| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-11927 | 4.3 |
Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow an information vulnerability due to the way
|
23-05-2022 - 17:29 | 12-12-2017 - 21:29 | |
| CVE-2017-13874 | 5.0 |
An issue was discovered in certain Apple products. iOS before 11.2 is affected. The issue involves the "Mail" component. It might allow remote attackers to bypass an intended encryption protection mechanism by leveraging incorrect S/MIME certificate
|
03-10-2019 - 00:03 | 25-12-2017 - 21:29 | |
| CVE-2017-13871 | 5.0 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Mail" component. It allows remote attackers to read cleartext e-mail content (for which S/MIME encryption was intended) by leveraging the lac
|
03-10-2019 - 00:03 | 25-12-2017 - 21:29 | |
| CVE-2017-13860 | 4.3 |
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. The issue involves the "Mail Drafts" component. It allows man-in-the-middle attackers to read e-mail content by leveraging mishandling o
|
03-10-2019 - 00:03 | 25-12-2017 - 21:29 | |
| CVE-2017-13844 | 2.1 |
An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state.
|
29-04-2019 - 16:30 | 13-11-2017 - 03:29 | |
| CVE-2017-13878 | 5.6 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service (out-of-boun
|
22-01-2018 - 02:29 | 25-12-2017 - 21:29 | |
| CVE-2017-15532 | 5.5 |
Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types of attacks aim to access files and directories that are stored outside the web root folder. By manipulating var
|
05-01-2018 - 19:43 | 20-12-2017 - 18:29 | |
| CVE-2017-13883 | 9.3 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory
|
29-12-2017 - 14:04 | 25-12-2017 - 21:29 | |
| CVE-2017-13879 | 9.3 |
An issue was discovered in certain Apple products. iOS before 11.2 is affected. The issue involves the "IOMobileFrameBuffer" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corrupt
|
29-12-2017 - 14:04 | 25-12-2017 - 21:29 | |
| CVE-2017-13875 | 9.3 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-
|
28-12-2017 - 18:33 | 25-12-2017 - 21:29 | |
| CVE-2017-13858 | 9.3 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app.
|
28-12-2017 - 18:09 | 25-12-2017 - 21:29 | |
| CVE-2017-13848 | 9.3 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app.
|
28-12-2017 - 16:40 | 25-12-2017 - 21:29 | |
| CVE-2017-13847 | 9.3 |
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of ser
|
28-12-2017 - 16:38 | 25-12-2017 - 21:29 | |
| CVE-2017-11919 | 2.6 |
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016, and Microsoft Edge in Windows 10 Gold,
|
26-12-2017 - 14:58 | 12-12-2017 - 21:29 | |
| CVE-2017-11913 | 7.6 |
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in
|
21-12-2017 - 21:10 | 12-12-2017 - 21:29 | |
| CVE-2017-11912 | 7.6 |
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows
|
21-12-2017 - 20:09 | 12-12-2017 - 21:29 | |
| CVE-2017-11916 | 7.6 |
ChakraCore allows an attacker to execute arbitrary code in the context of the current user, due to how the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2
|
21-12-2017 - 19:54 | 12-12-2017 - 21:29 | |
| CVE-2017-16856 | 4.3 |
The RSS Feed macro in Atlassian Confluence before version 6.5.2 allows remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) vulnerabilities in various rss properties which were used as links without restriction on th
|
19-12-2017 - 13:16 | 05-12-2017 - 16:29 | |
| CVE-2004-1952 | 7.5 |
SQL injection vulnerability in Advanced Guestbook 2.2 allows remote attackers to execute arbitrary SQL commands and gain privileges via the password.
|
11-07-2017 - 01:31 | 23-04-2004 - 04:00 |