CVEs from 2017
Total
11,681
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-9514 | high | 8.8 | 8.8 | 9y ago | Bamboo before 6.0.5, 6.1.x before 6.1.4, and 6.2.x before 6.2.1 had a REST endpoint that parsed a YAML file and did not sufficiently restrict which classes could be loaded. An attacker who can log in… | |||
| CVE-2017-15285 | high | 8.8 | 8.8 | 9y ago | X-Cart 5.2.23, 5.3.1.9, 5.3.2.13, and 5.3.3 is vulnerable to Remote Code Execution. This vulnerability exists because the application fails to check remote file extensions before saving locally. This… | |||
| CVE-2017-15281 | high | 8.8 | 8.8 | 9y ago | ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to "… | |||
| CVE-2017-2888 | high | 8.8 | 8.8 | 9y ago | An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocate… | |||
| CVE-2017-2887 | high | 8.8 | 8.8 | 9y ago | An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in po… | |||
| CVE-2017-15238 | high | 8.8 | 8.8 | 9y ago | ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26 has a use-after-free issue when the height or width is zero, related to ReadJNGImage. | |||
| CVE-2017-15063 | high | 8.8 | 8.8 | 9y ago | Subrion CMS CSRF Vulnerability | |||
| CVE-2017-13996 | high | 8.8 | 8.8 | 9y ago | A Relative Path Traversal issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web user interface fails to prevent access to critical files that non administrative users should not ha… | |||
| CVE-2017-14353 | high | 8.8 | 8.8 | 9y ago | A remote code execution vulnerability in HP UCMDB Foundation Software versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, and 10.33, could be remotely exploited to allow code execution. | |||
| CVE-2017-15017 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c. | |||
| CVE-2017-15016 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c. | |||
| CVE-2017-15015 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in PDFDelegateMessage in coders/pdf.c. | |||
| CVE-2017-1000120 | high | 8.8 | 8.8 | 9y ago | [ERPNext][Frappe Version <= 7.1.27] SQL injection vulnerability in frappe.share.get_users allows remote authenticated users to execute arbitrary SQL commands via the fields parameter. | |||
| CVE-2017-1000107 | high | 8.8 | 8.8 | 9y ago | Sandbox bypass in Jenkins Script Security Plugin sandbox bypass | |||
| CVE-2017-1000096 | high | 8.8 | 8.8 | 9y ago | Arbitrary code execution due to incomplete sandbox protection in Jenkins Pipeline | |||
| CVE-2017-1000093 | high | 8.8 | 8.8 | 9y ago | Jenkins Poll SCM Plugin vulnerable to Cross-Site Request Forgery | |||
| CVE-2017-1000090 | high | 8.8 | 8.8 | 9y ago | CSRF vulnerability in Jenkins Role-based Authorization Strategy Plugin configuration | |||
| CVE-2017-1311 | high | 8.8 | 8.8 | 9y ago | IBM Insights Foundation for Energy 2.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete inf… | |||
| CVE-2017-13982 | high | 8.8 | 8.8 | 9y ago | A directory traversal vulnerability in HPE BSM Platform Application Performance Management System Health product versions 9.26, 9.30 and 9.40, allows users to upload unrestricted files. | |||
| CVE-2017-8448 | high | 8.8 | 8.8 | 9y ago | An error was found in the permission model used by X-Pack Alerting 5.0.0 to 5.6.0 whereby users mapped to certain built-in roles could create a watch that results in that user gaining elevated privil… | |||
| CVE-2017-14867 | high | 8.8 | 8.8 | 9y ago | Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers… | |||
| CVE-2017-12230 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the web-based user interface (web UI) of Cisco IOS XE 16.2 could allow an authenticated, remote attacker to elevate their privileges on an affected device. The vulnerability is due… | |||
| CVE-2017-12226 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E (Wireless) Switches, and Cisco Ne… | |||
| CVE-2017-14796 | high | 8.8 | 8.8 | 9y ago | The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (integer underflow and application crash) or possibly have unspecified other impact via … | |||
| CVE-2017-14795 | high | 8.8 | 8.8 | 9y ago | The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact via… | |||
| CVE-2017-14527 | high | 8.8 | 8.8 | 9y ago | Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Webtop 6.8.0160.0073 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files… | |||
