Max CVSS | 7.2 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-9230 | 5.0 |
The Bitcoin Proof-of-Work algorithm does not consider a certain attack methodology related to 80-byte block headers with a variety of initial 64-byte chunks followed by the same 16-byte chunk, multiple candidate root values ending with the same 4 byt
|
11-04-2024 - 00:59 | 24-05-2017 - 16:29 | |
CVE-2017-1000363 | 7.2 |
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, wher
|
17-01-2023 - 21:03 | 17-07-2017 - 13:18 | |
CVE-2017-10202 | 6.5 |
Vulnerability in the OJVM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows low privileged attacker having Create Session, Create Procedure privilege
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
CVE-2006-4680 | 4.0 |
The Remote UI in Canon imageRUNNER includes usernames and passwords when exporting an address book, which allows context-dependent attackers to obtain sensitive information.
|
17-10-2018 - 21:39 | 11-09-2006 - 17:04 | |
CVE-2015-6644 | 4.3 |
Bouncy Castle in Android before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to obtain sensitive information via a crafted application, aka internal bug 24106146.
|
17-10-2018 - 10:29 | 06-01-2016 - 19:59 | |
CVE-2013-1670 | 4.3 |
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acquisition of chrome privileges during calls to content
|
19-09-2017 - 01:36 | 16-05-2013 - 11:45 | |
CVE-2010-1448 | 4.3 |
Cross-site scripting (XSS) vulnerability in lib/LXR/Common.pm in LXR Cross Referencer before 0.9.8 allows remote attackers to inject arbitrary web script or HTML via vectors related to a string in the search page's TITLE element, a different vulnerab
|
17-08-2017 - 01:32 | 24-06-2010 - 12:30 | |
CVE-2008-2871 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in template2.php in PEGames allow remote attackers to inject arbitrary web script or HTML via the (1) sitetitle, (2) sitenav, (3) sitemain, and (4) sitealt parameters. NOTE: the provenance of this
|
08-08-2017 - 01:31 | 26-06-2008 - 17:41 | |
CVE-2004-1809 | 4.3 |
Cross-site scripting (XSS) vulnerability in phpBB 2.0.6d and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) postdays parameter to viewtopic.php or (2) topicdays parameter to viewforum.php.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 | |
CVE-2017-6674 | 5.0 |
A vulnerability in the feature-license management functionality of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass URL filters that have been configured for an affected device. More Information: CSCvb16413. K
|
20-06-2017 - 14:54 | 13-06-2017 - 06:29 |