CVE List - 2017 / October
Showing 501 - 600 of 1398 CVEs for October 2017 (Page 6 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2016-4923 | 2017-10-13 | Junos J-Web: Cross Site Scripting Vulnerability |
| CVE-2016-4924 | 2017-10-13 | vMX: Information leak vulnerability |
| CVE-2016-4925 | 2017-10-13 | JUNOSe: Line Card Reset: processor exception 0x68616c74 (halt) task: scheduler, upon receipt of crafted IPv6 packet |
| CVE-2017-10606 | 2017-10-13 | SRX Series: Cryptographic weakness in SRX300 Series TPM Firmware |
| CVE-2017-10607 | 2017-10-13 | Junos: rpd core due to receipt of specially crafted BGP packet |
| CVE-2017-10608 | 2017-10-13 | SRX series: Junos OS: SRX series using IPv6 Sun/MS-RPC ALGs may experience flowd crash on processing packets. |
| CVE-2017-10610 | 2017-10-13 | SRX Series: Embedded ICMP may cause the flowd process to crash |
| CVE-2017-10611 | 2017-10-13 | Junos: EX Series PFE and MX MPC7E/8E/9E PFE crash when fetching interface stats with 'extended-statistics' enabled |
| CVE-2017-10612 | 2017-10-13 | Junos Space: Persistent Cross site scripting in Junos Space |
| CVE-2017-10613 | 2017-10-13 | Junos OS: A kernel hang may occur due to a specific loopback filter action command |
| CVE-2017-10614 | 2017-10-13 | Junos OS: A remote unauthenticated attacker can consume large amounts of CPU and/or memory through telnetd |
| CVE-2017-10615 | 2017-10-13 | Junos: Potential remote code execution vulnerability in PAM |
| CVE-2017-10616 | 2017-10-13 | Contrail: hard coded credentials |
| CVE-2017-10617 | 2017-10-13 | Contrail: XML External Entity (XXE) vulnerability |
| CVE-2017-10618 | 2017-10-13 | Junos: RPD core due to BGP UPDATE with malformed optional transitive attributes |
| CVE-2017-10619 | 2017-10-13 | Junos: SRX cluster denial of service vulnerability in flowd due to multicast packets |
| CVE-2017-10620 | 2017-10-13 | SRX Series: Antivirus updates are downloaded without verification |
| CVE-2017-10621 | 2017-10-13 | Junos OS: Denial of service vulnerability in telnetd |
| CVE-2017-10622 | 2017-10-13 | Junos Space: Authentication bypass vulnerability |
| CVE-2017-10623 | 2017-10-13 | Junos Space: Insufficient verification of cluster messages |
| CVE-2017-10624 | 2017-10-13 | Junos Space: Insufficient verification of node certificates. |
| CVE-2017-6223 | 2017-10-13 | Ruckus Wireless Zone Director Controller firmware releases ZD9.9.x, ZD9.10.x, ZD9.13.0.x less than 9.13.0.0.232 contain OS Command Injection vulnerabilities in the ping functionality that could allow local authenticated users to execute... |
| CVE-2017-6224 | 2017-10-13 | Ruckus Wireless Zone Director Controller firmware releases ZD9.x, ZD10.0.0.x, ZD10.0.1.x (less than 10.0.1.0.17 MR1 release) and Ruckus Wireless Unleashed AP Firmware releases 200.0.x, 200.1.x, 200.2.x, 200.3.x, 200.4.x. contain OS Command... |
| CVE-2017-15298 | 2017-10-14 | Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denial of service (memory consumption) via a crafted repository, aka a Git bomb. This can... |
| CVE-2017-12629 | 2017-10-14 | Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the... |
| CVE-2017-15299 | 2017-10-14 | The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial... |
| CVE-2017-15304 | 2017-10-15 | /bin/login.php in the Web Panel on the Airtame HDMI dongle with firmware before 3.0 allows an attacker to set his own session id via a "Cookie: PHPSESSID=" header. This can... |
| CVE-2017-15305 | 2017-10-15 | XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php. |
| CVE-2017-15300 | 2017-10-15 | The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b hangs on incoming TCP connections until some sort of request is made (such as "GET / HTTP/1.1"), which... |
| CVE-2017-15360 | 2017-10-15 | PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all group names created, related to incorrect error handling for an HTML encoded script. |
| CVE-2017-15363 | 2017-10-15 | Directory traversal vulnerability in public/examples/resources/getsource.php in Luracast Restler through 3.0.0, as used in the restler extension before 1.7.1 for TYPO3, allows remote attackers to read arbitrary files via the file... |
| CVE-2017-15364 | 2017-10-15 | The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact via a... |
| CVE-2017-15302 | 2017-10-16 | In CPUID CPU-Z through 1.81, there are improper access rights to a kernel-mode driver (e.g., cpuz143_x64.sys for version 1.43) that can result in information disclosure or elevation of privileges, because... |
| CVE-2017-15303 | 2017-10-16 | In CPUID CPU-Z before 1.43, there is an arbitrary memory write that results directly in elevation of privileges, because any program running on the local machine (while CPU-Z is running)... |
| CVE-2017-15362 | 2017-10-16 | osTicket 1.10.1 allows arbitrary client-side JavaScript code execution on victims who click a crafted support/scp/tickets.php?status= link, aka XSS. Session ID and data theft may follow as well as the possibility... |
| CVE-2017-15368 | 2017-10-16 | The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via... |
| CVE-2017-15369 | 2017-10-16 | The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF before 2017-09-25 mishandles a certain case where a variable may reside in a register, which allows remote attackers to cause a denial... |
