CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-1002100 2017-09-14 2017-09-14
0.0
None ??? ??? ??? ??? ??? ???
Default access permissions for Persistent Volumes (PVs) created by the Kubernetes Azure cloud provider in versions 1.6.0 to 1.6.5 are set to "container" which exposes a URI that can be accessed without authentication on the public internet. Access to the URI string requires privileged access to the Kubernetes cluster or authenticated access to the Azure portal.
2 CVE-2017-1002024 2017-09-14 2017-09-14
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/upload_json.php does not check authentication before allow users to upload files.
3 CVE-2017-1002016 2017-09-14 2017-09-14
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin flickr-picture-backup v0.7, The code in flickr-picture-download.php doesn't check to see if the user is authenticated or that they have permission to upload files.
4 CVE-2017-1002008 2017-09-14 2017-09-15
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin membership-simplified-for-oap-members-only v1.58, The file download code located membership-simplified-for-oap-members-only/download.php does not check whether a user is logged in and has download privileges.
5 CVE-2017-1002003 2017-09-14 2017-09-15
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin wp2android-turn-wp-site-into-android-app v1.1.4, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com.
6 CVE-2017-1002002 2017-09-14 2017-09-15
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin webapp-builder v2.0, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com/
7 CVE-2017-1002001 2017-09-14 2017-09-15
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin mobile-app-builder-by-wappress v1.05, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com.
8 CVE-2017-1002000 2017-09-14 2017-09-15
0.0
None ??? ??? ??? ??? ??? ???
Vulnerability in wordpress plugin mobile-friendly-app-builder-by-easytouch v3.0, The code in file ./mobile-friendly-app-builder-by-easytouch/server/images.php doesn't require authentication or check that the user is allowed to upload content.
9 CVE-2017-1000251 Exec Code Overflow 2017-09-12 2017-09-19
0.0
None ??? ??? ??? ??? ??? ???
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 3.3-rc1 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.
10 CVE-2017-1000250 +Info 2017-09-12 2017-09-19
0.0
None ??? ??? ??? ??? ??? ???
All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests.
11 CVE-2017-1000249 2017-09-11 2017-09-11
0.0
None ??? ??? ??? ??? ??? ???
An issue in file() was introduced in commit 9611f31313a93aa036389c5f3b15eea53510d4d1 (Oct 2016) lets an attacker overwrite a fixed 20 bytes stack buffer with a specially crafted .notes section in an ELF binary. This was fixed in commit 35c94dc6acc418f1ad7f6241a6680e5327495793 (Aug 2017).
12 CVE-2017-14682 DoS Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted SVG document, a different vulnerability than CVE-2017-10928.
13 CVE-2017-14681 Exec Code 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for p3scan.pid modification before a root script executes a "kill `cat /pathname/p3scan.pid`" command, as demonstrated by etc/init.d/p3scan.
14 CVE-2017-14680 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document.
15 CVE-2017-14652 Sql 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
SQL Injection vulnerability in mobiquo/lib/classTTForum.php in the Tapatalk plugin before 4.5.8 for MyBB allows an unauthenticated remote attacker to inject arbitrary SQL commands via an XML-RPC encoded document sent as part of the user registration process.
16 CVE-2017-14651 XSS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
17 CVE-2017-14650 Exec Code 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A Remote Code Execution vulnerability has been found in the Horde_Image library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde application, because the code path to the vulnerability is not used by any Horde code. Custom applications using the Horde_Image library might be affected. This vulnerability affects all versions of Horde_Image from 2.0.0 to 2.5.1, and is fixed in 2.5.2. The problem is missing input validation of the index field in _raw() during construction of an ImageMagick command line.
18 CVE-2017-14649 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).
19 CVE-2017-14648 DoS Exec Code Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A global buffer overflow was discovered in the iteration_loop function in loop.c in BladeEnc version 0.94.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
20 CVE-2017-14647 DoS Exec Code Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A heap-based buffer overflow was discovered in AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
21 CVE-2017-14646 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
The AP4_AvccAtom and AP4_HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp.
22 CVE-2017-14645 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A heap-based buffer over-read was discovered in AP4_BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. The vulnerability causes an application crash, which leads to remote denial of service.
23 CVE-2017-14644 DoS Exec Code Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A heap-based buffer overflow was discovered in the AP4_HdlrAtom class in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
24 CVE-2017-14643 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4_BytesToUInt32BE in Core/Ap4Utils.h.
25 CVE-2017-14642 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A NULL pointer dereference was discovered in the AP4_HdlrAtom class in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash in AP4_StdcFileByteStream::ReadPartial in System/StdC/Ap4StdCFileByteStream.cpp, which leads to remote denial of service.
