|
252701
|
7.8 |
HIGH
Local
|
cisco
|
policy_suite
|
A vulnerability in a script file that is installed as part of the Cisco Policy Suite (CPS) Software distribution for the CPS appliance could allow an authenticated, local attacker to escalate their p…
|
CWE-269
Improper Privilege Management
|
CVE-2017-6623
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252702
|
9.8 |
CRITICAL
Network
|
cisco
|
prime_collaboration_provisioning
|
A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to bypass authentication and perform command injection with root privil…
|
CWE-862
Missing Authorization
|
CVE-2017-6622
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252703
|
7.5 |
HIGH
Network
|
cisco
|
prime_collaboration_provisioning
|
A vulnerability in the web interface of Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to con…
|
CWE-200
Information Exposure
|
CVE-2017-6621
|
2024-11-21 12:30 |
2017-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252704
|
7.5 |
HIGH
Network
|
cisco
|
sourcefire_snort
|
Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-6658
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252705
|
7.5 |
HIGH
Network
|
cisco
|
snort\+\+
|
Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. Th…
|
NVD-CWE-noinfo
|
CVE-2017-6657
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252706
|
7.5 |
HIGH
Network
|
cisco
|
webex_meetings_server
|
A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings. The vulnerability is due …
|
CWE-200
Information Exposure
|
CVE-2017-6651
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252707
|
7.8 |
HIGH
Local
|
libraw
|
libraw
|
A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6887
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252708
|
9.8 |
CRITICAL
Network
|
libraw
|
libraw
|
An error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to corrupt memory.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6886
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252709
|
9.8 |
CRITICAL
Network
|
flexerasoftware
|
flexnet_manager_suite
|
An error when handling certain external commands and services related to the FlexNet Inventory Agent and FlexNet Beacon of the Flexera Software FlexNet Manager Suite 2017 before 2017 R1 and 2014 R3 t…
|
NVD-CWE-noinfo
|
CVE-2017-6885
|
2024-11-21 12:30 |
2017-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252710
|
9.8 |
CRITICAL
Network
|
libraw
|
libraw-demosaic-pack-gpl2
|
A boundary error within the "foveon_load_camf()" function (dcraw_foveon.c) when initializing a huffman table in LibRaw-demosaic-pack-GPL2 before 0.18.2 can be exploited to cause a stack-based buffer …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6890
|
2024-11-21 12:30 |
2017-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
