CVEs from 2017
Total
11,657
critical
critical 1,650
high
high 5,043
medium
medium 4,169
low
low 159
% Critical
14.2%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-9933 | high | 7.5 | 7.5 | 9y ago | Improper cache invalidation in Joomla! CMS 1.7.3 through 3.7.2 leads to disclosure of form contents. | |||
| CVE-2017-10987 | high | 7.5 | 7.5 | 9y ago | multiple issues in freeradius | |||
| CVE-2017-10986 | high | 7.5 | 7.5 | 9y ago | multiple issues in freeradius | |||
| CVE-2017-10985 | high | 7.5 | 7.5 | 9y ago | multiple issues in freeradius | |||
| CVE-2017-10983 | high | 7.5 | 7.5 | 9y ago | multiple issues in freeradius | |||
| CVE-2017-10982 | high | 7.5 | 7.5 | 9y ago | An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode_options()" and a denial of service. | |||
| CVE-2017-10981 | high | 7.5 | 7.5 | 9y ago | An FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in fr_dhcp_decode()" and a denial of service. | |||
| CVE-2017-10980 | high | 7.5 | 7.5 | 9y ago | An FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in decode_tlv()" and a denial of service. | |||
| CVE-2017-10978 | high | 7.5 | 7.5 | 9y ago | multiple issues in freeradius | |||
| CVE-2017-11367 | high | 7.5 | 7.5 | 9y ago | The shoco_decompress function in the API in shoco through 2017-07-17 allows remote attackers to cause a denial of service (buffer over-read and application crash) via malformed compressed data. | |||
| CVE-2017-9951 | high | 7.5 | 7.5 | 9y ago | The try_read_command function in memcached.c in memcached before 1.4.39 allows remote attackers to cause a denial of service (segmentation fault) via a request to add/set a key, which makes a compari… | |||
| CVE-2017-9814 | high | 7.5 | 7.5 | 9y ago | cairo-truetype-subset.c in cairo 1.15.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) because of mishandling of an unexpected malloc(0) call. | |||
| CVE-2017-7688 | high | 7.5 | 7.5 | 9y ago | Apache OpenMeetings updates user password in insecure manner | |||
| CVE-2017-7684 | high | 7.5 | 7.5 | 9y ago | Apache OpenMeetings vulnerable to Uncontrolled Resource Consumption | |||
| CVE-2017-7683 | high | 7.5 | 7.5 | 9y ago | Apache OpenMeetings displays Tomcat version and detailed error stack trace | |||
| CVE-2017-7680 | high | 7.5 | 7.5 | 9y ago | Apache OpenMeetings allows flash content to be loaded from untrusted domains | |||
| CVE-2017-3101 | high | 7.5 | 7.5 | 9y ago | Adobe Connect versions 9.6.1 and earlier have a clickjacking vulnerability. Successful exploitation could lead to a clickjacking attack. | |||
| CVE-2017-2348 | high | 7.5 | 7.5 | 9y ago | The Juniper Enhanced jdhcpd daemon may experience high CPU utilization, or crash and restart upon receipt of an invalid IPv6 UDP packet. Both high CPU utilization and repeated crashes of the jdhcpd d… | |||
| CVE-2017-2347 | high | 7.5 | 7.5 | 9y ago | A denial of service vulnerability in rpd daemon of Juniper Networks Junos OS allows a malformed MPLS ping packet to crash the rpd daemon if MPLS OAM is configured. Repeated crashes of the rpd daemon … | |||
| CVE-2017-2314 | high | 7.5 | 7.5 | 9y ago | Receipt of a malformed BGP OPEN message may cause the routing protocol daemon (rpd) process to crash and restart. By continuously sending specially crafted BGP OPEN messages, an attacker can repeated… | |||
| CVE-2017-1183 | high | 7.5 | 7.5 | 9y ago | IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to modify SQL commands to the Portal Server, when default client-server communications, HTTP, are being used. IBM X-For… | |||
| CVE-2017-1182 | high | 7.5 | 7.5 | 9y ago | IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to execute arbitrary commands on the system, when default client-server default communications, HTTP, are being used. I… | |||
| CVE-2017-11343 | high | 7.5 | 7.5 | 9y ago | Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme up to and including 4.12.0 are vulnerable to an algorithmic complexity attack. An attacker can provide crafted input which, … | |||
| CVE-2017-11342 | high | 7.5 | 7.5 | 9y ago | There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack. | |||
