CVE List - 2017 / April
Showing 901 - 1000 of 1568 CVEs for April 2017 (Page 10 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2017-5656 | 2017-04-18 | Apache CXF's STSClient before 3.1.11 and 3.0.13 uses a flawed... |
| CVE-2017-7897 | 2017-04-18 | A cross-site scripting (XSS) vulnerability in the MantisBT (2.3.x before... |
| CVE-2017-7939 | 2017-04-18 | The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0... |
| CVE-2017-7940 | 2017-04-18 | The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0... |
| CVE-2017-7941 | 2017-04-18 | The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote... |
| CVE-2017-7942 | 2017-04-18 | The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote... |
| CVE-2017-7943 | 2017-04-18 | The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote... |
| CVE-2016-10345 | 2017-04-18 | In Phusion Passenger before 5.1.0, a known /tmp filename was... |
| CVE-2017-7946 | 2017-04-18 | The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote... |
| CVE-2014-9907 | 2017-04-19 | coders/dds.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-5410 | 2017-04-19 | firewalld.py in firewalld before 0.4.3.3 allows local users to bypass... |
| CVE-2016-7515 | 2017-04-19 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers... |
| CVE-2016-7519 | 2017-04-19 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers... |
| CVE-2016-7522 | 2017-04-19 | The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers... |
| CVE-2016-7528 | 2017-04-19 | The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers... |
| CVE-2016-7529 | 2017-04-19 | coders/xcf.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7531 | 2017-04-19 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7533 | 2017-04-19 | The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers... |
| CVE-2016-7537 | 2017-04-19 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2017-7849 | 2017-04-19 | Nessus 6.10.x before 6.10.5 was found to be vulnerable to... |
| CVE-2017-7850 | 2017-04-19 | Nessus 6.10.x before 6.10.5 was found to be vulnerable to... |
| CVE-2017-7948 | 2017-04-19 | Integer overflow in the mark_curve function in Artifex Ghostscript 9.21... |
| CVE-2017-7960 | 2017-04-19 | The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12... |
| CVE-2017-7961 | 2017-04-19 | The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12... |
| CVE-2017-7962 | 2017-04-19 | The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0... |
| CVE-2017-7963 | 2017-04-19 | The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP... |
| CVE-2017-7975 | 2017-04-19 | Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes... |
| CVE-2017-7964 | 2017-04-19 | Zyxel WRE6505 devices have a default TELNET password of 1234... |
| CVE-2013-7463 | 2017-04-19 | The aescrypt gem 1.0.0 for Ruby does not randomize the... |
| CVE-2017-7976 | 2017-04-19 | Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of... |
| CVE-2017-7978 | 2017-04-19 | Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow... |
| CVE-2017-7979 | 2017-04-19 | The cookie feature in the packet action API implementation in... |
| CVE-2017-7938 | 2017-04-20 | Stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) version... |
| CVE-2017-6919 | 2017-04-20 | Drupal 8 before 8.2.8 and 8.3 before 8.3.1 allows critical... |
| CVE-2017-7282 | 2017-04-20 | An issue was discovered in Unitrends Enterprise Backup before 9.1.1.... |
| CVE-2017-7283 | 2017-04-20 | An authenticated user of Unitrends Enterprise Backup before 9.1.2 can... |
| CVE-2017-7692 | 2017-04-20 | SquirrelMail 1.4.22 (and other versions before 20170427_0200-SVN) allows post-authentication remote... |
| CVE-2017-7982 | 2017-04-20 | Integer overflow in the plist_from_bin function in bplist.c in libimobiledevice/libplist... |
| CVE-2017-5190 | 2017-04-20 | NetIQ Access Manager 4.2 before SP3 HF1 and 4.3 before... |
| CVE-2016-1219 | 2017-04-20 | Cybozu Garoon before 4.2.2 allows remote attackers to bypass login... |
| CVE-2016-4293 | 2017-04-20 | Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2)... |
| CVE-2016-4650 | 2017-04-20 | Heap-based buffer overflow in IOHIDFamily in Apple iOS before 9.3.2,... |
| CVE-2016-4847 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in site/search.php in OSSEC Web UI... |
| CVE-2016-4849 | 2017-04-20 | Multiple cross-site scripting (XSS) vulnerabilities in Geeklog IVYWE edition 2.1.1... |
| CVE-2016-5409 | 2017-04-20 | Red Hat OpenShift Enterprise 2 does not include the HTTPOnly... |
| CVE-2016-5760 | 2017-04-20 | Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in... |
| CVE-2016-5761 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in Novell GroupWise before 2014 R2... |
| CVE-2016-5762 | 2017-04-20 | Integer overflow in the Post Office Agent in Novell GroupWise... |
| CVE-2016-6331 | 2017-04-20 | ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x... |
| CVE-2016-6332 | 2017-04-20 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1,... |
