CVE List - 2017 / January
Showing 1 - 100 of 1083 CVEs for January 2017 (Page 1 of 11)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2016-10096 | 2017-01-01 | SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows... |
| CVE-2016-10097 | 2017-01-02 | XML External Entity (XXE) Vulnerability in /SSOPOST/metaAlias/%realm%/idpv2 in OpenAM -... |
| CVE-2016-10099 | 2017-01-02 | Borg (aka BorgBackup) before 1.0.9 has a flaw in the... |
| CVE-2016-10100 | 2017-01-02 | Borg (aka BorgBackup) before 1.0.9 has a flaw in the... |
| CVE-2017-5005 | 2017-01-02 | Stack-based buffer overflow in Quick Heal Internet Security 10.1.0.316 and... |
| CVE-2016-10108 | 2017-01-03 | Unauthenticated Remote Command injection as root occurs in the Western... |
| CVE-2016-10105 | 2017-01-03 | admin/plugin.php in Piwigo through 2.8.3 doesn't validate the sections variable... |
| CVE-2016-10106 | 2017-01-03 | Directory traversal vulnerability in scgi-bin/platform.cgi on NETGEAR FVS336Gv3, FVS318N, FVS318Gv2,... |
| CVE-2016-10107 | 2017-01-03 | Unauthenticated Remote Command injection as root occurs in the Western... |
| CVE-2016-5024 | 2017-01-03 | Virtual servers in F5 BIG-IP systems 11.6.1 before 11.6.1 HF1... |
| CVE-2016-10112 | 2017-01-04 | Cross-site scripting (XSS) vulnerability in the WooCommerce plugin before 2.6.9... |
| CVE-2016-10114 | 2017-01-04 | SQL injection vulnerability in the "aWeb Cart Watching System for... |
| CVE-2016-10115 | 2017-01-04 | NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo... |
| CVE-2016-10116 | 2017-01-04 | NETGEAR Arlo base stations with firmware 1.7.5_6178 and earlier, Arlo... |
| CVE-2014-9911 | 2017-01-04 | Stack-based buffer overflow in the ures_getByKeyWithFallback function in common/uresbund.cpp in... |
| CVE-2014-9912 | 2017-01-04 | The get_icu_disp_value_src_php function in ext/intl/locale/locale_methods.c in PHP before 5.3.29, 5.4.x... |
| CVE-2016-6595 | 2017-01-04 | The SwarmKit toolkit 1.12.0 for Docker allows remote authenticated users... |
| CVE-2016-8670 | 2017-01-04 | Integer signedness error in the dynamicGetbuf function in gd_io_dp.c in... |
| CVE-2016-8860 | 2017-01-04 | Tor before 0.2.8.9 and 0.2.9.x before 0.2.9.4-alpha had internal functions... |
| CVE-2016-9137 | 2017-01-04 | Use-after-free vulnerability in the CURLFile implementation in ext/curl/curl_file.c in PHP... |
| CVE-2016-9138 | 2017-01-04 | PHP through 5.6.27 and 7.x through 7.0.12 mishandles property modification... |
| CVE-2016-9933 | 2017-01-04 | Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in... |
| CVE-2016-9934 | 2017-01-04 | ext/wddx/wddx.c in PHP before 5.6.28 and 7.x before 7.0.13 allows... |
| CVE-2016-9935 | 2017-01-04 | The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and... |
| CVE-2016-9936 | 2017-01-04 | The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14... |
| CVE-2016-6894 | 2017-01-04 | Arista EOS 4.15 before 4.15.8M, 4.16 before 4.16.7M, and 4.17... |
| CVE-2016-7399 | 2017-01-04 | scripts/license.pl in Veritas NetBackup Appliance 2.6.0.x through 2.6.0.4, 2.6.1.x through... |
| CVE-2016-7902 | 2017-01-04 | Unrestricted file upload vulnerability in the fileUnzip->unzip method in Dotclear... |
| CVE-2016-7903 | 2017-01-04 | Dotclear before 2.10.3, when the Host header is not part... |
| CVE-2016-10010 | 2017-01-05 | sshd in OpenSSH before 7.4, when privilege separation is not... |
| CVE-2016-10011 | 2017-01-05 | authfile.c in sshd in OpenSSH before 7.4 does not properly... |
| CVE-2016-10012 | 2017-01-05 | The shared memory manager (associated with pre-authentication compression) in sshd... |