| CVE-2017-14526 | high | 8.8 | 8.8 | 9y ago | Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Administrator 7.2.0180.0055 allow remote authenticated users to list the contents of arbitrary directories, read arbitrar… | |||
| CVE-2017-1407 | high | 8.8 | 8.8 | 9y ago | IBM Security Identity Manager Virtual Appliance 6.0 and 7.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacke… | |||
| CVE-2017-11191 | high | 8.8 | 8.8 | 9y ago | FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID (for the same user account) that had… | |||
| CVE-2017-14767 | high | 8.8 | 8.8 | 9y ago | The sdp_parse_fmtp_config_h264 function in libavformat/rtpdec_h264.c in FFmpeg before 3.3.4 mishandles empty sprop-parameter-sets values, which allows remote attackers to cause a denial of service (h… | |||
| CVE-2017-14764 | high | 8.8 | 8.8 | 9y ago | GeniXCMS arbitrary PHP code execution | |||
| CVE-2017-14763 | high | 8.8 | 8.8 | 9y ago | GeniXCMS arbitrary PHP code execution | |||
| CVE-2017-1539 | high | 8.8 | 8.8 | 9y ago | IBM Business Process Manager 7.5, 8.0, and 8.5 is vulnerable to privilege escalation by not properly distinguishing internal group memberships from user registry group memberships. By manipulating LD… | |||
| CVE-2017-5200 | high | 8.8 | 8.8 | 9y ago | Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2 allows arbitrary command execution on a salt-master via Salt's ssh_client. | |||
| CVE-2017-5192 | high | 8.8 | 8.8 | 9y ago | When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x before 2016.11.2, external authentication is not respected, enabling all au… | |||
| CVE-2017-14001 | high | 8.8 | 8.8 | 9y ago | An Improper Neutralization of Special Elements used in an OS Command issue was discovered in Digium Asterisk GUI 2.1.0 and prior. An OS command injection vulnerability has been identified that may al… | |||
| CVE-2017-7969 | high | 8.8 | 8.8 | 9y ago | A cross-site request forgery vulnerability exists on the Secure Gateway component of Schneider Electric's PowerSCADA Anywhere v1.0 redistributed with PowerSCADA Expert v8.1 and PowerSCADA Expert v8.2… | |||
| CVE-2017-14734 | high | 8.8 | 8.8 | 9y ago | The build_msps function in libbpg.c in libbpg 0.9.7 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact v… | |||
| CVE-2017-14627 | high | 7.8 | 8.8 | 9y ago | Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) a… | |||
| CVE-2017-14081 | high | 8.8 | 8.8 | 9y ago | Proxy command injection vulnerabilities in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations. | |||
| CVE-2017-14079 | high | 8.8 | 8.8 | 9y ago | Unrestricted file uploads in Trend Micro Mobile Security (Enterprise) versions before 9.7 Patch 3 allow remote attackers to execute arbitrary code on vulnerable installations. | |||
| CVE-2017-11395 | high | 8.8 | 8.8 | 9y ago | Command injection vulnerability in Trend Micro Smart Protection Server (Standalone) 3.1 and 3.2 server administration UI allows attackers with authenticated access to execute arbitrary code on vulner… | |||
| CVE-2017-3770 | high | 8.8 | 8.8 | 9y ago | Privilege escalation vulnerability in LXCA versions earlier than 1.3.2 where an authenticated user may be able to abuse certain web interface functionality to execute privileged commands within the u… | |||
| CVE-2017-8007 | high | 8.8 | 8.8 | 9y ago | In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Webservice Gateway is affected by a directory traversal vulnerability. Attackers with knowledge of Webservice Ga… | |||
| CVE-2017-14682 | high | 8.8 | 8.8 | 9y ago | GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impa… | |||
| CVE-2017-14647 | high | 8.8 | 8.8 | 9y ago | A heap-based buffer overflow was discovered in AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote… | |||
| CVE-2017-14644 | high | 8.8 | 8.8 | 9y ago | A heap-based buffer overflow was discovered in the AP4_HdlrAtom class in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code ex… | |||
| CVE-2017-14639 | high | 8.8 | 8.8 | 9y ago | AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect character data types, which causes a stack-based buffer underflow and out-of-bounds write, leading to d… | |||
| CVE-2017-14160 | high | 8.8 | 8.8 | 9y ago | The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified ot… | |||
| CVE-2017-14635 | high | 8.8 | 8.8 | 9y ago | In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write permissions to gain privileges via code in… | |||
