|
258141
|
7.5 |
HIGH
Network
|
node-tkinter_project
|
node-tkinter
|
node-tkinter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
|
CWE-200
Information Exposure
|
CVE-2017-16062
|
2024-11-21 12:15 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258142
|
7.5 |
HIGH
Network
|
tkinter_package
|
tkinter
|
tkinter was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
|
CWE-200
Information Exposure
|
CVE-2017-16061
|
2024-11-21 12:15 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258143
|
7.5 |
HIGH
Network
|
mysqljs_project
|
mysqljs
|
mysqljs was a malicious module published with the intent to hijack environment variables. It has been unpublished by npm.
|
CWE-200
Information Exposure
|
CVE-2017-16047
|
2024-11-21 12:15 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258144
|
6.1 |
MEDIUM
Network
|
i18next
|
i18next
|
i18next is a language translation framework. When using the .init method, passing interpolation options without passing an escapeValue will default to undefined rather than the assumed true. This can…
|
CWE-79
Cross-site Scripting
|
CVE-2017-16010
|
2024-11-21 12:15 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258145
|
8.1 |
HIGH
Network
|
windows-build-tools_project
|
windows-build-tools
|
windows-build-tools is a module for installing C++ Build Tools for Windows using npm. windows-build-tools versions below 1.0.0 download resources over HTTP, which leaves it vulnerable to MITM attacks…
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2017-16003
|
2024-11-21 12:15 |
2018-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258146
|
7.8 |
HIGH
Local
|
google
|
android
|
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, the camera application triggers "use…
|
CWE-119
CWE-129
Incorrect Access of Indexable Resource ('Range Error')
Improper Validation of Array Index
|
CVE-2017-15855
|
2024-11-21 12:15 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258147
|
6.5 |
MEDIUM
Network
|
apache
|
uimaj
uima-as
uimafit
uimaducc
|
In Apache uimaj prior to 2.10.2, Apache uimaj 3.0.0-xxx prior to 3.0.0-beta, Apache uima-as prior to 2.10.2, Apache uimaFIT prior to 2.4.0, Apache uimaDUCC prior to 2.2.2, this vulnerability relates …
|
CWE-611
XXE
|
CVE-2017-15691
|
2024-11-21 12:15 |
2018-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258148
|
5.3 |
MEDIUM
Network
|
google
|
android
|
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, while processing PTT commands, ptt_s…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-15853
|
2024-11-21 12:15 |
2018-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258149
|
5.3 |
MEDIUM
Network
|
google
|
android
|
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, a policy for the packet pattern attr…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-15837
|
2024-11-21 12:15 |
2018-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258150
|
7.3 |
HIGH
Network
|
google
|
android
|
In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel before security patch level 2018-04-05, if the firmware sends a service read…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-15836
|
2024-11-21 12:15 |
2018-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
