CVE List - 2017 / October
Showing 101 - 200 of 1398 CVEs for October 2017 (Page 2 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2017-0811 | 2017-10-03 | A remote code execution vulnerability in the Android media framework... |
| CVE-2017-0812 | 2017-10-03 | An elevation of privilege vulnerability in the Android media framework... |
| CVE-2017-0813 | 2017-10-03 | A denial of service vulnerability in the Android media framework... |
| CVE-2017-0814 | 2017-10-03 | An information disclosure vulnerability in the Android media framework (n/a).... |
| CVE-2017-0815 | 2017-10-03 | An information disclosure vulnerability in the Android media framework (libeffects).... |
| CVE-2017-0816 | 2017-10-03 | An information disclosure vulnerability in the Android media framework (libeffects).... |
| CVE-2017-0817 | 2017-10-03 | An information disclosure vulnerability in the Android media framework (libstagefright).... |
| CVE-2017-0819 | 2017-10-03 | A vulnerability in the Android media framework (n/a). Product: Android.... |
| CVE-2017-0820 | 2017-10-03 | A vulnerability in the Android media framework (n/a). Product: Android.... |
| CVE-2017-0822 | 2017-10-03 | An elevation of privilege vulnerability in the Android system (camera).... |
| CVE-2017-0823 | 2017-10-03 | An information disclosure vulnerability in the Android system (rild). Product:... |
| CVE-2017-0824 | 2017-10-03 | An elevation of privilege vulnerability in the Broadcom wifi driver.... |
| CVE-2017-0825 | 2017-10-03 | An information disclosure vulnerability in the Broadcom wifi driver. Product:... |
| CVE-2017-0826 | 2017-10-03 | An elevation of privilege vulnerability in the HTC bootloader. Product:... |
| CVE-2017-0827 | 2017-10-03 | An elevation of privilege vulnerability in the MediaTek soc driver.... |
| CVE-2017-0828 | 2017-10-03 | An elevation of privilege vulnerability in the Huawei bootloader. Product:... |
| CVE-2017-0829 | 2017-10-03 | An elevation of privilege vulnerability in the Motorola bootloader. Product:... |
| CVE-2017-11122 | 2017-10-04 | On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56, an attacker can trigger... |
| CVE-2017-1000084 | 2017-10-04 | Parameterized Trigger Plugin fails to check Item/Build permission: The Parameterized... |
| CVE-2017-1000085 | 2017-10-04 | Subversion Plugin connects to a user-specified Subversion repository as part... |
| CVE-2017-1000086 | 2017-10-04 | The Periodic Backup Plugin did not perform any permission checks,... |
| CVE-2017-1000087 | 2017-10-04 | GitHub Branch Source provides a list of applicable credential IDs... |
| CVE-2017-1000088 | 2017-10-04 | The Sidebar Link plugin allows users able to configure jobs,... |
| CVE-2017-1000089 | 2017-10-04 | Builds in Jenkins are associated with an authentication that controls... |
| CVE-2017-1000090 | 2017-10-04 | Role-based Authorization Strategy Plugin was not requiring requests to its... |
| CVE-2017-1000091 | 2017-10-04 | GitHub Branch Source Plugin connects to a user-specified GitHub API... |
| CVE-2017-1000092 | 2017-10-04 | Git Plugin connects to a user-specified Git repository as part... |
| CVE-2017-1000093 | 2017-10-04 | Poll SCM Plugin was not requiring requests to its API... |
| CVE-2017-1000094 | 2017-10-04 | Docker Commons Plugin provides a list of applicable credential IDs... |
| CVE-2017-1000095 | 2017-10-04 | The default whitelist included the following unsafe entries: DefaultGroovyMethods.putAt(Object, String,... |
| CVE-2017-1000096 | 2017-10-04 | Arbitrary code execution due to incomplete sandbox protection: Constructors, instance... |