| CVE-2017-12253 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the Cisco Unified Intelligence Center could allow an unauthenticated, remote attacker to execute unwanted actions. The vulnerability is due to a lack of cross-site request forgery … | |||
| CVE-2017-12214 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the Operations, Administration, Maintenance, and Provisioning (OAMP) credential reset functionality for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remo… | |||
| CVE-2017-14311 | high | 7.8 | 8.8 | 9y ago | The Winring0x32.sys driver in NetMechanica NetDecision 5.8.2 allows local users to gain privileges via a crafted 0x9C402088 IOCTL call. | |||
| CVE-2017-9333 | high | 8.8 | 8.8 | 9y ago | OpenWebif 1.2.5 allows remote code execution via a URL to the CallOPKG function in the IpkgController class in plugin/controllers/ipkg.py, when the URL refers to an attacker-controlled web site with … | |||
| CVE-2017-14509 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26). A remote file inclusion has been identified in the Connectors … | |||
| CVE-2017-14508 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in SugarCRM before 7.7.2.3, 7.8.x before 7.8.2.2, and 7.9.x before 7.9.2.0 (and Sugar Community Edition 6.5.26). Several areas have been identified in the Documents and Emails… | |||
| CVE-2017-14500 | high | 8.8 | 8.8 | 9y ago | Improper Neutralization of Special Elements used in an OS Command in the podcast playback function of Podbeuter in Newsbeuter 0.3 through 2.9 allows remote attackers to perform user-assisted code exe… | |||
| CVE-2017-4924 | high | 8.8 | 8.8 | 9y ago | VMware ESXi (ESXi 6.5 without patch ESXi650-201707101-SG), Workstation (12.x before 12.5.7) and Fusion (8.x before 8.5.8) contain an out-of-bounds write vulnerability in SVGA device. This issue may a… | |||
| CVE-2017-0782 | high | 8.8 | 8.8 | 9y ago | A remote code execution vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146237. | |||
| CVE-2017-14482 | high | 8.8 | 8.8 | 9y ago | GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell… | |||
| CVE-2017-1002026 | high | 8.8 | 8.8 | 9y ago | Vulnerability in wordpress plugin Event Expresso Free v3.1.37.11.L, The function edit_event_category does not sanitize user-supplied input via the $id parameter before passing it into an SQL statemen… | |||
| CVE-2017-2816 | high | 8.8 | 8.8 | 9y ago | An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on t… | |||
| CVE-2017-6008 | high | 7.8 | 8.8 | 9y ago | A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to escalate p… | |||
| CVE-2017-11350 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices. | |||
| CVE-2017-8660 | high | 8.8 | 8.8 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft browser… | |||
| CVE-2017-14399 | high | 8.8 | 8.8 | 9y ago | In BlackCat CMS 1.2.2, unrestricted file upload is possible in backend\media\ajax_rename.php via the extension parameter, as demonstrated by changing the extension from .jpg to .php. | |||
| CVE-2017-14348 | high | 8.8 | 8.8 | 9y ago | LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file. | |||
| CVE-2017-14344 | high | 7.8 | 8.8 | 9y ago | This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i… | |||
| CVE-2017-14319 | high | 8.8 | 8.8 | 9y ago | A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to make sure page table entries remain in sync with other accou… | |||
| CVE-2017-14316 | high | 8.8 | 8.8 | 9y ago | A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memf… | |||
| CVE-2017-14266 | high | 7.8 | 8.8 | 9y ago | tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160. | |||
| CVE-2017-14153 | high | 7.8 | 8.8 | 9y ago | This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i… | |||
| CVE-2017-14075 | high | 7.8 | 8.8 | 9y ago | This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i… | |||
| CVE-2017-14267 | high | 8.8 | 8.8 | 9y ago | EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSetti… | |||
| CVE-2017-14251 | high | 8.8 | 8.8 | 9y ago | TYPO3 Arbitrary Code Execution | |||
| CVE-2017-14225 | high | 8.8 | 8.8 | 9y ago | The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg 3.3.3 may return a NULL pointer depending on a value contained in a file, but callers do not anticipate this, as demonstrated by … | |||
| CVE-2017-14224 | high | 8.8 | 8.8 | 9y ago | A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service or code execution via a crafted file. | |||
