|
252871
|
5.4 |
MEDIUM
Network
|
paypal
|
php_permissions_sdk
|
paypal/permissions-sdk-php is vulnerable to reflected XSS in the samples/GetAccessToken.php verification_code parameter, resulting in code execution.
|
CWE-79
Cross-site Scripting
|
CVE-2017-6215
|
2024-11-21 12:29 |
2018-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252872
|
5.4 |
MEDIUM
Network
|
paypal
|
php_invoice_sdk
|
paypal/invoice-sdk-php is vulnerable to reflected XSS in samples/permissions.php via the permToken parameter, resulting in code execution.
|
CWE-79
Cross-site Scripting
|
CVE-2017-6213
|
2024-11-21 12:29 |
2018-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252873
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android before the 2018-06-05 security patch level, NVIDIA Tegra X1 TZ contains a possible out of bounds write due to missing bounds check which could lead to escalation of privilege from the kern…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-6294
|
2024-11-21 12:29 |
2018-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252874
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android before the 2018-06-05 security patch level, NVIDIA TLZ TrustZone contains a possible out of bounds write due to integer overflow which could lead to local escalation of privilege in the Tr…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-6292
|
2024-11-21 12:29 |
2018-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252875
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android before the 2018-06-05 security patch level, NVIDIA TLK TrustZone contains a possible out of bounds write due to an integer overflow which could lead to local escalation of privilege with n…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6290
|
2024-11-21 12:29 |
2018-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252876
|
5.3 |
MEDIUM
Network
|
f5
|
big-ip_application_acceleration_manager
big-ip_local_traffic_manager
big-ip_advanced_firewall_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_application_security_manager<…
|
Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM m…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-6153
|
2024-11-21 12:29 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252877
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android before the 2018-05-05 security patch level, NVIDIA Tegra X1 TZ contains a vulnerability in Widevine TA where the software writes data past the end, or before the beginning, of the intended…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-6293
|
2024-11-21 12:29 |
2018-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252878
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android before the 2018-05-05 security patch level, NVIDIA Trusted Execution Environment (TEE) contains a memory corruption (due to unusual root cause) vulnerability, which if run within the specu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6289
|
2024-11-21 12:29 |
2018-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252879
|
8.0 |
HIGH
Adjacent
|
symantec
|
management_console
|
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0_POST_HF6, and ITMS 7.6_POST_HF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly co…
|
CWE-611
XXE
|
CVE-2017-6323
|
2024-11-21 12:29 |
2018-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252880
|
5.4 |
MEDIUM
Network
|
f5
|
big-ip_advanced_firewall_manager
big-ip_application_security_manager
|
X509 certificate verification was not correctly implemented in the IP Intelligence Subscription and IP Intelligence feed-list features, and thus the remote server's identity is not properly validated…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-6143
|
2024-11-21 12:29 |
2018-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
