| Max CVSS | 9.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-11455 | 6.8 |
diag.cgi in Pulse Connect Secure 8.2R1 through 8.2R5, 8.1R1 through 8.1R10 and Pulse Policy Secure 5.3R1 through 5.3R5, 5.2R1 through 5.2R8, and 5.1R1 through 5.1R10 allow remote attackers to hijack the authentication of administrators for requests t
|
27-02-2024 - 21:04 | 29-08-2017 - 15:29 | |
| CVE-2017-9227 | 7.5 |
An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in mbc_enc_len() during regular expression searching. Invalid handling of reg->dmin in for
|
20-07-2022 - 16:34 | 24-05-2017 - 15:29 | |
| CVE-2017-13711 | 5.0 |
Use-after-free vulnerability in the sofree function in slirp/socket.c in QEMU (aka Quick Emulator) allows attackers to cause a denial of service (QEMU instance crash) by leveraging failure to properly clear ifq_so from pending packets.
|
29-10-2020 - 17:24 | 01-09-2017 - 13:29 | |
| CVE-2017-13757 | 4.3 |
The Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the PLT section size, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a c
|
03-10-2019 - 00:03 | 29-08-2017 - 23:29 | |
| CVE-2017-12422 | 4.0 |
NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors.
|
03-10-2019 - 00:03 | 29-08-2017 - 15:29 | |
| CVE-2017-13671 | 4.3 |
app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisation.
|
05-09-2017 - 18:56 | 24-08-2017 - 19:29 | |
| CVE-2016-2980 | 6.8 |
The Sametime WebPlayer 8.5.2 and 9.0 is vulnerable to a script injection where a malicious site can inject their own script by exploiting a vulnerability in the way that the WebPlayer works. IBM X-Force ID: 113993.
|
02-09-2017 - 15:33 | 29-08-2017 - 21:29 | |
| CVE-2013-7426 | 7.5 |
Insecure Temporary file vulnerability in /tmp/kamailio_fifo in kamailio 4.0.1.
|
02-09-2017 - 15:32 | 29-08-2017 - 20:29 | |
| CVE-2017-3150 | 4.3 |
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be accessible to client-side script.
|
01-09-2017 - 18:14 | 29-08-2017 - 20:29 | |
| CVE-2015-4649 | 9.0 |
Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote authenticated administrators to gain root privileges via unspecified vectors, a different vulnerability than CVE-2015-3654.
|
01-09-2017 - 01:29 | 29-08-2017 - 15:29 | |
| CVE-2004-1900 | 7.5 |
Format string vulnerability in the logging function in IGI 2 Covert Strike server 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in RCON commands.
|
11-07-2017 - 01:31 | 31-12-2004 - 05:00 |