# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
27251 |
CVE-2017-9340 |
|
|
|
2017-07-17 |
2019-10-02 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
An attacker is logged in as a normal user and can somehow make admin to delete shared folders in ownCloud Server before 10.0.2. |
27252 |
CVE-2017-9339 |
200 |
|
+Info |
2017-07-17 |
2017-08-08 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
A logical error in ownCloud Server before 10.0.2 caused disclosure of valid share tokens for public calendars. Thus granting an attacker potentially access to publicly shared calendars without knowing the share token. |
27253 |
CVE-2017-9337 |
79 |
|
XSS |
2017-06-01 |
2017-06-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The Markdown on Save Improved plugin 2.5 for WordPress has a stored XSS vulnerability in the content of a post. |
27254 |
CVE-2017-9336 |
79 |
|
XSS |
2017-06-01 |
2017-06-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post. |
27255 |
CVE-2017-9334 |
20 |
|
DoS Bypass |
2017-06-01 |
2017-06-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
An incorrect "pair?" check in the Scheme "length" procedure results in an unsafe pointer dereference in all CHICKEN Scheme versions prior to 4.13, which allows an attacker to cause a denial of service by passing an improper list to an application that calls "length" on it. |
27256 |
CVE-2017-9333 |
20 |
|
Exec Code |
2017-09-17 |
2019-10-02 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
OpenWebif 1.2.5 allows remote code execution via a URL to the CallOPKG function in the IpkgController class in plugin/controllers/ipkg.py, when the URL refers to an attacker-controlled web site with a Trojan horse package. This has security implications in cases where untrusted users can trigger CallOPKG calls, and these users can enter an arbitrary URL in an input field, even though that input field was only intended for a package name. This threat model may be relevant in the latest versions of third-party products that bundle OpenWebif, i.e., set-top box products. The issue of Trojan horse packages does NOT have security implications in cases where the attacker has full OpenWebif access. |
27257 |
CVE-2017-9332 |
79 |
|
XSS |
2017-06-06 |
2017-06-14 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The smarty_self function in modules/module_smarty.php in PivotX 2.3.11 mishandles the URI, allowing XSS via vectors involving quotes in the self Smarty tag. |
27258 |
CVE-2017-9328 |
78 |
|
Exec Code |
2017-09-15 |
2019-10-02 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
Shell metacharacter injection vulnerability in /usr/www/include/ajax/GetTest.php in TerraMaster TOS before 3.0.34 leads to remote code execution as root. |
27259 |
CVE-2017-9327 |
275 |
|
|
2019-07-03 |
2019-07-11 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
Secret data of processes managed by CM is not secured by file permissions. |
27260 |
CVE-2017-9325 |
285 |
|
|
2019-07-03 |
2019-07-11 |
6.4 |
None |
Remote |
Low |
Not required |
None |
Partial |
Partial |
The provided secure solrconfig.xml sample configuration does not enforce Sentry authorization on /update/json/docs. |
27261 |
CVE-2017-9324 |
269 |
|
+Priv |
2017-06-12 |
2019-10-02 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5.0.19, an attacker with agent permission is capable of opening a specific URL in a browser to gain administrative privileges / full access. Afterward, all system settings can be read and changed. The URLs in question contain index.pl?Action=Installer with ;Subaction=Intro or ;Subaction=Start or ;Subaction=System appended at the end. |
27262 |
CVE-2017-9317 |
|
|
+Priv +Info |
2018-05-23 |
2019-10-02 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
Privilege escalation vulnerability found in some Dahua IP devices. Attacker in possession of low privilege account can gain access to credential information of high privilege account and further obtain device information or attack the device. |
27263 |
CVE-2017-9316 |
287 |
|
Exec Code Bypass |
2017-11-27 |
2017-12-20 |
5.8 |
None |
Remote |
Medium |
Not required |
None |
Partial |
Partial |
Firmware upgrade authentication bypass vulnerability was found in Dahua IPC-HDW4300S and some IP products. The vulnerability was caused by internal Debug function. This particular function was used for problem analysis and performance tuning during product development phase. It allowed the device to receive only specific data (one direction, no transmit) and therefore it was not involved in any instance of collecting user privacy data or allowing remote code execution. |