| CVE-2017-0791 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37306719. References: B-V2017052302. | |||
| CVE-2017-0790 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37357704. References: B-V2017053101. | |||
| CVE-2017-0789 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37685267. References: B-V2017053102. | |||
| CVE-2017-0788 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37722328. References: B-V2017053103. | |||
| CVE-2017-0787 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37722970. References: B-V2017053104. | |||
| CVE-2017-0786 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References: B-V2017060101. | |||
| CVE-2017-0784 | high | 8.8 | 8.8 | 9y ago | A elevation of privilege vulnerability in the Android system (nfc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37287958. | |||
| CVE-2017-14167 | high | 8.8 | 8.8 | 9y ago | Integer overflow in the load_multiboot function in hw/i386/multiboot.c in QEMU (aka Quick Emulator) allows local guest OS users to execute arbitrary code on the host via crafted multiboot header addr… | |||
| CVE-2017-12216 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the web-based user interface of Cisco SocialMiner could allow an unauthenticated, remote attacker to have read and write access to information stored in the affected system. The vu… | |||
| CVE-2017-12838 | high | 8.8 | 8.8 | 9y ago | Cross-site request forgery (CSRF) vulnerability in NexusPHP 1.5 allows remote attackers to hijack the authentication of users for requests that (1) send manas via a request to mybonus.php or (2) add … | |||
| CVE-2017-14169 | high | 8.8 | 8.8 | 9y ago | In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xfffff… | |||
| CVE-2017-14164 | high | 8.8 | 8.8 | 9y ago | A size-validation issue was discovered in opj_j2k_write_sot in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service (heap-b… | |||
| CVE-2017-1097 | high | 8.8 | 8.8 | 9y ago | IBM Emptoris Strategic Supply Management Platform 10.0.0.x through 10.1.1.x is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions tra… | |||
| CVE-2017-2822 | high | 8.8 | 8.8 | 9y ago | An exploitable code execution vulnerability exists in the image rendering functionality of Lexmark Perceptive Document Filters 11.3.0.2400. A specifically crafted PDF can cause a function call on a c… | |||
| CVE-2017-2821 | high | 8.8 | 8.8 | 9y ago | An exploitable use-after-free exists in the PDF parsing functionality of Lexmark Perspective Document Filters 11.3.0.2400 and 11.4.0.2452. A crafted PDF document can lead to a use-after-free resultin… | |||
| CVE-2017-14152 | high | 8.8 | 8.8 | 9y ago | A mishandled zero case was discovered in opj_j2k_set_cinema_parameters in lib/openjp2/j2k.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of serv… | |||
| CVE-2017-14151 | high | 8.8 | 8.8 | 9y ago | An off-by-one error was discovered in opj_tcd_code_block_enc_allocate_data in lib/openjp2/tcd.c in OpenJPEG 2.2.0. The vulnerability causes an out-of-bounds write, which may lead to remote denial of … | |||
| CVE-2017-14146 | high | 8.8 | 8.8 | 9y ago | HelpDEZk 1.1.1 allows remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it in the helpdezk\app\uploads\helpdezk\attachments\ directory. | |||
| CVE-2017-1000083 | high | 7.8 | 8.8 | 9y ago | backend/comics/comics-document.c (aka the comic book backend) in GNOME Evince before 3.24.1 allows remote attackers to execute arbitrary commands via a .cbt file that is a TAR archive containing a fi… | |||
| CVE-2017-14123 | high | 8.8 | 8.8 | 9y ago | Zoho ManageEngine Firewall Analyzer 12200 has an unrestricted File Upload vulnerability in the "Group Chat" section. Any user can upload files with any extensions. By uploading a PHP file to the serv… | |||
| CVE-2017-14119 | high | 8.8 | 8.8 | 9y ago | In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\snmpwalk.php does not properly restrict popen calls, which allows remote attackers to execute arbitrary commands via shell… | |||
| CVE-2017-14118 | high | 8.8 | 8.8 | 9y ago | In the EyesOfNetwork web interface (aka eonweb) 5.1-0, module\tool_all\tools\interface.php does not properly restrict exec calls, which allows remote attackers to execute arbitrary commands via shell… | |||
| CVE-2017-12421 | high | 8.8 | 8.8 | 9y ago | NetApp Clustered Data ONTAP 8.3.x before 8.3.2P12 allows remote authenticated users to execute arbitrary code on the storage controller via unspecified vectors. |