|
257471
|
6.1 |
MEDIUM
Network
|
zkteco
|
zktime_web
|
There is a reflected XSS vulnerability in ZKTime Web 2.0.1.12280. The vulnerability exists due to insufficient filtration of user-supplied data in the 'Range' field of the 'Department' module in a Pe…
|
CWE-79
Cross-site Scripting
|
CVE-2017-17057
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257472
|
8.8 |
HIGH
Network
|
libav
|
libav
|
The ff_free_picture_tables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17130
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257473
|
8.8 |
HIGH
Network
|
libav
|
libav
|
The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified ot…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17129
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257474
|
6.5 |
MEDIUM
Network
|
libav
|
libav
|
The h264_slice_init function in libavcodec/h264_slice.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17128
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257475
|
6.5 |
MEDIUM
Network
|
libav
|
libav
|
The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17127
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257476
|
8.8 |
HIGH
Network
|
zkteco
|
zktime_web
|
The ZKTime Web Software 2.0.1.12280 allows the Administrator to elevate the privileges of the application user using a 'password_change()' function of the Modify Password component, reachable via the…
|
CWE-352
Origin Validation Error
|
CVE-2017-17056
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257477
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
The load_debug_section function in readelf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly have unspecified oth…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17126
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257478
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote attackers to cause a denial of service (_bfd_elf_get_symbol_version_string buffer over-read and applica…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-17125
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257479
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
The _bfd_coff_read_string_table function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, does not properly validate the size of the exter…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17124
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257480
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
The coff_slurp_reloc_table function in coffcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, allows remote attackers to cause a denial of service…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17123
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