| CVE-2016-6333 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the CSS user subpage preview... |
| CVE-2016-6334 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the Parser::replaceInternalLinks2 method in MediaWiki... |
| CVE-2016-6335 | 2017-04-20 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1... |
| CVE-2016-6336 | 2017-04-20 | MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1... |
| CVE-2016-6337 | 2017-04-20 | MediaWiki 1.27.x before 1.27.1 might allow remote attackers to bypass... |
| CVE-2016-6338 | 2017-04-20 | ovirt-engine-webadmin, as used in Red Hat Enterprise Virtualization Manager (aka... |
| CVE-2016-6341 | 2017-04-20 | oVirt Engine before 4.0.3 does not include DWH_DB_PASSWORD in the... |
| CVE-2016-6347 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the default exception handler in... |
| CVE-2017-7718 | 2017-04-20 | hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS... |
| CVE-2015-8957 | 2017-04-20 | Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers... |
| CVE-2015-8958 | 2017-04-20 | coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to... |
| CVE-2015-8959 | 2017-04-20 | coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to... |
| CVE-2016-1213 | 2017-04-20 | The "Scheduler" function in Cybozu Garoon before 4.2.2 allows remote... |
| CVE-2016-1214 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the "Response request" function in... |
| CVE-2016-1215 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the "User details" function in... |
| CVE-2016-1216 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the "New appointment" function in... |
| CVE-2016-1217 | 2017-04-20 | Cross-site scripting (XSS) vulnerability in the "Check available times" function... |
| CVE-2016-1218 | 2017-04-20 | SQL injection vulnerability in Cybozu Garoon before 4.2.2. |
| CVE-2016-1220 | 2017-04-20 | Cybozu Garoon before 4.2.2 does not properly restrict access. |
| CVE-2016-4818 | 2017-04-20 | DMMFX Trade for Android 1.5.0 and earlier, DMMFX DEMO Trade... |
| CVE-2016-4842 | 2017-04-20 | Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information... |
| CVE-2016-4843 | 2017-04-20 | Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive... |
| CVE-2016-4844 | 2017-04-20 | Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking... |
| CVE-2016-4850 | 2017-04-20 | LINE for Windows before 4.8.3 allows man-in-the-middle attackers to execute... |
| CVE-2016-4862 | 2017-04-20 | Twigmo bundled with CS-Cart 4.3.9 and earlier and Twigmo bundled... |
| CVE-2016-5010 | 2017-04-20 | coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause... |
| CVE-2016-7513 | 2017-04-20 | Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to... |
| CVE-2016-7514 | 2017-04-20 | The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers... |
| CVE-2016-7516 | 2017-04-20 | The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers... |
| CVE-2016-7517 | 2017-04-20 | The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers... |
| CVE-2016-7518 | 2017-04-20 | The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers... |
| CVE-2016-7520 | 2017-04-20 | Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers... |
| CVE-2016-7521 | 2017-04-20 | Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers... |
| CVE-2016-7525 | 2017-04-20 | Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers... |
| CVE-2016-7526 | 2017-04-20 | coders/wpg.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7527 | 2017-04-20 | coders/wpg.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7530 | 2017-04-20 | The quantum handling code in ImageMagick allows remote attackers to... |
| CVE-2016-7532 | 2017-04-20 | coders/psd.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7534 | 2017-04-20 | The generic decoder in ImageMagick allows remote attackers to cause... |
| CVE-2016-7535 | 2017-04-20 | coders/psd.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7536 | 2017-04-20 | magick/profile.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7538 | 2017-04-20 | coders/psd.c in ImageMagick allows remote attackers to cause a denial... |
| CVE-2016-7540 | 2017-04-20 | coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause... |
| CVE-2016-8721 | 2017-04-20 | An exploitable OS Command Injection vulnerability exists in the web... |
| CVE-2017-2784 | 2017-04-20 | An exploitable free of a stack pointer vulnerability exists in... |
| CVE-2017-2806 | 2017-04-20 | An exploitable arbitrary read exists in the XLS parsing of... |
| CVE-2017-5183 | 2017-04-20 | NetIQ Access Manager 4.2.2 and 4.3.x before 4.3.1+, when configured... |
| CVE-2017-5156 | 2017-04-20 | A Cross-Site Request Forgery issue was discovered in Schneider Electric... |
| CVE-2017-5158 | 2017-04-20 | An Information Exposure issue was discovered in Schneider Electric Wonderware... |
| CVE-2017-5160 | 2017-04-20 | An Inadequate Encryption Strength issue was discovered in Schneider Electric... |