CVEs from 2017
Total
11,681
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
9.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-9370 | high | 8.8 | 8.8 | 9y ago | An information disclosure / elevation of privilege vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker who has legitimate access to BlackBerry Workspaces to gain acc… | |||
| CVE-2017-12754 | high | 8.8 | 8.8 | 9y ago | Stack buffer overflow in httpd in Asuswrt-Merlin firmware 380.67_0RT-AC5300 and earlier for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-A… | |||
| CVE-2017-8691 | high | 8.8 | 8.8 | 9y ago | Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow an attacker to execute code remotely on a target system when the Windows font library fails to properly handle specially crafted embedded f… | |||
| CVE-2017-8664 | high | 8.8 | 8.8 | 9y ago | Windows Hyper-V in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability when it fa… | |||
| CVE-2017-8625 | high | 8.8 | 8.8 | 9y ago | Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to bypass Device Guard User Mode Code Integrity (UMCI) policies due to Internet Explorer failing to … | |||
| CVE-2017-8503 | high | 8.8 | 8.8 | 9y ago | Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability".… | |||
| CVE-2017-12678 | high | 8.8 | 8.8 | 9y ago | In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspeci… | |||
| CVE-2017-12669 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage in coders/cals.c. | |||
| CVE-2017-12668 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c. | |||
| CVE-2017-12667 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in coders\mat.c. | |||
| CVE-2017-12666 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImage in coders/inline.c. | |||
| CVE-2017-12665 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c. | |||
| CVE-2017-12664 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage in coders/palm.c. | |||
| CVE-2017-12663 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in coders/map.c. | |||
| CVE-2017-12662 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in coders/pdf.c. | |||
| CVE-2017-12653 | high | 7.8 | 8.8 | 9y ago | 360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse Shcore.dll file in any directory in the PATH, as demonstrated by the C:\Python27 directory. | |||
| CVE-2017-12651 | high | 8.8 | 8.8 | 9y ago | Cross Site Request Forgery (CSRF) exists in the Blacklist and Whitelist IP Wizard in init.php in the Loginizer plugin before 1.3.6 for WordPress because the HTTP Referer header is not checked. | |||
| CVE-2017-12644 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c. | |||
| CVE-2017-12642 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c. | |||
| CVE-2017-12641 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. | |||
| CVE-2017-12640 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c. | |||
| CVE-2017-9633 | high | 8.8 | 8.8 | 9y ago | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 (PMB 8876) chipset on BMW several models produced between 2009-… | |||
| CVE-2017-6757 | high | 8.8 | 8.8 | 9y ago | A vulnerability in Cisco Unified Communications Manager 10.5(2.10000.5), 11.0(1.10000.10), and 11.5(1.10000.6) could allow an authenticated, remote attacker to conduct a blind SQL injection attack. T… | |||
| CVE-2017-6756 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the Web UI Application of the Cisco Prime Collaboration Provisioning Tool through 12.2 could allow an unauthenticated, remote attacker to execute unwanted actions. The vulnerabilit… | |||
| CVE-2017-12606 | high | 8.8 | 8.8 | 9y ago | Out-of-bounds Write in OpenCV | |||
| CVE-2017-12605 | high | 8.8 | 8.8 | 9y ago | Out-of-bounds Write in OpenCV | |||
| CVE-2017-12604 | high | 8.8 | 8.8 | 9y ago | Out-of-bounds Write in OpenCV | |||
| CVE-2017-12601 | high | 8.8 | 8.8 | 9y ago | Improper Restriction of Operations within the Bounds of a Memory Buffer in OpenCV | |||
| CVE-2017-12599 | high | 8.8 | 8.8 | 9y ago | Out-of-bounds Read in OpenCV | |||
| CVE-2017-12597 | high | 8.8 | 8.8 | 9y ago | Out-of-bounds Write in OpenCV | |||
| CVE-2017-10677 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) exists on Linksys EA4500 devices with Firmware Version before 2.1.41.164606, as demonstrated by a request to apply.cgi to disable SIP. | |||
| CVE-2017-12587 | high | 8.8 | 8.8 | 9y ago | ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c. | |||
| CVE-2017-12585 | high | 8.8 | 8.8 | 9y ago | SLiMS 8 Akasia through 8.3.1 has SQL injection in admin/AJAX_lookup_handler.php (tableName and tableFields parameters), admin/AJAX_check_id.php, and admin/AJAX_vocabolary_control.php. It can be explo… | |||
| CVE-2017-12584 | high | 8.8 | 8.8 | 9y ago | There is no CSRF mitigation in SLiMS 8 Akasia through 8.3.1. Also, an entire user profile (including the password) can be updated without sending the current password. This allows remote attackers to… | |||
| CVE-2017-9863 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in SMA Solar Technology products. If a user simultaneously has Sunny Explorer running and visits a malicious host, cross-site request forgery can be used to change settings in… | |||
