CVEs from 2017
Total
11,679
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-9874 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!F… | |||
| CVE-2017-9873 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "Read Access Violation on Control Flo… | |||
| CVE-2017-9536 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "Read Access Violation on Control Flo… | |||
| CVE-2017-9535 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!G… | |||
| CVE-2017-9534 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!G… | |||
| CVE-2017-9533 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!D… | |||
| CVE-2017-9532 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX+0… | |||
| CVE-2017-9531 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX+0… | |||
| CVE-2017-9530 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address is used as one or more arguments… | |||
| CVE-2017-9529 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx+0x0000000000004efd." | |||
| CVE-2017-9528 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.46 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting a… | |||
| CVE-2017-8826 | high | 7.8 | 7.8 | 9y ago | FastStone Image Viewer 6.2 has a "User Mode Write AV" issue, possibly related to the jpeg_mem_term function in jmemnobs.c in libjpeg. This issue can be triggered by a malformed JPEG file that is mish… | |||
| CVE-2017-8803 | high | 7.8 | 7.8 | 9y ago | Notepad++ 7.3.3 (32-bit) with Hex Editor Plugin v0.9.5 might allow user-assisted attackers to execute code via a crafted file, because of a "Data from Faulting Address controls Code Flow" issue. One … | |||
| CVE-2017-8785 | high | 7.8 | 7.8 | 9y ago | FastStone Image Viewer 6.2 has a "Data from Faulting Address may be used as a return value" issue. This issue can be triggered by a malformed JPEG 2000 file that is mishandled by FSViewer.exe. Attack… | |||
| CVE-2017-8781 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted JPEG 2000 file that is mishandled during the opening of a directory in "Browser" mode, beca… | |||
| CVE-2017-8766 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) allows remote attackers to execute code via a crafted .mov file, because of a "User Mode Write AV near NULL" issue. | |||
| CVE-2017-8381 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mkv file that is mishandled during the opening of a directory in "Browser" mode, because o… | |||
| CVE-2017-8370 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) with FPX Plugin 4.45 allows remote attackers to execute arbitrary code or cause a denial of service (Heap Corruption and application crash) in processing a FlashPix (.F… | |||
| CVE-2017-8369 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) has a "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3" issue, which might allow attackers to execute arbitrary co… | |||
| CVE-2017-8368 | high | 7.8 | 7.8 | 9y ago | Sublime Text 3 Build 3126 allows user-assisted attackers to cause a denial of service or possibly have unspecified other impact via a crafted .mkv file. One threat model is a victim who obtains an un… | |||
| CVE-2017-8282 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mov file that is mishandled during the opening of a directory in "Browser" mode, because o… | |||
| CVE-2017-7894 | high | 7.8 | 7.8 | 9y ago | WinDjView 2.1 might allow user-assisted attackers to execute code via a crafted .djvu file, because of a "User Mode Write AV near NULL" in WinDjView.exe. One threat model is a victim who obtains an u… | |||
| CVE-2017-10926 | high | 7.8 | 7.8 | 9y ago | IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to a "Read Access Violation s… | |||
| CVE-2017-10925 | high | 7.8 | 7.8 | 9y ago | IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Addres… | |||
| CVE-2017-10924 | high | 7.8 | 7.8 | 9y ago | IrfanView 4.44 (32bit) with FPX Plugin 4.47 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!FPX_GetSc… | |||
| CVE-2017-10783 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10782 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10781 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10780 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10779 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10778 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10777 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10776 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation start… | |||
| CVE-2017-10775 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation start… | |||
| CVE-2017-10774 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10773 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10772 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10771 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10770 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10769 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10768 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10767 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10766 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10765 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10764 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10763 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10762 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10761 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10760 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10759 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10758 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10757 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10756 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10755 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10754 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10753 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10752 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10751 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co… | |||
