| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2004-0421 | 5.0 |
The Portable Network Graphics library (libpng) 1.0.15 and earlier allows attackers to cause a denial of service (crash) via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message.
|
09-02-2024 - 00:27 | 18-08-2004 - 04:00 | |
| CVE-2018-5281 | 3.5 |
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.
|
16-06-2022 - 16:18 | 08-01-2018 - 09:29 | |
| CVE-2016-10257 | 4.3 |
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use
|
08-07-2021 - 16:37 | 10-01-2018 - 02:29 | |
| CVE-2018-0114 | 5.0 |
A vulnerability in the Cisco node-jose open source library before 0.11.0 could allow an unauthenticated, remote attacker to re-sign tokens using a key that is embedded within the token. The vulnerability is due to node-jose following the JSON Web Sig
|
04-09-2020 - 16:58 | 04-01-2018 - 06:29 | |
| CVE-2017-15941 | 4.3 |
Cross-site scripting (XSS) vulnerability in Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.7, when the GlobalProtect gateway or portal is configured, allows remote attackers to inject arbitrary
|
17-02-2020 - 16:15 | 10-01-2018 - 18:29 | |
| CVE-2017-4946 | 7.2 |
The VMware V4H and V4PA desktop agents (6.x before 6.5.1) contain a privilege escalation vulnerability. Successful exploitation of this issue could result in a low privileged windows user escalating their privileges to SYSTEM.
|
03-10-2019 - 00:03 | 05-01-2018 - 14:29 | |
| CVE-2017-4945 | 2.1 |
VMware Workstation (14.x and 12.x) and Fusion (10.x and 8.x) contain a guest access control vulnerability. This issue may allow program execution via Unity on locked Windows VMs. VMware Tools must be updated to 10.2.0 for each VM to resolve CVE-2017-
|
03-10-2019 - 00:03 | 05-01-2018 - 14:29 | |
| CVE-2017-10352 | 7.5 |
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). The supported version that is affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnera
|
03-10-2019 - 00:03 | 19-10-2017 - 17:29 | |
| CVE-2018-2360 | 5.0 |
SAP Startup Service, SAP KERNEL 7.45, 7.49, and 7.52, is missing an authentication check for functionalities that require user identity and cause consumption of file system storage.
|
29-01-2018 - 19:05 | 09-01-2018 - 15:29 | |
| CVE-2018-2363 | 6.5 |
SAP NetWeaver, SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31, 7.40, from 7.50 to 7.52, contains code that allows you to execute arbitrary program code of the user's choice. A malicious user can therefore control the behaviour of the syst
|
29-01-2018 - 13:04 | 09-01-2018 - 15:29 | |
| CVE-2017-4948 | 6.6 |
VMware Workstation (14.x before 14.1.0 and 12.x) and Horizon View Client (4.x before 4.7.0) contain an out-of-bounds read vulnerability in TPView.dll. On Workstation, this issue in conjunction with other bugs may allow a guest to leak information fro
|
25-01-2018 - 13:51 | 05-01-2018 - 14:29 |