT64.SYS) contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8273007C. | |||
| CVE-2017-11508 | high | 8.8 | 8.8 | 9y ago | SecurityCenter versions 5.5.0, 5.5.1 and 5.5.2 contain a SQL Injection vulnerability that could be exploited by an authenticated user with sufficient privileges to run diagnostic scans. An attacker c… | |||
| CVE-2017-12277 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote at… | |||
| CVE-2017-12262 | high | 8.8 | 8.8 | 9y ago | A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) could allow an unauthenticated, adjacent attacker to gain privi… | |||
| CVE-2017-12243 | high | 7.8 | 8.8 | 9y ago | A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authentica… | |||
| CVE-2017-1300 | high | 8.8 | 8.8 | 9y ago | IBM OpenPages GRC Platform 7.1, 7.2, and 7.3 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the w… | |||
| CVE-2017-15918 | high | 7.8 | 8.8 | 9y ago | Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks. | |||
| CVE-2017-1000244 | high | 8.8 | 8.8 | 9y ago | Jenkins Favorite Plugin vulnerable to Cross-Site Request Forgery | |||
| CVE-2017-10954 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security Internet Security 2018 prior to build 7.72918. User interaction is re… | |||
| CVE-2017-10953 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the ta… | |||
| CVE-2017-10948 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.1.6871. User interaction is required to exploit this vulnerability in that the tar… | |||
| CVE-2017-10947 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.1.6871. User interaction is required to exploit this vulnerability in that the tar… | |||
| CVE-2017-10946 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.2.1.6871. User interaction is required to exploit this vulnerability in that the tar… | |||
| CVE-2017-10945 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the ta… | |||
| CVE-2017-10941 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the ta… | |||
| CVE-2017-10940 | high | 8.8 | 8.8 | 9y ago | This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Joyent Smart Data Center prior to agentsshar@1.0.0-release-20160901-20160901T051624Z-g3fd5adf (e469… | |||
| CVE-2017-14163 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in Mahara before 15.04.14, 16.x before 16.04.8, 16.10.x before 16.10.5, and 17.x before 17.04.3. When one closes the browser without logging out of Mahara, the value in the us… | |||
| CVE-2017-15950 | high | 7.8 | 8.8 | 9y ago | Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destina… | |||
| CVE-2017-9377 | high | 8.8 | 8.8 | 9y ago | A command injection was identified on Barco ClickShare Base Unit devices with CSM-1 firmware before 1.7.0.3 and CSC-1 firmware before 1.10.0.10. An attacker with access to the product's web API can e… | |||
| CVE-2017-13090 | high | 8.8 | 8.8 | 9y ago | The retr.c:fd_read_body() function is called when processing OK responses. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol() to read each chunk's length, but doe… | |||
| CVE-2017-13089 | high | 8.8 | 8.8 | 9y ago | The http.c:skip_short_body() function is called in some circumstances, such as when processing redirects. When the response is sent chunked in wget before 1.19.2, the chunk parser uses strtol() to re… | |||
| CVE-2017-15930 | high | 8.8 | 8.8 | 9y ago | In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer. | |||
| CVE-2017-5122 | high | 8.8 | 8.8 | 9y ago | arbitrary code execution in chromium | |||
| CVE-2017-5121 | high | 8.8 | 8.8 | 9y ago | arbitrary code execution in chromium | |||
| CVE-2017-5116 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5115 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5114 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5113 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5112 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5111 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5108 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5100 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5099 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5098 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5097 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5095 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5092 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5091 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5088 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5087 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5080 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5078 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5077 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5073 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5064 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5063 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5062 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5059 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium | |||
| CVE-2017-5058 | high | 8.8 | 8.8 | 9y ago | multiple issues in chromium |