| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7056 | 2.1 |
A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.
|
12-02-2023 - 23:25 | 10-09-2018 - 16:29 | |
| CVE-2017-5340 | 7.5 |
Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that require large array allocations, which allows remote attackers to execute arbitrary code or cause a denial of service (integer overflow, uninitialized memory a
|
20-07-2022 - 16:46 | 11-01-2017 - 06:59 | |
| CVE-2017-5331 | 4.6 |
Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable.
|
05-11-2019 - 20:40 | 04-11-2019 - 21:15 | |
| CVE-2017-1321 | 4.3 |
IBM InfoSphere Information Server 9.1, 11.3, and 11.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials
|
29-10-2019 - 18:48 | 12-07-2017 - 17:29 | |
| CVE-2017-5336 | 7.5 |
Stack-based buffer overflow in the cdk_pk_get_keyid function in lib/opencdk/pubkey.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via a crafted OpenPGP certificate.
|
30-10-2018 - 16:27 | 24-03-2017 - 15:59 | |
| CVE-2017-5334 | 7.5 |
Double free vulnerability in the gnutls_x509_ext_import_proxy function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allows remote attackers to have unspecified impact via crafted policy language information in an X.509 certificate with a Proxy Cert
|
30-10-2018 - 16:27 | 24-03-2017 - 15:59 | |
| CVE-2017-5337 | 7.5 |
Multiple heap-based buffer overflows in the read_attribute function in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to have unspecified impact via a crafted OpenPGP certificate.
|
30-10-2018 - 16:27 | 24-03-2017 - 15:59 | |
| CVE-2017-5335 | 5.0 |
The stream reading functions in lib/opencdk/read-packet.c in GnuTLS before 3.3.26 and 3.5.x before 3.5.8 allow remote attackers to cause a denial of service (out-of-memory error and crash) via a crafted OpenPGP certificate.
|
30-10-2018 - 16:27 | 24-03-2017 - 15:59 | |
| CVE-2007-1156 | 7.5 |
JBrowser allows remote attackers to bypass authentication and access certain administrative capabilities via a direct request for _admin/.
|
16-10-2018 - 16:36 | 02-03-2007 - 21:18 | |
| CVE-2016-7815 | 4.9 |
Remote Service Manager 3.0.0 to 3.1.4 fails to verify client certificates, which may allow remote attackers to gain access to systems on the network.
|
10-05-2017 - 18:48 | 28-04-2017 - 16:59 | |
| CVE-2016-10127 | 6.8 |
PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.
|
08-03-2017 - 01:07 | 03-03-2017 - 15:59 |