Max CVSS | 10.0 | Min CVSS | 2.6 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2017-3641 | 4.0 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged a
|
28-10-2022 - 19:26 | 08-08-2017 - 15:29 | |
CVE-2017-10087 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthent
|
06-10-2022 - 19:03 | 08-08-2017 - 15:29 | |
CVE-2017-10096 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticate
|
06-10-2022 - 19:03 | 08-08-2017 - 15:29 | |
CVE-2017-10090 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated
|
06-10-2022 - 19:03 | 08-08-2017 - 15:29 | |
CVE-2017-10102 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticat
|
06-10-2022 - 19:02 | 08-08-2017 - 15:29 | |
CVE-2017-10108 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitabl
|
06-10-2022 - 19:02 | 08-08-2017 - 15:29 | |
CVE-2017-10107 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated
|
06-10-2022 - 19:02 | 08-08-2017 - 15:29 | |
CVE-2017-10101 | 6.8 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticate
|
06-10-2022 - 19:02 | 08-08-2017 - 15:29 | |
CVE-2017-10109 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitabl
|
06-10-2022 - 19:02 | 08-08-2017 - 15:29 | |
CVE-2017-10116 | 5.1 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit v
|
06-10-2022 - 19:01 | 08-08-2017 - 15:29 | |
CVE-2017-10115 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerab
|
06-10-2022 - 19:01 | 08-08-2017 - 15:29 | |
CVE-2017-10135 | 4.3 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulner
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
CVE-2017-10118 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability a
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
CVE-2017-10193 | 2.6 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthen
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
CVE-2017-10176 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerabil
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
CVE-2017-10198 | 4.3 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit v
|
06-10-2022 - 19:00 | 08-08-2017 - 15:29 | |
CVE-2017-10243 | 6.4 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAX-WS). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulne
|
06-10-2022 - 18:59 | 08-08-2017 - 15:29 | |
CVE-2017-3653 | 3.5 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Difficult to exploit vulnerability allows low privileged
|
21-09-2022 - 19:58 | 08-08-2017 - 15:29 | |
CVE-2017-10089 | 6.8 |
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: ImageIO). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multi
|
12-08-2022 - 18:05 | 08-08-2017 - 15:29 | |
CVE-2017-10110 | 6.8 |
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: AWT). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple
|
12-08-2022 - 18:05 | 08-08-2017 - 15:29 | |
CVE-2017-3636 | 4.6 |
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected are 5.5.56 and earlier and 5.6.36 and earlier. Easily exploitable vulnerability allows low privileged attacker with logo
|
04-08-2022 - 19:59 | 08-08-2017 - 15:29 | |
CVE-2017-10074 | 5.1 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthent
|
27-06-2022 - 17:36 | 08-08-2017 - 15:29 | |
CVE-2017-10067 | 5.1 |
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via mu
|
27-06-2022 - 17:36 | 08-08-2017 - 15:29 | |
CVE-2017-10081 | 4.3 |
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthentic
|
27-06-2022 - 17:35 | 08-08-2017 - 15:29 | |
CVE-2017-10053 | 5.0 |
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerabi
|
27-06-2022 - 17:32 | 08-08-2017 - 15:29 | |
CVE-2017-9047 | 5.0 |
A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. The variable len is ass
|
29-06-2021 - 15:15 | 18-05-2017 - 06:29 | |
CVE-2017-9048 | 5.0 |
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end o
|
29-06-2021 - 15:15 | 18-05-2017 - 06:29 | |
CVE-2017-9050 | 5.0 |
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incompl
|
29-06-2021 - 15:15 | 18-05-2017 - 06:29 | |
CVE-2017-9049 | 5.0 |
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an in
|
29-06-2021 - 15:15 | 18-05-2017 - 06:29 | |
CVE-2017-0663 | 6.8 |
A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated as High due to the possibility of remote code execut
|
29-06-2021 - 15:15 | 14-06-2017 - 13:29 | |
CVE-2017-11719 | 6.8 |
The dnxhd_decode_header function in libavcodec/dnxhddec.c in FFmpeg 3.0 through 3.3.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via a crafted DNxHD file.
