Max CVSS | 10.0 | Min CVSS | 3.5 | Total Count | 6 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-13236 | 4.6 |
In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Andr
|
12-02-2018 - 14:29 | 12-02-2018 - 14:29 | |
CVE-2018-6655 | 3.5 |
PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field.
|
07-02-2018 - 16:29 | 07-02-2018 - 16:29 | |
CVE-2018-6606 | 4.6 |
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by sending IOCTL 0x80002010 and then using IOCTL 0x8000204C to \\.\Zem
|
03-02-2018 - 20:29 | 03-02-2018 - 20:29 | |
CVE-2018-0101 | 10.0 |
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vuln
|
29-01-2018 - 15:29 | 29-01-2018 - 15:29 | |
CVE-2017-17090 | 5.0 |
An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chan_skinny (aka SCCP protocol) channel driver is flooded with certain re
|
01-12-2017 - 19:29 | 01-12-2017 - 19:29 | |
CVE-2017-3066 | 7.5 |
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code executi
|
09-05-2017 - 20:39 | 27-04-2017 - 10:59 |