|
255121
|
4.8 |
MEDIUM
Network
|
wso2
|
storage_server
message_broker
machine_learner
iot_server
identity_server
governance_registry
enterprise_mobility_manager
enterprise_integrator
data_services_server
dashboar…
|
WSO2 Data Analytics Server 3.1.0 has XSS in carbon/resources/add_collection_ajaxprocessor.jsp via the collectionName or parentPath parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14651
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255122
|
5.5 |
MEDIUM
Local
|
graphicsmagick
|
graphicsmagick
|
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).
|
CWE-617
Reachable Assertion
|
CVE-2017-14649
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255123
|
9.8 |
CRITICAL
Network
|
bladeenc
|
bladeenc
|
A global buffer overflow was discovered in the iteration_loop function in loop.c in BladeEnc version 0.94.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service o…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14648
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255124
|
8.1 |
HIGH
Network
|
horde
|
horde_image_api
|
A Remote Code Execution vulnerability has been found in the Horde_Image library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde appli…
|
CWE-20
Improper Input Validation
|
CVE-2017-14650
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255125
|
8.8 |
HIGH
Network
|
bento4
|
bento4
|
A heap-based buffer overflow was discovered in AP4_VisualSampleEntry::ReadFields in Core/Ap4SampleEntry.cpp in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14647
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255126
|
7.5 |
HIGH
Network
|
axiosys
|
bento4
|
The AP4_AvccAtom and AP4_HvccAtom classes in Bento4 version 1.5.0-617 do not properly validate data sizes, leading to a heap-based buffer over-read and application crash in AP4_DataBuffer::SetData in…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14646
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255127
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
A heap-based buffer over-read was discovered in AP4_BitStream::ReadBytes in Codecs/Ap4BitStream.cpp in Bento4 version 1.5.0-617. The vulnerability causes an application crash, which leads to remote d…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14645
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255128
|
8.8 |
HIGH
Network
|
bento4
|
bento4
|
A heap-based buffer overflow was discovered in the AP4_HdlrAtom class in Bento4 1.5.0-617. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code ex…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14644
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255129
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
The AP4_HdlrAtom class in Core/Ap4HdlrAtom.cpp in Bento4 version 1.5.0-617 uses an incorrect character data type, leading to a heap-based buffer over-read and application crash in AP4_BytesToUInt32BE…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14643
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255130
|
6.5 |
MEDIUM
Network
|
bento4
|
bento4
|
A NULL pointer dereference was discovered in the AP4_HdlrAtom class in Bento4 version 1.5.0-617. The vulnerability causes a segmentation fault and application crash in AP4_StdcFileByteStream::ReadPar…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14642
|
2024-11-21 12:13 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
