Max CVSS | 9.3 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2014-9914 | 7.2 |
Race condition in the ip4_datagram_release_cb function in net/ipv4/datagram.c in the Linux kernel before 3.15.2 allows local users to gain privileges or cause a denial of service (use-after-free) by leveraging incorrect expectations about locking dur
|
17-01-2023 - 21:40 | 07-02-2017 - 07:59 | |
CVE-2017-0423 | 2.9 |
An elevation of privilege vulnerability in Bluetooth could enable a proximate attacker to manage access to documents on the device. This issue is rated as Moderate because it first requires exploitation of a separate vulnerability in the Bluetooth st
|
03-10-2019 - 00:03 | 08-02-2017 - 15:59 | |
CVE-2017-0444 | 7.6 |
An elevation of privilege vulnerability in the Realtek sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged
|
03-10-2019 - 00:03 | 08-02-2017 - 15:59 | |
CVE-2017-0450 | 9.3 |
An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as Moderate because it is mitigated by current platform config
|
03-10-2019 - 00:03 | 08-02-2017 - 15:59 | |
CVE-2014-4102 | 9.3 |
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than C
|
12-10-2018 - 22:07 | 10-09-2014 - 01:55 | |
CVE-2008-6666 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Kronos webTA allow remote attackers to inject arbitrary web script or HTML via the description field to (1) servlet/com.threeis.webta.H710selProject and (2) servlet/com.threeis.webta.H720editProj
|
11-10-2018 - 20:57 | 08-04-2009 - 10:30 | |
CVE-2006-4278 | 7.5 |
PHP remote file inclusion vulnerability in includes/layout/plain.footer.php in SportsPHool 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the mainnav parameter.
|
19-10-2017 - 01:29 | 21-08-2006 - 22:04 | |
CVE-2004-0270 | 5.0 |
libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an assert error in clamd that terminates the calling
|
10-10-2017 - 01:30 | 23-11-2004 - 05:00 | |
CVE-2017-0045 | 4.3 |
Windows DVD Maker in Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, and Windows Vista SP2 does not properly parse crafted .msdvd files, which allows attackers to obtain information to compromise a target system, aka "Windows DVD Maker Cross-Site
|
16-08-2017 - 01:29 | 17-03-2017 - 00:59 | |
CVE-2016-8480 | 7.6 |
An elevation of privilege vulnerability in the Qualcomm Secure Execution Environment Communicator driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it fir
|
25-07-2017 - 01:29 | 08-02-2017 - 15:59 | |
CVE-2017-0448 | 4.3 |
An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without expli
|
25-07-2017 - 01:29 | 08-02-2017 - 15:59 | |
CVE-2017-0425 | 4.3 |
An information disclosure vulnerability in Audioserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission. P
|
25-07-2017 - 01:29 | 08-02-2017 - 15:59 | |
CVE-2017-0451 | 2.6 |
An information disclosure vulnerability in the Qualcomm sound driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it first requires compromising a privileged proce
|
25-07-2017 - 01:29 | 08-02-2017 - 15:59 | |
CVE-2017-0424 | 4.3 |
An information disclosure vulnerability in AOSP Messaging could enable a remote attacker using a special crafted file to access data outside of its permission levels. This issue is rated as Moderate because it is a general bypass for a user level def
|
25-07-2017 - 01:29 | 08-02-2017 - 15:59 | |
CVE-2017-1183 | 5.4 |
IBM Tivoli Monitoring Portal v6 could allow a local (network adjacent) attacker to modify SQL commands to the Portal Server, when default client-server communications, HTTP, are being used. IBM X-Force ID: 123494.
|
20-07-2017 - 14:15 | 17-07-2017 - 13:18 | |
CVE-2010-1492 | 5.0 |
Directory traversal vulnerability in help/frameRight.php in Elastix 1.6.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the id_nodo parameter. NOTE: the provenance of this information is unknown; the details are obtained sole
|
26-04-2010 - 04:00 | 23-04-2010 - 14:30 |