| CVE-2016-10009 | 2017-01-05 | Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH... |
| CVE-2016-7168 | 2017-01-05 | Cross-site scripting (XSS) vulnerability in the media_handle_upload function in wp-admin/includes/media.php... |
| CVE-2016-7169 | 2017-01-05 | Directory traversal vulnerability in the File_Upload_Upgrader class in wp-admin/includes/class-file-upload-upgrader.php in... |
| CVE-2016-10030 | 2017-01-05 | The _prolog_error function in slurmd/req.c in Slurm before 15.08.13, 16.x... |
| CVE-2016-9754 | 2017-01-05 | The ring_buffer_resize function in kernel/trace/ring_buffer.c in the profiling subsystem in... |
| CVE-2015-3441 | 2017-01-05 | The Parental Control panel in Genexis devices with DRGOS before... |
| CVE-2016-6890 | 2017-01-05 | Heap-based buffer overflow in MatrixSSL before 3.8.6 allows remote attackers... |
| CVE-2016-6891 | 2017-01-05 | MatrixSSL before 3.8.6 allows remote attackers to cause a denial... |
| CVE-2016-6892 | 2017-01-05 | The x509FreeExtensions function in MatrixSSL before 3.8.6 allows remote attackers... |
| CVE-2016-8006 | 2017-01-05 | Authentication bypass vulnerability in Enterprise Security Manager (ESM) and License... |
| CVE-2017-5179 | 2017-01-05 | Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.3 allows... |
| CVE-2015-2867 | 2017-01-06 | A design flaw in the Trane ComfortLink II SCC firmware... |
| CVE-2015-2868 | 2017-01-06 | An exploitable remote code execution vulnerability exists in the Trane... |
| CVE-2015-7848 | 2017-01-06 | An integer overflow can occur in NTP-dev.4.3.70 leading to an... |
| CVE-2016-1547 | 2017-01-06 | An off-path attacker can cause a preemptible client association to... |
| CVE-2016-1548 | 2017-01-06 | An attacker can spoof a packet from a legitimate ntpd... |
| CVE-2016-1549 | 2017-01-06 | A malicious authenticated peer can create arbitrarily-many ephemeral associations in... |
| CVE-2016-1550 | 2017-01-06 | An exploitable vulnerability exists in the message authentication functionality of... |
| CVE-2016-2336 | 2017-01-06 | Type confusion exists in two methods of Ruby's WIN32OLE class,... |
| CVE-2016-2337 | 2017-01-06 | Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker... |
| CVE-2016-2339 | 2017-01-06 | An exploitable heap overflow vulnerability exists in the Fiddle::Function.new "initialize"... |
| CVE-2016-2365 | 2017-01-06 | A denial of service vulnerability exists in the handling of... |
| CVE-2016-2366 | 2017-01-06 | A denial of service vulnerability exists in the handling of... |
| CVE-2016-2367 | 2017-01-06 | An information leak exists in the handling of the MXIT... |
| CVE-2016-2368 | 2017-01-06 | Multiple memory corruption vulnerabilities exist in the handling of the... |
| CVE-2016-2369 | 2017-01-06 | A NULL pointer dereference vulnerability exists in the handling of... |
| CVE-2016-2370 | 2017-01-06 | A denial of service vulnerability exists in the handling of... |
| CVE-2016-2371 | 2017-01-06 | An out-of-bounds write vulnerability exists in the handling of the... |
| CVE-2016-2372 | 2017-01-06 | An information leak exists in the handling of the MXIT... |
| CVE-2016-2373 | 2017-01-06 | A denial of service vulnerability exists in the handling of... |
| CVE-2016-2374 | 2017-01-06 | An exploitable memory corruption vulnerability exists in the handling of... |
| CVE-2016-2375 | 2017-01-06 | An exploitable out-of-bounds read exists in the handling of the... |
| CVE-2016-2376 | 2017-01-06 | A buffer overflow vulnerability exists in the handling of the... |
