CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-1000363 Overflow 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the adversary has partial control over the command line) can overflow the parport_nr array in the following code, by appending many (>LP_NO) 'lp=none' arguments to the command line.
2 CVE-2017-1000362 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
The re-key admin monitor was introduced in Jenkins 1.498 and re-encrypted all secrets in JENKINS_HOME with a new key. It also created a backup directory with all old secrets, and the key used to encrypt them. These backups were world-readable and not removed afterwards. Jenkins now deletes the backup directory, if present. Upgrading from before 1.498 will no longer create a backup directory. Administrators relying on file access permissions in their manually created backups are advised to check them for the directory $JENKINS_HOME/jenkins.security.RekeySecretAdminMonitor/backups, and delete it if present.
3 CVE-2017-1000071 Bypass 2017-07-17 2017-07-18
0.0
None ??? ??? ??? ??? ??? ???
Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass in the validateCAS20 function when configured to authenticate against an old CAS server.
4 CVE-2017-1000068 DoS 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
TestTrack Server versions 1.0 and earlier are vulnerable to an authentication flaw in the split disablement feature resulting in the ability to disable arbitrary running splits and cause denial of service to clients in the field.
5 CVE-2017-1000061 DoS 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service
6 CVE-2017-1000056 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object.
7 CVE-2017-1000053 Exec Code 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to arbitrary code execution in the deserialization functions of Plug.Session.
8 CVE-2017-1000052 Bypass 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions.
9 CVE-2017-1000048 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
the web framework using ljharb's qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash.
10 CVE-2017-1000045 Bypass CSRF 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Mautic SSO/OAuth2 plugins are vulnerable to CSRF of the state parameter resulting in authentication bypass through clickjacking
11 CVE-2017-1000037 Exec Code 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does "bundle install" on a Gemfile specified by .versions.conf in $PWD resulting in code execution
12 CVE-2017-1000034 Exec Code 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem.
13 CVE-2017-1000025 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites.
14 CVE-2017-1000024 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to a information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission
15 CVE-2017-1000020 Bypass 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
SYN Flood or FIN Flood attack in ECos 1 and other versions embedded devices results in web Authentication Bypass. "eCos Embedded Web Servers used by Multiple Routers and Home devices, while sending SYN Flood or FIN Flood packets fails to validate and handle the packets and does not ask for any sign of authentication resulting in Authentication Bypass. An attacker can take complete advantage of this bug and take over the device remotely or locally. The bug has been successfully tested and reproduced in some versions of SOHO Routers manufactured by TOTOLINK, GREATEK and others."
16 CVE-2017-1000016 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. This is a re-issue of an incomplete fix from PMASA-2016-18.
17 CVE-2017-1000009 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell injection in the mass edition, resulting in remote execution.
18 CVE-2017-1000008 CSRF 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user settings function allowing attackers to hijack the authentication of logged in users to modify account information, including their password.
19 CVE-2017-1000007 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
txAWS (all current versions) fail to perform complete certificate verification resulting in vulnerability to MitM attacks and information disclosure.
20 CVE-2017-1000006 XSS 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
21 CVE-2017-1000004 Exec Code Sql 2017-07-17 2017-07-19
0.0
None ??? ??? ??? ??? ??? ???
ATutor version 2.2.1 and earlier are vulnerable to a SQL injection in the Assignment Dropbox, BasicLTI, Blog Post, Blog, Group Course Email, Course Alumni, Course Enrolment, Group Membership, Course unenrolment, Course Enrolment List Search, Glossary, Social Group Member Search, Social Friend Search, Social Group Search, File Comment, Gradebook Test Title, User Group Membership, Inbox/Sent Items, Sent Messages, Links, Photo Album, Poll, Social Application, Social Profile, Test, Content Menu, Auto-Login, and Gradebook components resulting in information disclosure, database modification, or potential code execution.
22 CVE-2017-1000003 2017-07-17 2017-07-18
0.0
None ??? ??? ??? ??? ??? ???
ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Social Application component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Module component resulting in privilege escalation. ATutor versions 2.2.1 and earlier are vulnerable to a incorrect access control check vulnerability in the Alternative Content component resulting in privilege escalation.
