|
257421
|
5.5 |
MEDIUM
Local
|
aubio
|
aubio
|
A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17554
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257422
|
5.3 |
MEDIUM
Network
|
changyou
|
dolphin
|
The Dolphin Browser for Android 12.0.2 suffers from an insecure parsing implementation of the Intent URI scheme. This vulnerability could allow attackers to abuse this implementation through a malici…
|
NVD-CWE-noinfo
|
CVE-2017-17553
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257423
|
8.8 |
HIGH
Network
|
changyou
|
dolphin
|
The Backup and Restore feature in Mobotap Dolphin Browser for Android 12.0.2 suffers from an arbitrary file write vulnerability when attempting to restore browser settings from a malicious Dolphin Br…
|
CWE-20
Improper Input Validation
|
CVE-2017-17551
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257424
|
8.8 |
HIGH
Network
|
phacility
|
phabricator
|
Phabricator before 2017-11-10 does not block the --config and --debugger flags to the Mercurial hg program, which allows remote attackers to execute arbitrary code by using the web UI to browse a bra…
|
NVD-CWE-noinfo
|
CVE-2017-17536
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257425
|
8.8 |
HIGH
Network
|
lilypond
|
lilypond
|
lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-inje…
|
CWE-74
Injection
|
CVE-2017-17523
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257426
|
8.8 |
HIGH
Network
|
sensible-utils_project
|
sensible-utils
|
sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argumen…
|
CWE-74
Injection
|
CVE-2017-17512
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257427
|
8.8 |
HIGH
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is an out of bounds write vulnerability in the function H5G__ent_decode_vec in H5Gcache.c in libhdf5.a. For example, h5dump would crash or possibly have unspecified other impact…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-17509
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257428
|
6.5 |
MEDIUM
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
|
CWE-369
Divide By Zero
|
CVE-2017-17508
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257429
|
6.5 |
MEDIUM
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5T_conv_struct_opt in H5Tconv.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-17507
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257430
|
6.5 |
MEDIUM
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Opline_pline_decode in H5Opline.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-17506
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