| CVE-2017-10750 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at ntdll_7… | |||
| CVE-2017-10749 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV near NULL starting at wow64!W… | |||
| CVE-2017-10748 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x00000000… | |||
| CVE-2017-10747 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at xnview+0x00000000… | |||
| CVE-2017-10746 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… | |||
| CVE-2017-10745 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Stack Buffer Overrun (/GS Exception) starting at… | |||
| CVE-2017-10744 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Read Access Violation on Control Flow starting a… | |||
| CVE-2017-10743 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Stack Buffer Overrun (/GS Exception) starting at… | |||
| CVE-2017-10742 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … | |||
| CVE-2017-10741 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… | |||
| CVE-2017-10740 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… | |||
| CVE-2017-10739 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … | |||
| CVE-2017-10738 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "Data Execution Prevention Violation starting at … | |||
| CVE-2017-10737 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!Rt… | |||
| CVE-2017-10736 | high | 7.8 | 7.8 | 9y ago | XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at msvcrt!_VEC_memze… | |||
| CVE-2017-10735 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… | |||
| CVE-2017-10734 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to an "Invalid Handle starting at wow64!Wo… | |||
| CVE-2017-10733 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… | |||
| CVE-2017-10732 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Br… | |||
| CVE-2017-10731 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at FORMATS!GetPlugInInfo+0x00… | |||
| CVE-2017-10730 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at FORMATS!GetPlugInInfo+0x00… | |||
| CVE-2017-10729 | high | 7.8 | 7.8 | 9y ago | IrfanView version 4.44 (32bit) allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at ntdll_77df0000!RtlpWaitOnC… | |||
| CVE-2017-10728 | high | 7.8 | 7.8 | 9y ago | Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Error Code (0xe06d7363) starting at wow64!Wow64NotifyDeb… | |||
| CVE-2017-10727 | high | 7.8 | 7.8 | 9y ago | Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address controls Branch Selection sta… | |||
| CVE-2017-10726 | high | 7.8 | 7.8 | 9y ago | Winamp 5.666 Build 3516(x86) might allow attackers to execute arbitrary code or cause a denial of service via a crafted .flv file, related to "Data from Faulting Address may be used as a return value… | |||
| CVE-2017-10929 | high | 7.8 | 7.8 | 9y ago | The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecifie… | |||
| CVE-2017-10686 | high | 7.8 | 7.8 | 9y ago | In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function… | |||
| CVE-2017-3748 | high | 7.8 | 7.8 | 9y ago | On Lenovo VIBE mobile phones, improper access controls on the nac_server component can be abused in conjunction with CVE-2017-3749 and CVE-2017-3750 to elevate privileges to the root user (commonly k… | |||
| CVE-2017-10671 | high | 7.8 | 7.8 | 9y ago | Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impa… | |||
| CVE-2017-9996 | high | 7.8 | 7.8 | 9y ago | The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY forma… | |||
| CVE-2017-9995 | high | 7.8 | 7.8 | 9y ago | libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application c… | |||
| CVE-2017-9994 | high | 7.8 | 7.8 | 9y ago | libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pix_fmt is set, which allows remote attackers to cau… | |||
| CVE-2017-9991 | high | 7.8 | 7.8 | 9y ago | Heap-based buffer overflow in the xwd_decode_frame function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows r… | |||
| CVE-2017-9986 | high | 7.8 | 7.8 | 9y ago | The intr function in sound/oss/msnd_pinnacle.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by c… | |||
| CVE-2017-9985 | high | 7.8 | 7.8 | 9y ago | The snd_msndmidi_input_read function in sound/isa/msnd/msnd_midi.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecifi… | |||
| CVE-2017-9984 | high | 7.8 | 7.8 | 9y ago | The snd_msnd_interrupt function in sound/isa/msnd/msnd_pinnacle.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecifie… | |||
| CVE-2017-9949 | high | 7.8 | 7.8 | 9y ago | The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (stack-based buffer underflow and application crash) or possibly have unspecif… | |||
| CVE-2017-6669 | high | 7.8 | 7.8 | 9y ago | Multiple buffer overflow vulnerabilities exist in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files. An attacker could exploit these vulnerabilities by providing a us… | |||
| CVE-2017-9871 | high | 7.8 | 7.8 | 9y ago | The III_i_stereo function in layer3.c in mpglib, as used in libmpgdecoder.a in LAME 3.99.5 and other products, allows remote attackers to cause a denial of service (stack-based buffer overflow and ap… | |||
| CVE-2017-9776 | high | 7.8 | 7.8 | 9y ago | Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) or possibly have unspe… | |||
| CVE-2017-7918 | medium | 6.8 | 7.8 | 9y ago | An Improper Access Control issue was discovered in Cambium Networks ePMP. After a valid user has used SNMP configuration export, an attacker is able to remotely trigger device configuration backups u… | |||
| CVE-2017-2813 | high | 7.8 | 7.8 | 9y ago | An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44. A specially crafted jpeg2000 image can cause an integer overflow leading to wrong memory … |