| CVE-2017-11341 | high | 7.5 | 7.5 | 9y ago | There is a heap based buffer over-read in lexer.hpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack. | |||
| CVE-2017-10605 | high | 7.5 | 7.5 | 9y ago | On all vSRX and SRX Series devices, when the DHCP or DHCP relay is configured, specially crafted packet might cause the flowd process to crash, halting or interrupting traffic from flowing through th… | |||
| CVE-2017-1000080 | high | 7.5 | 7.5 | 9y ago | Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets. | |||
| CVE-2017-1000079 | high | 7.5 | 7.5 | 9y ago | Linux foundation ONOS 1.9.0 is vulnerable to a DoS. | |||
| CVE-2017-1000068 | high | 7.5 | 7.5 | 9y ago | TestTrack Server versions 1.0 and earlier are vulnerable to an authentication flaw in the split disablement feature resulting in the ability to disable arbitrary running splits and cause denial of se… | |||
| CVE-2017-1000066 | high | 7.5 | 7.5 | 9y ago | The entry details view function in KeePass version 1.32 inadvertently decrypts certain database entries into memory, which may result in the disclosure of sensitive information. | |||
| CVE-2017-1000064 | high | 7.5 | 7.5 | 9y ago | kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS | |||
| CVE-2017-1000062 | high | 7.5 | 7.5 | 9y ago | kittoframework kitto 0.5.1 is vulnerable to directory traversal in the router resulting in remote code execution | |||
| CVE-2017-1000050 | high | 7.5 | 7.5 | 9y ago | JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service. | |||
| CVE-2017-1000048 | high | 7.5 | 7.5 | 9y ago | Prototype Pollution Protection Bypass in qs | |||
| CVE-2017-1000046 | high | 7.5 | 7.5 | 9y ago | Sensitive Cookie Without HttpOnly and Secure Flag | |||
| CVE-2017-1000029 | high | 7.5 | 7.5 | 9y ago | Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Local File Inclusion vulnerability, that makes it possible to include arbitrary files on the server, this vulnerability … | |||
| CVE-2017-1000025 | high | 7.5 | 7.5 | 9y ago | GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfi… | |||
| CVE-2017-1000024 | high | 7.5 | 7.5 | 9y ago | Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission | |||
| CVE-2017-1000018 | high | 7.5 | 7.5 | 9y ago | phpMyAdmin 4.0, 4.4., and 4.6 are vulnerable to a DOS attack in the replication status by using a specially crafted table name | |||
| CVE-2017-1000016 | high | 7.5 | 7.5 | 9y ago | A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. This is a re-issue of an incomplete fix from PMASA-2016-18. | |||
| CVE-2017-1000014 | high | 7.5 | 7.5 | 9y ago | phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality | |||
| CVE-2017-1000001 | high | 7.5 | 7.5 | 9y ago | FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message validation not being enabled if configured to be on. | |||
| CVE-2017-9789 | high | 7.5 | 7.5 | 9y ago | When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behaviour. | |||
| CVE-2017-9787 | high | 7.5 | 7.5 | 9y ago | Spring AOP functionality (Struts) vulnerable to DoS attack | |||
| CVE-2017-7529 | high | 7.5 | 7.5 | 9y ago | Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered … | |||
| CVE-2017-9977 | high | 7.5 | 7.5 | 9y ago | AVG AntiVirus for MacOS with scan engine before 4668 might allow remote attackers to bypass malware detection by leveraging failure to scan inside disk image (aka DMG) files. | |||
| CVE-2017-9845 | high | 7.5 | 7.5 | 9y ago | disp+work 7400.12.21.30308 in SAP NetWeaver 7.40 allows remote attackers to cause a denial of service (resource consumption) via a crafted DIAG request, aka SAP Security Note 2405918. | |||
| CVE-2017-4055 | high | 7.5 | 7.5 | 9y ago | Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD dete… | |||
| CVE-2017-11188 | high | 7.5 | 7.5 | 9y ago | The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check. | |||
| CVE-2017-11178 | high | 7.5 | 7.5 | 9y ago | In FineCMS through 2017-07-11, application/core/controller/style.php allows remote attackers to write to arbitrary files via the contents and filename parameters in a route=style action. For example,… | |||