27264 |
CVE-2017-9315 |
|
|
|
2017-11-28 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Customer of Dahua IP camera or IP PTZ could submit relevant device information to receive a time limited temporary password from Dahua authorized dealer to reset the admin password. The algorithm used in this mechanism is potentially at risk of being compromised and subsequently utilized by attacker. |
27265 |
CVE-2017-9314 |
287 |
|
|
2017-11-13 |
2017-11-29 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
Authentication vulnerability found in Dahua NVR models NVR50XX, NVR52XX, NVR54XX, NVR58XX with software before DH_NVR5xxx_Eng_P_V2.616.0000.0.R.20171102. Attacker could exploit this vulnerability to gain access to additional operations by means of forging json message. |
27266 |
CVE-2017-9313 |
79 |
|
XSS |
2017-07-03 |
2017-07-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Multiple Cross-site scripting (XSS) vulnerabilities in Webmin before 1.850 allow remote attackers to inject arbitrary web script or HTML via the sec parameter to view_man.cgi, the referers parameter to change_referers.cgi, or the name parameter to save_user.cgi. NOTE: these issues were not fixed in 1.840. |
27267 |
CVE-2017-9312 |
20 |
|
DoS |
2018-06-25 |
2018-08-23 |
7.8 |
None |
Remote |
Low |
Not required |
None |
None |
Complete |
Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. When a crafted TCP packet is received, the device reboots immediately. |
27268 |
CVE-2017-9307 |
918 |
|
|
2017-05-31 |
2017-06-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
SSRF vulnerability in remotedownload.php in Allen Disk 1.6 allows remote authenticated users to conduct port scans and access intranet servers via a crafted file parameter. |
27269 |
CVE-2017-9306 |
79 |
|
XSS Bypass |
2017-05-31 |
2017-06-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
inc/SP/Html/Html.class.php in sysPass 2.1.9 allows remote attackers to bypass the XSS filter, as demonstrated by use of an "<svg/onload=" substring instead of an "<svg onload=" substring. |
27270 |
CVE-2017-9305 |
79 |
|
XSS Bypass |
2017-05-31 |
2017-06-08 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
lib/core/TikiFilter/PreventXss.php in Tiki Wiki CMS Groupware 16.2 allows remote attackers to bypass the XSS filter via padded zero characters, as demonstrated by an attack on tiki-batch_send_newsletter.php. |
27271 |
CVE-2017-9304 |
674 |
|
DoS |
2017-05-31 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule that is mishandled in the _yr_re_emit function. |
27272 |
CVE-2017-9303 |
20 |
|
|
2017-05-29 |
2017-06-08 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
Laravel 5.4.x before 5.4.22 does not properly constrain the host portion of a password-reset URL, which makes it easier for remote attackers to conduct phishing attacks by specifying an attacker-controlled host. |
27273 |
CVE-2017-9302 |
369 |
|
DoS |
2017-05-29 |
2017-06-08 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp4 file. |
27274 |
CVE-2017-9301 |
125 |
|
DoS |
2017-05-29 |
2017-06-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
plugins\audio_filter\libmpgatofixed32_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (invalid read and application crash) or possibly have unspecified other impact via a crafted file. |
27275 |
CVE-2017-9300 |
119 |
|
DoS Overflow |
2017-05-29 |
2017-11-22 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
plugins\codec\libflac_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (heap corruption and application crash) or possibly have unspecified other impact via a crafted FLAC file. |
27276 |
CVE-2017-9299 |
79 |
|
XSS |
2017-05-29 |
2017-11-23 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Open Ticket Request System (OTRS) 3.3.9 has XSS in index.pl?Action=AgentStats requests, as demonstrated by OrderBy=[XSS] and Direction=[XSS] attacks. NOTE: this CVE may have limited relevance because it represents a 2017 discovery of an issue in software from 2014. The 3.3.20 release, for example, is not affected. |
27277 |
CVE-2017-9297 |
601 |
|
|
2017-05-29 |
2017-06-08 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to redirect users to arbitrary web sites. |
27278 |
CVE-2017-9296 |
601 |
|
|
2017-05-29 |
2017-06-08 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
Open Redirect vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Tuning Manager before 8.5.2-00 allows remote attackers to redirect authenticated users to arbitrary web sites. |
27279 |
CVE-2017-9295 |
611 |
|
|
2017-05-29 |
2017-06-08 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manager before 8.5.2-00 allows authenticated remote users to read arbitrary files. |