26 CVE-2017-14641 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A NULL pointer dereference was discovered in the AP4_DataAtom class in MetaData/Ap4MetaData.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service.
27 CVE-2017-14640 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
A NULL pointer dereference was discovered in AP4_AtomSampleTable::GetSample in Core/Ap4AtomSampleTable.cpp in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service.
28 CVE-2017-14639 DoS 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617 uses incorrect character data types, which causes a stack-based buffer underflow and out-of-bounds write, leading to denial of service (application crash) or possibly unspecified other impact.
29 CVE-2017-14638 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
AP4_AtomFactory::CreateAtomFromStream in Core/Ap4AtomFactory.cpp in Bento4 version 1.5.0-617 has missing NULL checks, leading to a NULL pointer dereference, segmentation fault, and application crash in AP4_Atom::SetType in Core/Ap4Atom.h.
30 CVE-2017-14635 +Priv 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In Open Ticket Request System (OTRS) 3.3.x before 3.3.18, 4.x before 4.0.25, and 5.x before 5.0.23, remote authenticated users can leverage statistics-write permissions to gain privileges via code injection.
31 CVE-2017-14634 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file.
32 CVE-2017-14633 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbis_analysis().
33 CVE-2017-14632 Exec Code 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184.
34 CVE-2017-14631 Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In sam2p 0.49.3, the pcxLoadRaster function in in_pcx.cpp has an integer signedness error leading to a heap-based buffer overflow.
35 CVE-2017-14630 Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp, leading to an invalid write operation.
36 CVE-2017-14629 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In sam2p 0.49.3, the in_xpm_reader function in in_xpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element.
37 CVE-2017-14628 Overflow 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp.
38 CVE-2017-14626 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
39 CVE-2017-14625 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
40 CVE-2017-14624 2017-09-21 2017-09-21
0.0
None ??? ??? ??? ??? ??? ???
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
41 CVE-2017-14623 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
In the ldap.v2 (aka go-ldap) package through 2.5.0 for Go, an attacker may be able to login with an empty password. This issue affects an application using this package if these conditions are met: (1) it relies only on the return error of the Bind function call to determine whether a user is authorized (i.e., a nil return value is interpreted as successful authorization) and (2) it is used with an LDAP server allowing unauthenticated bind.
42 CVE-2017-14621 XSS 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
Portus 2.2.0 has XSS via the Team field, related to typeahead.
43 CVE-2017-14619 XSS 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
Cross-site scripting (XSS) vulnerability in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the "Title of your FAQ" field in the Configuration Module.
44 CVE-2017-14618 XSS 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
Cross-site scripting (XSS) vulnerability in inc/PMF/Faq.php in phpMyFAQ through 2.9.8 allows remote attackers to inject arbitrary web script or HTML via the Questions field in an "Add New FAQ" action.
45 CVE-2017-14617 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
In Poppler 0.59.0, a floating point exception occurs in the ImageStream class in Stream.cc, which may lead to a potential attack when handling malicious PDF files.
46 CVE-2017-14616 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
An FBX-5312 issue was discovered in WatchGuard Fireware before 12.0. If a login attempt is made in the XML-RPC interface with an XML message containing an empty member element, the wgagent crashes, logging out any user with a session opened in the UI. By continuously executing the failed login attempts, UI management of the device becomes impossible.
47 CVE-2017-14615 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
An FBX-5313 issue was discovered in WatchGuard Fireware before 12.0. When a failed login attempt is made to the login endpoint of the XML-RPC interface, if JavaScript code, properly encoded to be consumed by XML parsers, is embedded as value of the user element, the code will be rendered in the context of any logged in user in the Web UI visiting "Traffic Monitor" sections "Events" and "All." As a side effect, no further events will be visible in the Traffic Monitor until the device is restarted.
48 CVE-2017-14610 Exec Code 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
bareos-dir, bareos-fd, and bareos-sd in bareos-core in Bareos 16.2.6 and earlier create a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat /pathname`" command.
49 CVE-2017-14609 Exec Code 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
The server daemons in Kannel 1.5.0 and earlier create a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat /pathname`" command, as demonstrated by bearerbox.
50 CVE-2017-14608 2017-09-20 2017-09-20
0.0
None ??? ??? ??? ??? ??? ???
In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash.
Total number of vulnerabilities : 318   Page : 1 (This Page)2 3 4 5 6 7
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.