| CVE-2017-8619 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge on Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability in the way affected Microsoft scripting engines render when handling obje… | |||
| CVE-2017-8617 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Windows 10 1703 Microsoft Edge allows a remote code execution vulnerability in the way affected Microsoft scripting engines render when handling objects in memory, aka "Microsoft Ed… | |||
| CVE-2017-8610 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to render when handling objects in memory … | |||
| CVE-2017-8609 | high | 7.5 | 7.5 | 9y ago | Microsoft Internet Explorer in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScr… | |||
| CVE-2017-8608 | high | 7.5 | 7.5 | 9y ago | Microsoft browsers in Microsoft Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacke… | |||
| CVE-2017-8607 | high | 7.5 | 7.5 | 9y ago | Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow… | |||
| CVE-2017-8606 | high | 7.5 | 7.5 | 9y ago | Microsoft browsers in Microsoft Windows 7, Windows Server 2008 and R2, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow… | |||
| CVE-2017-8605 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fa… | |||
| CVE-2017-8604 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to… | |||
| CVE-2017-8603 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to… | |||
| CVE-2017-8598 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fa… | |||
| CVE-2017-8596 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fails to rende… | |||
| CVE-2017-8595 | high | 7.5 | 7.5 | 9y ago | Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the current user when the JavaScript engine fa… | |||
| CVE-2017-8585 | high | 7.5 | 7.5 | 9y ago | Improper Input Validation in Microsoft.NETCore.App | |||
| CVE-2017-8584 | high | 7.5 | 7.5 | 9y ago | Windows 10 1607 and Windows Server 2016 allow an attacker to execute code remotely via a specially crafted WiFi packet aka "HoloLens Remote Code Execution Vulnerability." | |||
| CVE-2017-8495 | high | 7.5 | 7.5 | 9y ago | Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an attac… | |||
| CVE-2017-7730 | high | 7.5 | 7.5 | 9y ago | iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding. | |||
| CVE-2017-7729 | high | 7.5 | 7.5 | 9y ago | On iSmartAlarm cube devices, there is Incorrect Access Control because a "new key" is transmitted in cleartext. | |||
| CVE-2017-7726 | high | 7.5 | 7.5 | 9y ago | iSmartAlarm cube devices have an SSL Certificate Validation Vulnerability. | |||
| CVE-2017-11164 | high | 7.5 | 7.5 | 9y ago | In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exec.c allows stack exhaustion (uncontrolled recursion) when processing a crafted regular expression. | |||
| CVE-2017-6731 | high | 7.5 | 7.5 | 9y ago | A vulnerability in Multicast Source Discovery Protocol (MSDP) ingress packet processing for Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the MSDP session to be unexp… | |||
| CVE-2017-6729 | high | 7.5 | 7.5 | 9y ago | A vulnerability in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system for Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core (VPC) Software c… | |||
| CVE-2017-5652 | high | 7.5 | 7.5 | 9y ago | During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in… | |||
| CVE-2017-7670 | high | 7.5 | 7.5 | 9y ago | Apache Traffic Control vulnerable to Slowloris-style Denial of Service attack | |||
| CVE-2017-11145 | high | 7.5 | 7.5 | 9y ago | In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelib_meridian parsing code could be used by attackers able to supply date strings to leak informat… | |||
| CVE-2017-11144 | high | 7.5 | 7.5 | 9y ago | In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could lead to a crash of … | |||
| CVE-2017-11143 | high | 7.5 | 7.5 | 9y ago | In PHP before 5.6.31, an invalid free in the WDDX deserialization of boolean parameters could be used by attackers able to inject XML for deserialization to crash the PHP interpreter, related to an i… | |||
| CVE-2017-11142 | high | 7.5 | 7.5 | 9y ago | In PHP before 5.6.31, 7.x before 7.0.17, and 7.1.x before 7.1.3, remote attackers could cause a CPU consumption denial of service attack by injecting long form variables, related to main/php_variable… | |||