| CVE-2017-1000099 | 2017-10-04 | When asking to get a file from a file:// URL,... |
| CVE-2017-1000100 | 2017-10-04 | When doing a TFTP transfer and curl/libcurl is given a... |
| CVE-2017-1000101 | 2017-10-04 | curl supports "globbing" of URLs, in which a user can... |
| CVE-2017-1000102 | 2017-10-04 | The Details view of some Static Analysis Utilities based plugins,... |
| CVE-2017-1000103 | 2017-10-04 | The custom Details view of the Static Analysis Utilities based... |
| CVE-2017-1000109 | 2017-10-04 | The custom Details view of the Static Analysis Utilities based... |
| CVE-2017-1000111 | 2017-10-04 | Linux kernel: heap out-of-bounds in AF_PACKET sockets. This new issue... |
| CVE-2017-1000112 | 2017-10-04 | Linux kernel: Exploitable memory corruption due to UFO to non-UFO... |
| CVE-2017-1000114 | 2017-10-04 | The Datadog Plugin stores an API key to access the... |
| CVE-2017-1000115 | 2017-10-04 | Mercurial prior to version 4.3 is vulnerable to a missing... |
| CVE-2017-1000116 | 2017-10-04 | Mercurial prior to 4.3 did not adequately sanitize hostnames passed... |
| CVE-2017-1000117 | 2017-10-04 | A malicious third-party can give a crafted "ssh://..." URL to... |
| CVE-2017-1000119 | 2017-10-04 | October CMS build 412 is vulnerable to PHP code execution... |
| CVE-2017-1000253 | 2017-10-04 | Linux distributions that have not patched their long-term kernels with... |
| CVE-2017-1000097 | 2017-10-04 | On Darwin, user's trust preferences for root certificates were not... |
| CVE-2017-1000098 | 2017-10-04 | The net/http package's Request.ParseMultipartForm method starts writing to temporary files... |
| CVE-2017-1000104 | 2017-10-04 | The Config File Provider Plugin is used to centrally manage... |
| CVE-2017-1000105 | 2017-10-04 | The optional Run/Artifacts permission can be enabled by setting a... |
| CVE-2017-1000106 | 2017-10-04 | Blue Ocean allows the creation of GitHub organization folders that... |
| CVE-2017-1000107 | 2017-10-04 | Script Security Plugin did not apply sandboxing restrictions to constructor... |
| CVE-2017-1000108 | 2017-10-04 | The Pipeline: Input Step Plugin by default allowed users with... |
| CVE-2017-1000110 | 2017-10-04 | Blue Ocean allows the creation of GitHub organization folders that... |
| CVE-2017-1000113 | 2017-10-04 | The Deploy to container Plugin stored passwords unencrypted as part... |
| CVE-2017-1000118 | 2017-10-04 | Akka HTTP versions <= 10.0.5 Illegal Media Range in Accept... |
| CVE-2017-1000120 | 2017-10-04 | [ERPNext][Frappe Version <= 7.1.27] SQL injection vulnerability in frappe.share.get_users allows... |
| CVE-2017-12728 | 2017-10-04 | An Improper Privilege Management issue was discovered in SpiderControl SCADA... |
| CVE-2017-13993 | 2017-10-04 | An Uncontrolled Search Path or Element issue was discovered in... |
| CVE-2017-13995 | 2017-10-04 | An Improper Authentication issue was discovered in iniNet Solutions iniNet... |
| CVE-2017-14000 | 2017-10-04 | An Improper Authentication issue was discovered in Ctek SkyRouter Series... |
| CVE-2017-15015 | 2017-10-04 | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in... |
| CVE-2017-15016 | 2017-10-04 | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in... |
| CVE-2017-15017 | 2017-10-04 | ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in... |
| CVE-2017-15018 | 2017-10-04 | LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and... |
| CVE-2017-15019 | 2017-10-04 | LAME 3.99.5 has a NULL Pointer Dereference in the hip_decode_init... |
