|
259171
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11081
|
2024-11-21 12:07 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259172
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a user supplied sparse image, a buffer overflow vulnerability could oc…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11080
|
2024-11-21 12:07 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259173
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing sparse image, uninitialized heap memory can potentially be flashed due…
|
CWE-200
Information Exposure
|
CVE-2017-11079
|
2024-11-21 12:07 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259174
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while flashing ubi image an uninitialized memory could be accessed.
|
CWE-200
Information Exposure
|
CVE-2017-11066
|
2024-11-21 12:07 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259175
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, manipulation of SafeSwitch Image data can result in Heap overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11069
|
2024-11-21 12:07 |
2018-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259176
|
7.8 |
HIGH
Local
|
trendmicro
|
encryption_for_email
|
A service DLL preloading vulnerability in Trend Micro Encryption for Email versions 5.6 and below could allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system.
|
CWE-426
Untrusted Search Path
|
CVE-2017-11397
|
2024-11-21 12:07 |
2017-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259177
|
6.5 |
MEDIUM
Network
|
adobe
redhat
|
flash_player
flash_player_desktop_runtime
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data.
|
NVD-CWE-noinfo
|
CVE-2017-11305
|
2024-11-21 12:07 |
2017-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259178
|
8.8 |
HIGH
Network
|
resolver
|
perspective
|
Perspective ICM Investigation & Case 5.1.1.16 allows remote authenticated users to modify access level permissions and consequently gain privileges by leveraging insufficient validation methods and m…
|
CWE-269
Improper Privilege Management
|
CVE-2017-11319
|
2024-11-21 12:07 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259179
|
6.1 |
MEDIUM
Network
|
check_mk_project
|
check_mk
|
A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.2.8x prior to 1.2.8p25 and 1.4.0x prior to 1.4.0p9, allowing an unauthenticated attacker to inject arbitrary HTML or JavaScrip…
|
CWE-79
Cross-site Scripting
|
CVE-2017-11507
|
2024-11-21 12:07 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259180
|
8.8 |
HIGH
Network
|
ivanti
|
endpoint_manager
|
In Ivanti Service Desk (formerly LANDESK Management Suite) versions between 2016.3 and 2017.3, an Unrestricted Direct Object Reference leads to referencing/updating objects belonging to other users. …
|
CWE-275
Permission Issues
|
CVE-2017-11463
|
2024-11-21 12:07 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