27280 |
CVE-2017-9294 |
|
|
Exec Code |
2017-05-29 |
2019-10-02 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
RMI vulnerability in Hitachi Device Manager before 8.5.2-01 allows remote attackers to execute internal commands without authentication via RMI ports. |
27281 |
CVE-2017-9292 |
79 |
|
XSS |
2017-05-29 |
2017-10-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Lansweeper before 6.0.0.65 has XSS in an image retrieval URI, aka Bug 542782. |
27282 |
CVE-2017-9289 |
79 |
|
XSS |
2017-05-29 |
2017-06-08 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Bram Korsten Note through 1.2.0 is vulnerable to a reflected XSS in note-source\ui\editor.php (edit parameter). |
27283 |
CVE-2017-9288 |
79 |
|
XSS |
2017-05-29 |
2017-07-17 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The Raygun4WP plugin 1.8.0 for WordPress is vulnerable to a reflected XSS in sendtesterror.php (backurl parameter). |
27284 |
CVE-2017-9287 |
415 |
|
|
2017-05-29 |
2018-01-04 |
4.0 |
None |
Remote |
Low |
Single system |
None |
None |
Partial |
servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0. |
27285 |
CVE-2017-9286 |
|
|
|
2018-03-01 |
2019-10-09 |
9.0 |
None |
Remote |
Low |
Single system |
Complete |
Complete |
Complete |
The packaging of NextCloud in openSUSE used /srv/www/htdocs in an unsafe manner, which could have allowed scripts running as wwwrun user to escalate privileges to root during nextcloud package upgrade. |
27286 |
CVE-2017-9285 |
287 |
|
|
2018-03-02 |
2019-10-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. |
27287 |
CVE-2017-9284 |
200 |
|
+Info |
2018-04-26 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information. |
27288 |
CVE-2017-9283 |
125 |
|
|
2017-09-21 |
2019-10-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed. |
27289 |
CVE-2017-9282 |
190 |
|
Overflow |
2017-09-21 |
2019-10-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed. |
27290 |
CVE-2017-9281 |
190 |
|
DoS Overflow |
2017-09-21 |
2017-09-28 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
An integer overflow (CWE-190) potentially causing an out-of-bounds read (CWE-125) vulnerability in Micro Focus VisiBroker 8.5 can lead to a denial of service. |
27291 |
CVE-2017-9280 |
200 |
|
+Info |
2018-03-02 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Some NetIQ Identity Manager Applications before Identity Manager 4.5.6.1 included the session token in GET URLs, potentially allowing exposure of user sessions to untrusted third parties via proxies, referer urls or similar. |
27292 |
CVE-2017-9279 |
20 |
|
Exec Code |
2018-03-02 |
2019-10-09 |
9.0 |
None |
Remote |
Low |
Single system |
Complete |
Complete |
Complete |
NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users. |
27293 |
CVE-2017-9278 |
532 |
|
|
2018-03-02 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
The NetIQ Identity Manager Oracle EBS driver before 4.0.2.0 sent EBS logs containing the driver authentication password, potentially disclosing this to attackers able to read the EBS tables. |
27294 |
CVE-2017-9277 |
|
|
|
2018-03-02 |
2019-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA (Enhanced Background Authentication) kept open connections without EBA. |
27295 |
CVE-2017-9276 |
79 |
|
XSS |
2018-03-02 |
2019-10-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Novell Access Manager iManager before 4.3.3 did not validate parameters so that cross site scripting content could be reflected back into the result page using the "a" parameter. |
27296 |
CVE-2017-9275 |
79 |
|
XSS |
2018-04-26 |
2019-10-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack. |
27297 |
CVE-2017-9274 |
78 |
|
Exec Code |
2018-03-01 |
2019-10-09 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
A shell command injection in the obs-service-source_validator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs. |
27298 |
CVE-2017-9273 |
|
|
|
2017-10-06 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
The Bi-directional driver in IDM 4.5 before 4.0.3.0 could be susceptible to unauthorized log configuration changes. |
27299 |
CVE-2017-9272 |
20 |
|
DoS |
2017-10-06 |
2017-10-20 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The Bi-directional driver in IDM 4.5 before 4.0.3.0 could be susceptible to a denial of service attack. |
27300 |
CVE-2017-9270 |
20 |
|
|
2018-03-01 |
2019-10-09 |
8.5 |
None |
Remote |
Medium |
Single system |
Complete |
Complete |
Complete |
In cryptctl before version 2.0 a malicious server could send RPC requests that could overwrite files outside of the cryptctl key database. |