| Max CVSS | 7.5 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-8114 | 6.5 |
Roundcube Webmail allows arbitrary password resets by authenticated users. This affects versions before 1.0.11, 1.1.x before 1.1.9, and 1.2.x before 1.2.5. The problem is caused by an improperly restricted exec call in the virtualmin and sasl drivers
|
27-09-2022 - 18:16 | 29-04-2017 - 19:59 | |
| CVE-2016-4544 | 7.5 |
The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate TIFF start data, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly h
|
20-07-2022 - 16:55 | 22-05-2016 - 01:59 | |
| CVE-2017-7965 | 4.6 |
A buffer overflow vulnerability exists in Programming Software executable AlTracePrint.exe, in Schneider Electric's SoMachine HVAC v2.1.0 for Modicon M171/M172 Controller.
|
31-01-2022 - 19:43 | 07-06-2017 - 19:29 | |
| CVE-2017-7966 | 6.8 |
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC v2.1.0 allows a remote attacker to execute arbitrary code on the targeted system. The vulnerability exists due to the improper loading of a DLL.
|
03-10-2019 - 00:03 | 07-06-2017 - 19:29 | |
| CVE-2017-7479 | 4.0 |
OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.
|
03-10-2019 - 00:03 | 15-05-2017 - 18:29 | |
| CVE-2017-10083 | 5.8 |
Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Eas
|
03-10-2019 - 00:03 | 08-08-2017 - 15:29 | |
| CVE-2016-4542 | 7.5 |
The exif_process_IFD_TAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not properly construct spprintf arguments, which allows remote attackers to cause a denial of service (out-of-bounds read) or po
|
30-10-2018 - 16:27 | 22-05-2016 - 01:59 | |
| CVE-2016-4543 | 7.5 |
The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x before 5.6.21, and 7.x before 7.0.6 does not validate IFD sizes, which allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have uns
|
30-10-2018 - 16:27 | 22-05-2016 - 01:59 | |
| CVE-2004-0108 | 4.6 |
The isag utility, which processes sysstat data, allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CAN-2004-0107.
|
10-10-2017 - 01:30 | 15-04-2004 - 04:00 | |
| CVE-2017-7478 | 5.0 |
OpenVPN version 2.3.12 and newer is vulnerable to unauthenticated Denial of Service of server via received large control packet. Note that this issue is fixed in 2.3.15 and 2.4.2.
|
16-08-2017 - 01:29 | 15-05-2017 - 18:29 | |
| CVE-2008-2889 | 6.8 |
Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to a LIST command, a related issue to CVE-2002-1345.
|
08-03-2011 - 03:09 | 27-06-2008 - 18:41 |