|
247241
|
7.4 |
HIGH
Network
|
savitech-ic
|
savitech_driver
|
Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."
|
CWE-295
Improper Certificate Validation
|
CVE-2017-9758
|
2024-11-21 12:36 |
2017-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247242
|
7.8 |
HIGH
Local
|
amazon
|
amazon_web_services_cloudformation_bootstrap
|
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap) before 1.4-19.10 allows local users to execute arbitrary code with root privileges by leveraging the abili…
|
CWE-269
Improper Privilege Management
|
CVE-2017-9450
|
2024-11-21 12:36 |
2017-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247243
|
8.2 |
HIGH
Network
|
envitech
|
envidas_ultimate
|
An Improper Authentication issue was discovered in Envitech EnviDAS Ultimate Versions prior to v1.0.0.5. The web application lacks proper authentication which could allow an attacker to view informat…
|
CWE-287
Improper Authentication
|
CVE-2017-9625
|
2024-11-21 12:36 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247244
|
8.8 |
HIGH
Network
|
atlassian
|
bamboo
|
Bamboo before 6.0.5, 6.1.x before 6.1.4, and 6.2.x before 6.2.1 had a REST endpoint that parsed a YAML file and did not sufficiently restrict which classes could be loaded. An attacker who can log in…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-9514
|
2024-11-21 12:36 |
2017-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247245
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing Netlink attributes, a buffer overread can occur.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9717
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247246
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a vendor command, a buffer over-read can occur.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9715
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247247
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an out of bound memory access may happen in limCheckRxRSNIeMatch in case incorrect RSNI…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9714
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247248
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an array out-of-bounds access can potentially occur in a display driver.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9706
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247249
|
7.0 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a race condition can allow access to already freed memory while reading command registr…
|
CWE-362
Race Condition
|
CVE-2017-9697
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247250
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, two concurrent threads/processes can write the value of "0" to the debugfs file that co…
|
CWE-415
Double Free
|
CVE-2017-9687
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