| CVE-2017-15370 | 2017-10-16 | There is a heap-based buffer overflow in the ImaExpandS function of ima_rw.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion... |
| CVE-2017-15371 | 2017-10-16 | There is a reachable assertion abort in the function sox_append_comment() in formats.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion... |
| CVE-2017-15372 | 2017-10-16 | There is a stack-based buffer overflow in the lsx_ms_adpcm_block_expand_i function of adpcm.c in Sound eXchange (SoX) 14.4.2. A Crafted input will lead to a denial of service attack during conversion... |
| CVE-2017-15374 | 2017-10-16 | Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting in the customer and order section of the content management system backend modules. Remote attackers are able to inject malicious... |
| CVE-2017-15373 | 2017-10-16 | E-Sic 1.0 allows SQL injection via the q parameter to esiclivre/restrito/inc/lkpcep.php (aka the search private area). |
| CVE-2017-15375 | 2017-10-16 | Multiple client-side cross site scripting vulnerabilities have been discovered in the WpJobBoard v4.5.1 web-application for WordPress. The vulnerabilities are located in the `query` and `id` parameters of the `wpjb-email`, `wpjb-job`,... |
| CVE-2017-15376 | 2017-10-16 | The TELNET service in Mobatek MobaXterm 10.4 does not require authentication, which allows remote attackers to execute arbitrary commands via TCP port 23. |
| CVE-2014-0029 | 2017-10-16 | Multiple cross-site scripting (XSS) vulnerabilities in the SAM web application in Red Hat katello-headpin allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. |
| CVE-2016-8734 | 2017-10-16 | Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause... |
| CVE-2014-3702 | 2017-10-16 | Directory traversal vulnerability in eNovance eDeploy allows remote attackers to create arbitrary directories and files and consequently cause a denial of service (resource consumption) via a .. (dot dot) the... |
| CVE-2014-7851 | 2017-10-16 | oVirt 3.2.2 through 3.5.0 does not invalidate the restapi session after logout from the webadmin, which allows remote authenticated users with knowledge of another user's session data to gain that... |
| CVE-2014-8087 | 2017-10-16 | Cross-site scripting (XSS) vulnerability in the post highlights plugin before 2.6.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the txt parameter in a headline... |
| CVE-2014-8621 | 2017-10-16 | SQL injection vulnerability in the Store Locator plugin 2.3 through 3.11 for WordPress allows remote attackers to execute arbitrary SQL commands via the sl_custom_field parameter to sl-xml.php. |
| CVE-2014-9147 | 2017-10-16 | Fiyo CMS 2.0.1.8 allows remote attackers to obtain sensitive information via a direct request to the database backup file in .backup/. |
| CVE-2014-9148 | 2017-10-16 | Fiyo CMS 2.0.1.8 allows remote attackers to bypass intended access restrictions and execute the (1) "Install and Update" or (2) Backup super administrator function via the view parameter in a... |
| CVE-2016-4461 | 2017-10-16 | Apache Struts 2.x before 2.3.29 allows remote attackers to execute arbitrary code via a "%{}" sequence in a tag attribute, aka forced double OGNL evaluation. NOTE: this vulnerability exists because... |
| CVE-2017-14952 | 2017-10-16 | Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector entry... |
| CVE-2017-15293 | 2017-10-16 | Xpress Server in SAP POS does not require authentication for file read and erase operations, daemon shutdown, terminal read operations, or certain attacks on credentials. This is SAP Security Note... |
| CVE-2017-15294 | 2017-10-16 | The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964. |
| CVE-2017-15295 | 2017-10-16 | Xpress Server in SAP POS does not require authentication for read/write/delete file access. This is SAP Security Note 2520064. |
| CVE-2017-15296 | 2017-10-16 | The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964. |
| CVE-2017-15297 | 2017-10-16 | SAP Hostcontrol does not require authentication for the SOAP SAPControl endpoint. This is SAP Security Note 2442993. |
| CVE-2017-15361 | 2017-10-16 | The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module (TPM) firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 133.33, mishandles RSA... |
| CVE-2017-15383 | 2017-10-16 | Nero 7.10.1.0 has an unquoted BINARY_PATH_NAME for NBService, exploitable via a Trojan horse Nero.exe file in the %PROGRAMFILES(x86)%\Nero directory. |
| CVE-2017-15384 | 2017-10-16 | rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action. |
| CVE-2014-0208 | 2017-10-16 | Cross-site scripting (XSS) vulnerability in the search auto-completion functionality in Foreman before 1.4.4 allows remote authenticated users to inject arbitrary web script or HTML via a crafted key name. |
| CVE-2015-2780 | 2017-10-16 | Unrestricted file upload vulnerability in Berta CMS allows remote attackers to execute arbitrary code by uploading a crafted image file with an executable extension, then accessing it via a direct... |
| CVE-2015-3229 | 2017-10-16 | fedora-cloud-atomic.ks in spin-kickstarts allows remote attackers to conduct man-in-the-middle attacks by leveraging use of HTTP to download Fedora Atomic updates. |
