|
255141
|
7.8 |
HIGH
Local
|
apple
|
watchos
mac_os_x
iphone_os
tvos
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2379
|
2024-11-21 12:23 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255142
|
8.8 |
HIGH
Network
|
apple
|
safari
iphone_os
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves bookmark creation in the "WebKit" component. It allows remote attack…
|
CWE-20
Improper Input Validation
|
CVE-2017-2378
|
2024-11-21 12:23 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255143
|
7.5 |
HIGH
Network
|
apple
|
safari
iphone_os
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit Web Inspector" component. It allows attackers to cause a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2377
|
2024-11-21 12:23 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255144
|
7.5 |
HIGH
Network
|
apple
|
safari
iphone_os
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the addr…
|
NVD-CWE-noinfo
|
CVE-2017-2376
|
2024-11-21 12:23 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255145
|
6.5 |
MEDIUM
Network
|
apple
|
safari
iphone_os
tvos
|
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remo…
|
NVD-CWE-noinfo
|
CVE-2017-2367
|
2024-11-21 12:23 |
2017-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255146
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The KEYS subsystem in the Linux kernel before 3.18 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via vectors involving a NULL value fo…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-2647
|
2024-11-21 12:23 |
2017-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255147
|
8.8 |
HIGH
Network
|
siemens
|
ruggedcom_rox_i
|
Siemens RUGGEDCOM ROX I (all versions) allow an authenticated user to bypass access restrictions in the web interface at port 10000/TCP to obtain privileged file system access or change configuration…
|
CWE-287
Improper Authentication
|
CVE-2017-2689
|
2024-11-21 12:23 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255148
|
8.8 |
HIGH
Network
|
siemens
|
ruggedcom_rox_i
|
The integrated web server in Siemens RUGGEDCOM ROX I (all versions) at port 10000/TCP could allow remote attackers to perform actions with the privileges of an authenticated user, provided the target…
|
CWE-352
Origin Validation Error
|
CVE-2017-2688
|
2024-11-21 12:23 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255149
|
6.1 |
MEDIUM
Network
|
siemens
|
ruggedcom_rox_i
|
Siemens RUGGEDCOM ROX I (all versions) contain a vulnerability in the integrated web server at port 10000/TCP which is prone to reflected Cross-Site Scripting attacks if an unsuspecting user is induc…
|
CWE-79
Cross-site Scripting
|
CVE-2017-2687
|
2024-11-21 12:23 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255150
|
6.5 |
MEDIUM
Network
|
siemens
|
ruggedcom_rox_i
|
Siemens RUGGEDCOM ROX I (all versions) contain a vulnerability that could allow an authenticated user to read arbitrary files through the web interface at port 10000/TCP and access sensitive informat…
|
CWE-200
Information Exposure
|
CVE-2017-2686
|
2024-11-21 12:23 |
2017-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