| CVE-2017-11388 | high | 8.8 | 8.8 | 9y ago | SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when RestfulServiceUtility.NET.dll doesn't properly validate user provided strings before constructing SQL queries. Forme… | |||
| CVE-2017-7642 | high | 7.8 | 8.8 | 9y ago | The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.21 allows local users to gain root privileges by leveraging failure to verify the path to the enco… | |||
| CVE-2017-2281 | high | 8.8 | 8.8 | 9y ago | WN-AX1167GR firmware version 3.00 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors. | |||
| CVE-2017-2280 | high | 8.8 | 8.8 | 9y ago | WN-AX1167GR firmware version 3.00 and earlier uses hardcoded credentials which may allow an attacker that can access the device to execute arbitrary code on the device. | |||
| CVE-2017-2138 | high | 8.8 | 8.8 | 9y ago | Cross-site request forgery (CSRF) vulnerability in CS-Cart Japanese Edition v4.3.10 and earlier (excluding v2 and v3), CS-Cart Multivendor Japanese Edition v4.3.10 and earlier (excluding v2 and v3) a… | |||
| CVE-2017-11364 | high | 8.8 | 8.8 | 9y ago | The CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate… | |||
| CVE-2017-4921 | high | 8.8 | 8.8 | 9y ago | VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issu… | |||
| CVE-2017-11726 | high | 8.8 | 8.8 | 9y ago | services/system_io/actionprocessor/System.rails in ConnectWise Manage 2017.5 is vulnerable to Cross-Site Request Forgery (CSRF), as demonstrated by changing an e-mail address setting. | |||
| CVE-2017-11648 | high | 8.8 | 8.8 | 9y ago | Techroutes TR 1803-3G Wireless Cellular Router/Modem 2.4.25 devices do not possess any protection against a CSRF vulnerability, as demonstrated by a goform/BasicSettings request to disable port filte… | |||
| CVE-2017-11760 | high | 8.8 | 8.8 | 9y ago | uploadImage.php in ProjeQtOr before 6.3.2 allows remote authenticated users to execute arbitrary PHP code by uploading a .php file composed of concatenated image data and script data, as demonstrated… | |||
| CVE-2017-9490 | high | 8.8 | 8.8 | 9y ago | The Comcast firmware on Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_sey) devices allows configuration changes via CSRF. | |||
| CVE-2017-9489 | high | 8.8 | 8.8 | 9y ago | The Comcast firmware on Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST) devices allows configuration changes via CSRF. | |||
| CVE-2017-9488 | high | 8.8 | 8.8 | 9y ago | The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to access th… | |||
| CVE-2017-11736 | high | 8.8 | 8.8 | 9y ago | SQL injection vulnerability in core\admin\auto-modules\forms\process.php in BigTree 4.2.18 allows remote authenticated users to execute arbitrary SQL commands via the tags array parameter. | |||
| CVE-2017-6257 | high | 8.8 | 8.8 | 9y ago | NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges | |||
| CVE-2017-11646 | high | 8.8 | 8.8 | 9y ago | NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. The… | |||
| CVE-2017-8870 | high | 7.8 | 8.8 | 9y ago | Buffer overflow in AudioCoder 0.8.46 allows remote attackers to execute arbitrary code via a crafted .m3u file. | |||
| CVE-2017-8869 | high | 7.8 | 8.8 | 9y ago | Buffer overflow in MediaCoder 0.8.48.5888 allows remote attackers to execute arbitrary code via a crafted .m3u file. | |||
| CVE-2017-11681 | high | 8.8 | 8.8 | 9y ago | Incorrect Access Control vulnerability in Hashtopussy 0.4.0 allows remote authenticated users to execute actions that should only be available for administrative roles, as demonstrated by an action=c… | |||
| CVE-2017-11680 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) exists in Hashtopussy 0.4.0, allowing an admin password change via users.php. | |||
| CVE-2017-11679 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) exists in Hashtopus 1.5g via the password parameter to admin.php in an a=config action. | |||
| CVE-2017-11678 | high | 8.8 | 8.8 | 9y ago | SQL injection vulnerability in Hashtopus 1.5g allows remote authenticated users to execute arbitrary SQL commands via the format parameter in admin.php. | |||
| CVE-2017-11675 | high | 8.8 | 8.8 | 9y ago | Authenticated RCE in Zen Cart 1.5.5e | |||
| CVE-2017-11642 | high | 8.8 | 8.8 | 9y ago | GraphicsMagick 1.3.26 has a NULL pointer dereference in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11638. | |||
| CVE-2017-11638 | high | 8.8 | 8.8 | 9y ago | GraphicsMagick 1.3.26 has a segmentation violation in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11642. | |||
| CVE-2017-6753 | high | 8.8 | 8.8 | 9y ago | A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected b… | |||
| CVE-2017-11422 | high | 8.8 | 8.8 | 9y ago | Statamic framework Incorrect Permission Assignment | |||
| CVE-2017-2273 | high | 8.8 | 8.8 | 9y ago | Cross-site request forgery (CSRF) vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to hijack the authentication of administrators… | |||
| CVE-2017-1373 | high | 8.8 | 8.8 | 9y ago | Reports executed in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user to execute a report they do not have access to. IBM X-Force … | |||