|
04-01-2021 - 22:15 | 28-07-2017 - 05:29 | |
CVE-2017-11399 | 6.8 |
Integer overflow in the ape_decode_frame function in libavcodec/apedec.c in FFmpeg 2.4 through 3.3.2 allows remote attackers to cause a denial of service (out-of-array access and application crash) or possibly have unspecified other impact via a craf
|
04-01-2021 - 22:15 | 17-07-2017 - 19:29 | |
CVE-2017-12865 | 7.5 |
Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted response query string passed to the "name" variable.
|
05-03-2020 - 19:23 | 29-08-2017 - 16:29 | |
CVE-2017-11576 | 4.3 |
FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11574 | 6.8 |
FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11568 | 6.8 |
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11575 | 6.8 |
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11572 | 6.8 |
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11571 | 6.8 |
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-11577 | 6.8 |
FontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
13-01-2020 - 14:23 | 23-07-2017 - 22:29 | |
CVE-2017-12440 | 6.0 |
Aodh as packaged in Openstack Ocata and Newton before change-ID I8fd11a7f9fe3c0ea5f9843a89686ac06713b7851 and before Pike-rc1 does not verify that trust IDs belong to the user when creating alarm action with the scheme trust+http, which allows remote
|
03-10-2019 - 00:03 | 18-08-2017 - 14:29 | |
CVE-2017-11569 | 6.8 |
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.
|
03-10-2019 - 00:03 | 23-07-2017 - 22:29 | |
CVE-2017-7376 | 10.0 |
Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.
|
17-05-2019 - 15:15 | 19-02-2018 - 19:29 | |
CVE-2017-9993 | 5.0 |
FFmpeg before 2.8.12, 3.0.x and 3.1.x before 3.1.9, 3.2.x before 3.2.6, and 3.3.x before 3.3.2 does not properly restrict HTTP Live Streaming filename extensions and demuxer names, which allows attackers to read arbitrary files via crafted playlist d
|
26-03-2019 - 17:56 | 28-06-2017 - 06:29 | |
CVE-2003-0866 | 5.0 |
The Catalina org.apache.catalina.connector.http package in Tomcat 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service via several requests that do not follow the HTTP protocol, which causes Tomcat to reject later requests.
|
25-03-2019 - 11:29 | 17-11-2003 - 05:00 | |
CVE-2017-8849 | 7.2 |
smb4k before 2.0.1 allows local users to gain root privileges by leveraging failure to verify arguments to the mount helper DBUS service.
|
18-03-2019 - 16:41 | 17-05-2017 - 14:29 | |
CVE-2017-0379 | 5.0 |
Libgcrypt before 1.8.1 does not properly consider Curve25519 side-channel attacks, which makes it easier for attackers to discover a secret key, related to cipher/ecc.c and mpi/ec.c.
|
16-01-2019 - 19:29 | 29-08-2017 - 22:29 | |
CVE-2017-11665 | 5.0 |
The ff_amf_get_field_value function in libavformat/rtmppkt.c in FFmpeg 3.3.2 allows remote RTMP servers to cause a denial of service (Segmentation Violation and application crash) via a crafted stream.
|
13-06-2018 - 01:29 | 27-07-2017 - 12:29 | |
CVE-2017-7375 | 7.5 |
A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD attributes). Depending on the context, this may exp
|
18-03-2018 - 14:17 | 19-02-2018 - 19:29 | |
CVE-2017-9608 | 4.3 |
The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted mov file.
|
17-01-2018 - 16:41 | 27-12-2017 - 19:29 | |
CVE-2017-6886 | 7.5 |
An error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to corrupt memory.
|
04-11-2017 - 01:29 | 16-05-2017 - 16:29 | |
CVE-2017-6887 | 6.8 |
A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing mult
|
04-11-2017 - 01:29 | 16-05-2017 - 16:29 |