| CVE-2017-11113 | high | 7.5 | 7.5 | 9y ago | In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to … | |||
| CVE-2017-11112 | high | 7.5 | 7.5 | 9y ago | In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is u… | |||
| CVE-2017-11108 | high | 7.5 | 7.5 | 9y ago | tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called… | |||
| CVE-2017-7660 | high | 7.5 | 7.5 | 9y ago | Apache Solr insecure inter-node communication | |||
| CVE-2017-11102 | high | 7.5 | 7.5 | 9y ago | The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (application crash) during JNG reading via a zero-length color_image data st… | |||
| CVE-2017-9631 | high | 7.5 | 7.5 | 9y ago | A Null Pointer Dereference issue was discovered in Schneider Electric Wonderware ArchestrA Logger, versions 2017.426.2307.1 and prior. The null pointer dereference vulnerability could allow an attack… | |||
| CVE-2017-1000381 | high | 7.5 | 7.5 | 9y ago | The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was… | |||
| CVE-2017-9524 | high | 7.5 | 7.5 | 9y ago | The qemu-nbd server in QEMU (aka Quick Emulator), when built with the Network Block Device (NBD) Server support, allows remote attackers to cause a denial of service (segmentation fault and server cr… | |||
| CVE-2017-8290 | high | 7.5 | 7.5 | 9y ago | A potential Buffer Overflow Vulnerability (from a BB Code handling issue) has been identified in TeamSpeak Server version 3.0.13.6 (08/11/2016 09:48:33), it enables the users to Crash any WINDOWS Cli… | |||
| CVE-2017-10976 | high | 7.5 | 7.5 | 9y ago | When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c. | |||
| CVE-2017-1264 | high | 7.5 | 7.5 | 9y ago | IBM Security Guardium 10.0 does not prove or insufficiently proves that the actors identity is correct which can lead to exposure of resources or functionality to unintended actors. IBM X-Force ID: 1… | |||
| CVE-2017-2294 | high | 7.5 | 7.5 | 9y ago | Versions of Puppet Enterprise prior to 2016.4.5 or 2017.2.1 failed to mark MCollective server private keys as sensitive (a feature added in Puppet 4.6), so key values could be logged and stored in Pu… | |||
| CVE-2017-10922 | high | 7.5 | 7.5 | 9y ago | The grant-table feature in Xen through 4.8.x mishandles MMIO region grant references, which allows guest OS users to cause a denial of service (loss of grant trackability), aka XSA-224 bug 3. | |||
| CVE-2017-10916 | high | 7.5 | 7.5 | 9y ago | The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions (MPX) and Protection Key (PKU) features, which makes it easier for guest OS user… | |||
| CVE-2017-10810 | high | 7.5 | 7.5 | 9y ago | Memory leak in the virtio_gpu_object_create function in drivers/gpu/drm/virtio/virtgpu_object.c in the Linux kernel through 4.11.8 allows attackers to cause a denial of service (memory consumption) b… | |||
| CVE-2017-10803 | medium | 6.5 | 7.5 | 9y ago | In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, insecure handling of anonymization data in the Database Anonymization module allows remote authenticated pr… | |||
| CVE-2017-8893 | high | 7.5 | 7.5 | 9y ago | AeroAdmin 4.1 uses a function to copy data between two pointers where the size of the data copied is taken directly from a network packet. This can cause a buffer overflow and denial of service. | |||
| CVE-2017-8797 | high | 7.5 | 7.5 | 9y ago | The NFSv4 server in the Linux kernel before 4.11.3 does not properly validate the layout type when processing the NFSv4 pNFS GETDEVICEINFO or LAYOUTGET operand in a UDP packet from a remote attacker.… | |||
| CVE-2017-0377 | high | 7.5 | 7.5 | 9y ago | Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties b… | |||
| CVE-2017-10790 | high | 7.5 | 7.5 | 9y ago | The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node st… | |||
| CVE-2017-6046 | high | 7.5 | 7.5 | 9y ago | An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive informati… | |||
| CVE-2017-6017 | high | 7.5 | 7.5 | 9y ago | A Resource Exhaustion issue was discovered in Schneider Electric Modicon M340 PLC BMXNOC0401, BMXNOE0100, BMXNOE0110, BMXNOE0110H, BMXNOR0200H, BMXP341000, BMXP342000, BMXP3420102, BMXP3420102CL, BMX… |