|
254951
|
8.1 |
HIGH
Network
|
meetcircle
|
circle_with_disney_firmware
|
An exploitable vulnerability exists in the servers update functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause the device to overwrite sensitive fil…
|
NVD-CWE-noinfo
|
CVE-2017-2882
|
2024-11-21 12:24 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254952
|
8.8 |
HIGH
Adjacent
|
meetcircle
|
circle_with_disney_firmware
|
An exploitable vulnerability exists in the torlist update functionality of Circle with Disney running firmware 2.0.1. Specially crafted network packets can cause the product to run an attacker-suppli…
|
NVD-CWE-noinfo
|
CVE-2017-2881
|
2024-11-21 12:24 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254953
|
8.8 |
HIGH
Network
|
meetcircle
|
circle_with_disney_firmware
|
An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney. Specially crafted network packets can cause an OS command injection. An attacker can send an HTTP re…
|
CWE-78
OS Command
|
CVE-2017-2866
|
2024-11-21 12:24 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254954
|
7.5 |
HIGH
Adjacent
|
meetcircle
|
circle_with_disney_firmware
|
An exploitable vulnerability exists in the firmware update functionality of Circle with Disney. Specially crafted network packets can cause the product to run an attacker-supplied shell script. An at…
|
NVD-CWE-noinfo
|
CVE-2017-2865
|
2024-11-21 12:24 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254955
|
9.8 |
CRITICAL
Network
|
meetcircle
|
circle_with_disney_firmware
|
An exploitable vulnerability exists in the generation of authentication token functionality of Circle with Disney. Specially crafted network packets can cause a valid authentication token to be retur…
|
CWE-287
Improper Authentication
|
CVE-2017-2864
|
2024-11-21 12:24 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254956
|
8.8 |
HIGH
Network
|
libsdl
canonical
debian
|
simple_directmedia_layer
ubuntu_linux
debian_linux
|
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocate…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-2888
|
2024-11-21 12:24 |
2017-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254957
|
8.8 |
HIGH
Network
|
libsdl
debian
|
sdl_image
debian_linux
|
An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in po…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-2887
|
2024-11-21 12:24 |
2017-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254958
|
7.8 |
HIGH
Local
|
pl32
|
photoline
|
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, w…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2920
|
2024-11-21 12:24 |
2017-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254959
|
7.8 |
HIGH
Local
|
pl32
|
photoline
|
An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2880
|
2024-11-21 12:24 |
2017-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254960
|
7.8 |
HIGH
Local
|
ansible-vault_project
|
ansible-vault
|
An exploitable vulnerability exists in the yaml loading functionality of ansible-vault before 1.0.5. A specially crafted vault can execute arbitrary python commands resulting in command execution. An…
|
CWE-94
Code Injection
|
CVE-2017-2809
|
2024-11-21 12:24 |
2017-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