23 CVE-2017-1000002 Exec Code Dir. Trav. Bypass 2017-07-17 2017-07-18
0.0
None ??? ??? ??? ??? ??? ???
ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal and file extension check bypass in the Course component resulting in code execution. ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal vulnerability in the Course Icon component resulting in information disclosure.
24 CVE-2017-1000001 2017-07-17 2017-07-17
0.0
None ??? ??? ??? ??? ??? ???
FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message validation not being enabled if configured to be on.
25 CVE-2017-11577 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a buffer over-read in getsid (parsettf.c) resulting in DoS or code execution via a crafted otf file.
26 CVE-2017-11576 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 does not ensure a positive size in a weight vector memcpy call in readcfftopdict (parsettf.c) resulting in DoS via a crafted otf file.
27 CVE-2017-11575 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a buffer over-read in strnmatch (char.c) resulting in DoS or code execution via a crafted otf file, related to a call from the readttfcopyrights function in parsettf.c.
28 CVE-2017-11574 Exec Code Overflow 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a heap-based buffer overflow in readcffset (parsettf.c) resulting in DoS or code execution via a crafted otf file.
29 CVE-2017-11573 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a buffer over-read in ValidatePostScriptFontName (parsettf.c) resulting in DoS or code execution via a crafted otf file.
30 CVE-2017-11572 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readcfftopdicts (parsettf.c) resulting in DoS or code execution via a crafted otf file.
31 CVE-2017-11571 Exec Code Overflow 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a stack-based buffer overflow in addnibble (parsettf.c) resulting in DoS or code execution via a crafted otf file.
32 CVE-2017-11570 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a buffer over-read in umodenc (parsettf.c) resulting in DoS or code execution via a crafted otf file.
33 CVE-2017-11569 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a heap-based buffer over-read in readttfcopyrights (parsettf.c) resulting in DoS or code execution via a crafted otf file.
34 CVE-2017-11568 Exec Code 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
FontForge 20161012 is vulnerable to a heap-based buffer over-read in PSCharStringToSplines (psread.c) resulting in DoS or code execution via a crafted otf file.
35 CVE-2017-11565 Bypass 2017-07-23 2017-07-23
0.0
None ??? ??? ??? ??? ??? ???
debian/tor.init in the Debian tor_0.2.9.11-1~deb9u1 package for Tor was designed to execute aa-exec from the standard system pathname if the apparmor package is installed, but implements this incorrectly (with a wrong assumption that the specific pathname would remain the same forever), which allows attackers to bypass intended AppArmor restrictions by leveraging the silent loss of this protection mechanism. NOTE: this does not affect systems, such as default Debian stretch installations, on which Tor startup relies on a systemd unit file (instead of this tor.init script).
36 CVE-2017-11556 DoS 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.
37 CVE-2017-11555 DoS 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service.
38 CVE-2017-11554 DoS 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.
39 CVE-2017-11553 DoS 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
There is an illegal address access in the extend_alias_table function in localealias.c of Exiv2 0.26. A crafted input will lead to remote denial of service.
40 CVE-2017-11545 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print function in print-sl.c:253:34.
41 CVE-2017-11544 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
tcpdump 4.9.0 has a Segmentation Violation in the compressed_sl_print function in print-sl.c:229:3.
42 CVE-2017-11543 Overflow 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
tcpdump 4.9.0 has a buffer overflow in the sliplink_print function in print-sl.c.
43 CVE-2017-11542 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
tcpdump 4.9.0 has a heap-based buffer over-read in the pimv1_print function in print-pim.c.
44 CVE-2017-11541 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
tcpdump 4.9.0 has a heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c.
45 CVE-2017-11540 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the GetPixelIndex() function, called from the WritePICONImage function in coders/xpm.c.
46 CVE-2017-11539 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/png.c.
47 CVE-2017-11538 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteOnePNGImage() function in coders/png.c.
48 CVE-2017-11537 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Floating Point Exception (FPE) in the WritePALMImage() function in coders/palm.c, related to an incorrect bits-per-pixel calculation.
49 CVE-2017-11536 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteJP2Image() function in coders/jp2.c.
50 CVE-2017-11535 2017-07-22 2017-07-22
0.0
None ??? ??? ??? ??? ??? ???
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.
Total number of vulnerabilities : 347   Page : 1 (This Page)2 3 4 5 6 7
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.