| CVE-2017-1371 | high | 8.8 | 8.8 | 9y ago | Builder tools running in the IBM TRIRIGA Application Platform 3.3, 3.4, and 3.5 contains a vulnerability that could allow an authenticated user to execute Builder tool actions they do not have access… | |||
| CVE-2017-9930 | high | 8.8 | 8.8 | 9y ago | Cross-Site Request Forgery (CSRF) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by a request to ajax.cgi that enables UPnP. | |||
| CVE-2017-10993 | high | 8.8 | 8.8 | 9y ago | Contao Core directory traversal vulnerability | |||
| CVE-2017-7068 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involve… | |||
| CVE-2017-7055 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7052 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7034 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7030 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7020 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7019 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-7012 | high | 8.8 | 8.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affe… | |||
| CVE-2017-11475 | high | 8.8 | 8.8 | 9y ago | GLPI before 9.1.5.1 has SQL Injection in the condition rule field, exploitable via front/rulesengine.test.php. | |||
| CVE-2017-1218 | high | 8.8 | 8.8 | 9y ago | IBM Tivoli Endpoint Manager is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IB… | |||
| CVE-2017-11450 | high | 8.8 | 8.8 | 9y ago | coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short. | |||
| CVE-2017-11449 | high | 8.8 | 8.8 | 9y ago | coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or poss… | |||
| CVE-2017-7506 | high | 8.8 | 8.8 | 9y ago | spice versions though 0.13 are vulnerable to out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server … | |||
| CVE-2017-10961 | high | 8.8 | 8.8 | 9y ago | REDCap before 7.5.1 has CSRF in the deletion feature of the File Repository and File Upload components. | |||
| CVE-2017-1318 | high | 8.8 | 8.8 | 9y ago | IBM MQ Appliance 8.0 and 9.0 could allow an authenticated messaging administrator to execute arbitrary commands on the system, caused by command execution. IBM X-Force ID: 125730. | |||
| CVE-2017-11403 | high | 8.8 | 8.8 | 9y ago | The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 has an out-of-order CloseBlob call, resulting in a use-after-free via a crafted file. | |||
| CVE-2017-6741 | high | 8.8 | 8.8 | 9y ago | A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulner… | |||
| CVE-2017-11361 | high | 8.8 | 8.8 | 9y ago | Inteno routers have a JUCI ACL misconfiguration that allows the "user" account to read files, write to files, and add root SSH keys via JSON commands to ubus. (Exploitation is sometimes easy because … | |||
| CVE-2017-7681 | high | 8.8 | 8.8 | 9y ago | Apache OpenMeetings vulnerable to SQL injection | |||
| CVE-2017-7666 | high | 8.8 | 8.8 | 9y ago | Apache OpenMeetings vulnerable to Cross-Site Request Forgery | |||
| CVE-2017-3099 | high | 8.8 | 8.8 | 9y ago | Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 3 raster data model. Successful exploitation could lead to arbitrary code e… | |||
| CVE-2017-2349 | high | 8.8 | 8.8 | 9y ago | A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate… | |||
| CVE-2017-2341 | high | 8.8 | 8.8 | 9y ago | An insufficient authentication vulnerability on platforms where Junos OS instances are run in a virtualized environment, may allow unprivileged users on the Junos OS instance to gain access to the ho… | |||
| CVE-2017-11347 | high | 8.8 | 8.8 | 9y ago | Authenticated Code Execution Vulnerability in MetInfo 5.3.17 allows a remote authenticated attacker to generate a PHP script with the content of a malicious image, related to admin/include/common.inc… | |||
| CVE-2017-11335 | high | 8.8 | 8.8 | 9y ago | There is a heap based buffer overflow in tools/tiff2pdf.c of LibTIFF 4.0.8 via a PlanarConfig=Contig image, which causes a more than one hundred bytes out-of-bounds write (related to the ZIPDecode fu… | |||
| CVE-2017-1000069 | high | 8.8 | 8.8 | 9y ago | Cross-site Request Forgery (CSRF) | |||
| CVE-2017-1000067 | high | 8.8 | 8.8 | 9y ago | MODX Revolution blind SQL injection | |||
| CVE-2017-1000031 | high | 8.8 | 8.8 | 9y ago | SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id parameters. | |||
| CVE-2017-1000022 | high | 8.8 | 8.8 | 9y ago | LogicalDoc Community Edition 7.5.3 and prior contain an Incorrect access control which could leave to privilege escalation. | |||
| CVE-2017-1000021 | high | 8.8 | 8.8 | 9y ago | LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents. | |||
| CVE-2017-1000017 | high | 8.8 | 8.8 | 9y ago | phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user with appropriate permissions is able to connect to an arbitrary MySQL server | |||
| CVE-2017-1000008 | high | 8.8 | 8.8 | 9y ago | Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user settings function allowing attackers to hijack the authentication of logged in users to modify account information, including their pass… | |||
| CVE-2017-11310 | high | 8.8 | 8.8 | 9y ago | The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files. |