| CVE-2017-15020 | 2017-10-04 | dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd),... |
| CVE-2017-15021 | 2017-10-04 | bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library... |
| CVE-2017-15022 | 2017-10-04 | dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd),... |
| CVE-2017-15023 | 2017-10-04 | read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library... |
| CVE-2017-15024 | 2017-10-04 | find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library... |
| CVE-2017-15025 | 2017-10-04 | decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library... |
| CVE-2017-9628 | 2017-10-04 | An Information Exposure issue was discovered in Saia Burgess Controls... |
| CVE-2017-12149 | 2017-10-04 | In Jboss Application Server as shipped with Red Hat Enterprise... |
| CVE-2017-12244 | 2017-10-05 | A vulnerability in the detection engine parsing of IPv6 packets... |
| CVE-2017-12245 | 2017-10-05 | A vulnerability in SSL traffic decryption for Cisco Firepower Threat... |
| CVE-2017-12246 | 2017-10-05 | A vulnerability in the implementation of the direct authentication feature... |
| CVE-2017-12256 | 2017-10-05 | A vulnerability in the Akamai Connect feature of Cisco Wide... |
| CVE-2017-12257 | 2017-10-05 | A vulnerability in the web framework of Cisco WebEx Meetings... |
| CVE-2017-12258 | 2017-10-05 | A vulnerability in the web-based UI of Cisco Unified Communications... |
| CVE-2017-12263 | 2017-10-05 | A vulnerability in the web interface of Cisco License Manager... |
| CVE-2017-12264 | 2017-10-05 | A vulnerability in the Web Admin Interface of Cisco Meeting... |
| CVE-2017-12265 | 2017-10-05 | A vulnerability in the web-based management interface of Cisco Adaptive... |
| CVE-2017-12266 | 2017-10-05 | A vulnerability in the routine that loads DLL files in... |
| CVE-2017-12267 | 2017-10-05 | A vulnerability in the Independent Computing Architecture (ICA) accelerator feature... |
| CVE-2017-12268 | 2017-10-05 | A vulnerability in the Network Access Manager (NAM) of Cisco... |
| CVE-2017-12269 | 2017-10-05 | A vulnerability in the web UI of Cisco Spark Messaging... |
| CVE-2017-12270 | 2017-10-05 | A vulnerability in the gRPC code of Cisco IOS XR... |
| CVE-2017-15032 | 2017-10-05 | ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in... |
| CVE-2017-15033 | 2017-10-05 | ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in... |
| CVE-2017-15035 | 2017-10-05 | EmTec PyroBatchFTP before 3.18 allows remote servers to cause a... |
| CVE-2017-15037 | 2017-10-05 | In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has... |
| CVE-2017-14083 | 2017-10-05 | A vulnerability in Trend Micro OfficeScan 11.0 and XG allows... |
| CVE-2017-14084 | 2017-10-05 | A potential Man-in-the-Middle (MitM) attack vulnerability in Trend Micro OfficeScan... |
| CVE-2017-14085 | 2017-10-05 | Information disclosure vulnerabilities in Trend Micro OfficeScan 11.0 and XG... |
| CVE-2017-14086 | 2017-10-05 | Pre-authorization Start Remote Process vulnerabilities in Trend Micro OfficeScan 11.0... |
| CVE-2017-14087 | 2017-10-05 | A Host Header Injection vulnerability in Trend Micro OfficeScan XG... |
| CVE-2017-14088 | 2017-10-05 | Memory Corruption Privilege Escalation vulnerabilities in Trend Micro OfficeScan 11.0... |
| CVE-2017-14089 | 2017-10-05 | An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0... |
| CVE-2017-14353 | 2017-10-05 | A remote code execution vulnerability in HP UCMDB Foundation Software... |
| CVE-2017-14354 | 2017-10-05 | A remote cross-site scripting vulnerability in HP UCMDB Foundation Software... |