|
250311
|
9.8 |
CRITICAL
Network
|
claymore_dual_miner_project
|
claymore_dual_miner
|
The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. Th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-16930
|
2024-11-21 12:17 |
2017-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250312
|
8.1 |
HIGH
Network
|
claymore_dual_miner_project
|
claymore_dual_miner
|
The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a re…
|
CWE-119
CWE-22
Incorrect Access of Indexable Resource ('Range Error')
Path Traversal
|
CVE-2017-16929
|
2024-11-21 12:17 |
2017-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250313
|
6.1 |
MEDIUM
Network
|
zkteco
|
zktime_web
|
There is a reflected XSS vulnerability in ZKTime Web 2.0.1.12280. The vulnerability exists due to insufficient filtration of user-supplied data in the 'Range' field of the 'Department' module in a Pe…
|
CWE-79
Cross-site Scripting
|
CVE-2017-17057
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250314
|
8.8 |
HIGH
Network
|
libav
|
libav
|
The ff_free_picture_tables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17130
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250315
|
8.8 |
HIGH
Network
|
libav
|
libav
|
The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified ot…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17129
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250316
|
6.5 |
MEDIUM
Network
|
libav
|
libav
|
The h264_slice_init function in libavcodec/h264_slice.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17128
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250317
|
6.5 |
MEDIUM
Network
|
libav
|
libav
|
The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17127
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250318
|
8.8 |
HIGH
Network
|
zkteco
|
zktime_web
|
The ZKTime Web Software 2.0.1.12280 allows the Administrator to elevate the privileges of the application user using a 'password_change()' function of the Modify Password component, reachable via the…
|
CWE-352
Origin Validation Error
|
CVE-2017-17056
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250319
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
The load_debug_section function in readelf.c in GNU Binutils 2.29.1 allows remote attackers to cause a denial of service (invalid memory access and application crash) or possibly have unspecified oth…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-17126
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250320
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
nm.c and objdump.c in GNU Binutils 2.29.1 mishandle certain global symbols, which allows remote attackers to cause a denial of service (_bfd_elf_get_symbol_version_string buffer over-read and applica…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-17125
|
2024-11-21 12:17 |
2017-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