| CVE-2016-2377 | 2017-01-06 | A buffer overflow vulnerability exists in the handling of the... |
| CVE-2016-2378 | 2017-01-06 | A buffer overflow vulnerability exists in the handling of the... |
| CVE-2016-2380 | 2017-01-06 | An information leak exists in the handling of the MXIT... |
| CVE-2016-4288 | 2017-01-06 | A local privilege escalation vulnerability exists in BlueStacks App Player.... |
| CVE-2016-4290 | 2017-01-06 | When opening a Hangul HShow Document (.hpt) and processing a... |
| CVE-2016-4291 | 2017-01-06 | When opening a Hangul HShow Document (.hpt) and processing a... |
| CVE-2016-4292 | 2017-01-06 | When opening a Hangul HShow Document (.hpt) and processing a... |
| CVE-2016-4294 | 2017-01-06 | When opening a Hangul Hcell Document (.cell) and processing a... |
| CVE-2016-4295 | 2017-01-06 | When opening a Hangul Hcell Document (.cell) and processing a... |
| CVE-2016-4296 | 2017-01-06 | When opening a Hangul Hcell Document (.cell) and processing a... |
| CVE-2016-4298 | 2017-01-06 | When opening a Hangul HShow Document (.hpt) and processing a... |
| CVE-2016-4304 | 2017-01-06 | A denial of service vulnerability exists in the syscall filtering... |
| CVE-2016-4305 | 2017-01-06 | A denial of service vulnerability exists in the syscall filtering... |
| CVE-2016-4306 | 2017-01-06 | Multiple information leaks exist in various IOCTL handlers of the... |
| CVE-2016-4307 | 2017-01-06 | A denial of service vulnerability exists in the IOCTL handling... |
| CVE-2016-4323 | 2017-01-06 | A directory traversal exists in the handling of the MXIT... |
| CVE-2016-4329 | 2017-01-06 | A local denial of service vulnerability exists in window broadcast... |
| CVE-2016-4335 | 2017-01-06 | An exploitable buffer overflow exists in the XLS parsing of... |
| CVE-2016-4336 | 2017-01-06 | An exploitable out-of-bounds write exists in the Bzip2 parsing of... |
| CVE-2016-5646 | 2017-01-06 | An exploitable heap overflow vulnerability exists in the Compound Binary... |
| CVE-2016-5652 | 2017-01-06 | An exploitable heap-based buffer overflow exists in the handling of... |
| CVE-2016-5684 | 2017-01-06 | An exploitable out-of-bounds write vulnerability exists in the XMP image... |
| CVE-2016-8334 | 2017-01-06 | A large out-of-bounds read on the heap vulnerability in Foxit... |
| CVE-2016-8704 | 2017-01-06 | An integer overflow in the process_bin_append_prepend function in Memcached, which... |
| CVE-2016-8705 | 2017-01-06 | Multiple integer overflows in process_bin_update function in Memcached, which is... |
| CVE-2016-8706 | 2017-01-06 | An integer overflow in process_bin_sasl_auth function in Memcached, which is... |
| CVE-2016-9867 | 2017-01-06 | An issue was discovered in EMC ScaleIO versions before 2.0.1.1.... |
| CVE-2016-9868 | 2017-01-06 | An issue was discovered in EMC ScaleIO versions before 2.0.1.1.... |
| CVE-2016-9869 | 2017-01-06 | An issue was discovered in EMC ScaleIO versions before 2.0.1.1.... |
| CVE-2016-9879 | 2017-01-06 | An issue was discovered in Pivotal Spring Security before 3.2.10,... |
| CVE-2016-9885 | 2017-01-06 | An issue was discovered in Pivotal GemFire for PCF 1.6.x... |
| CVE-2016-10124 | 2017-01-09 | An issue was discovered in Linux Containers (LXC) before 2016-02-22.... |
| CVE-2017-5216 | 2017-01-09 | Stack-based buffer overflow vulnerability in Netop Remote Control versions 11.53,... |
| CVE-2017-5217 | 2017-01-09 | Installing a zero-permission Android application on certain Samsung Android devices... |
| CVE-2016-10125 | 2017-01-09 | D-Link DGS-1100 devices with Rev.B firmware 1.01.018 have a hardcoded... |