| CVE-2015-4650 | 2017-10-16 | Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to gain shell access and execute arbitrary code with root privileges via unspecified vectors. |
| CVE-2015-7687 | 2017-10-16 | Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via vectors involving req_ca_vrfy_smtp and req_ca_vrfy_mta. |
| CVE-2017-15221 | 2017-10-16 | ASX to MP3 converter 3.1.3.7.2010.11.05 has a buffer overflow via a crafted M3U file, a related issue to CVE-2009-1324. |
| CVE-2017-15265 | 2017-10-16 | Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted... |
| CVE-2017-15289 | 2017-10-16 | The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related... |
| CVE-2015-7504 | 2017-10-16 | Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via a... |
| CVE-2017-0316 | 2017-10-16 | In GeForce Experience (GFE) 3.x before 3.10.0.55, NVIDIA Installer Framework contains a vulnerability in NVISystemService64 where a value passed from a user to the driver is used without validation, which... |
| CVE-2017-9367 | 2017-10-16 | A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on the... |
| CVE-2017-9368 | 2017-10-16 | An information disclosure vulnerability in the BlackBerry Workspaces Server could result in an attacker gaining access to source code for server-side applications by crafting a request for specific files. |
| CVE-2017-15385 | 2017-10-16 | The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in radare2 2.0.0 allows remote attackers to cause a denial of service (r_read_le16 invalid write and application crash) or possibly have unspecified other impact via... |
| CVE-2017-13077 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt,... |
| CVE-2017-13078 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points... |
| CVE-2017-13079 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to... |
| CVE-2017-13080 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access... |
| CVE-2017-13081 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range... |
| CVE-2017-13082 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an... |
| CVE-2017-13084 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof... |
| CVE-2017-13086 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS handshake, allowing an attacker within radio range to replay, decrypt,... |
| CVE-2017-13087 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Group Temporal Key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an... |
| CVE-2017-13088 | 2017-10-17 | Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing... |
| CVE-2014-8323 | 2017-10-17 | buddy-ng.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter. |
| CVE-2014-8324 | 2017-10-17 | network.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter. |
| CVE-2014-9487 | 2017-10-17 | The getid3 library in MediaWiki before 1.24.1, 1.23.8, 1.22.15 and 1.19.23 allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an... |
| CVE-2014-9489 | 2017-10-17 | The gollum-grit_adapter Ruby gem dependency in gollum before 3.1.1 and the gollum-lib gem dependency in gollum-lib before 4.0.1 when the string "master" is in any of the wiki documents, allows... |
| CVE-2014-9677 | 2017-10-17 | Cross-site scripting (XSS) vulnerability in FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via the Swfile parameter. |
| CVE-2014-9678 | 2017-10-17 | FlexPaperViewer.swf in Flexpaper before 2.3.1 allows remote attackers to conduct content-spoofing attacks via the Swfile parameter. |
| CVE-2014-9697 | 2017-10-17 | Huawei USG9560/9520/9580 before V300R001C01SPC300 allows remote attackers to cause a memory leak or denial of service (memory exhaustion, reboot and MPU switchover) via a crafted website. |
| CVE-2014-9733 | 2017-10-17 | nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors. |
| CVE-2014-2277 | 2017-10-17 | The make_temporary_filename function in perltidy 20120701-1 and earlier allows local users to obtain sensitive information or write to arbitrary files via a symlink attack, related to use of the tmpnam... |
| CVE-2014-2664 | 2017-10-17 | Unrestricted file upload vulnerability in the ProfileController::actionUploadPhoto method in protected/controllers/ProfileController.php in X2Engine X2CRM before 4.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension,... |
| CVE-2014-8357 | 2017-10-17 | backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote attackers to obtain arbitrary user passwords via... |
| CVE-2014-9118 | 2017-10-17 | The web administrative portal in Zhone zNID GPON 2426A before S3.0.501 allows remote attackers to execute arbitrary commands via shell metacharacters in the ipAddr parameter to zhnping.cmd. |
| CVE-2015-7806 | 2017-10-17 | Eval injection vulnerability in the fm_saveHelperGatherItems function in ajax.php in the Form Manager plugin before 1.7.3 for WordPress allows remote attackers to execute arbitrary code via unspecified vectors. |
| CVE-2017-15537 | 2017-10-17 | The x86/fpu (Floating Point Unit) subsystem in the Linux kernel before 4.13.5, when a processor supports the xsave feature but not the xsaves feature, does not correctly handle attempts to... |
| CVE-2017-8805 | 2017-10-17 | Debian ftpsync before 20171017 does not use the rsync --safe-links option, which allows remote attackers to conduct directory traversal attacks via a crafted upstream mirror. |