| Max CVSS | 10.0 | Min CVSS | 4.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-6271 | 10.0 |
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceComman
|
17-11-2021 - 22:15 | 24-09-2014 - 18:48 | |
| CVE-2017-11321 | 6.5 |
The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command.
|
02-10-2020 - 14:55 | 03-10-2017 - 01:29 | |
| CVE-2017-11322 | 7.2 |
The chroothole_client executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign ($) metacharacter in the argument to chroothole_client.
|
03-10-2019 - 00:03 | 03-10-2017 - 01:29 | |
| CVE-2017-6090 | 6.5 |
Unrestricted file upload vulnerability in clients/editclient.php in PhpCollab 2.5.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to th
|
13-03-2019 - 20:01 | 03-10-2017 - 01:29 | |
| CVE-2016-2819 | 6.8 |
Heap-based buffer overflow in Mozilla Firefox before 47.0 and Firefox ESR 45.x before 45.2 allows remote attackers to execute arbitrary code via foreign-context HTML5 fragments, as demonstrated by fragments within an SVG element.
|
30-10-2018 - 16:27 | 13-06-2016 - 10:59 | |
| CVE-2017-5375 | 7.5 |
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
|
02-08-2018 - 19:35 | 11-06-2018 - 21:29 | |
| CVE-2017-14489 | 4.9 |
The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel through 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
|
16-03-2018 - 01:29 | 15-09-2017 - 10:29 | |
| CVE-2017-14757 | 6.5 |
OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 (older versions might be affected as well) is prone to SQL Injection: /xDashboard/html/jobhistory/downloadSupportFile.action, parameter: jobRunId. In ord
|
18-10-2017 - 01:29 | 03-10-2017 - 01:29 | |
| CVE-2017-6089 | 7.5 |
SQL injection vulnerability in PhpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) project or id parameters to topics/deletetopics.php; the (2) id parameter to bookmarks/deletebookmarks.php; or the (3) id
|
11-10-2017 - 17:34 | 03-10-2017 - 01:29 | |
| CVE-2007-4441 | 4.6 |
Buffer overflow in php_win32std.dll in the win32std extension for PHP 5.2.0 and earlier allows context-dependent attackers to execute arbitrary code via a long string in the filename argument to the win_browse_file function.
|
29-09-2017 - 01:29 | 21-08-2007 - 00:17 |