|
249551
|
7.8 |
HIGH
Local
|
google
|
android
|
A crafted binder request can cause an arbitrary unmap in MediaServer in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-18154
|
2024-11-21 12:19 |
2018-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249552
|
5.4 |
MEDIUM
Network
|
nzedb
|
nzedb
|
nZEDb v0.7.3.3 has XSS in the 404 error page.
|
CWE-79
Cross-site Scripting
|
CVE-2017-18286
|
2024-11-21 12:19 |
2018-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249553
|
7.1 |
HIGH
Local
|
burp_project
|
burp
|
The Gentoo app-backup/burp package before 2.1.32 has incorrect group ownership of the /etc/burp directory, which might allow local users to obtain read and write access to arbitrary files by leveragi…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-18285
|
2024-11-21 12:19 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249554
|
7.1 |
HIGH
Local
|
burp_project
|
burp
|
The Gentoo app-backup/burp package before 2.1.32 sets the ownership of the PID file directory to the burp account, which might allow local users to kill arbitrary processes by leveraging access to th…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-18284
|
2024-11-21 12:19 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249555
|
6.5 |
MEDIUM
Network
|
imagemagick
debian
canonical
|
imagemagick
debian_linux
ubuntu_linux
|
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service (CPU exhausti…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-18273
|
2024-11-21 12:19 |
2018-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249556
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-25, there is a use-after-free in ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted MNG image file that is m…
|
CWE-416
Use After Free
|
CVE-2017-18272
|
2024-11-21 12:19 |
2018-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249557
|
6.5 |
MEDIUM
Network
|
imagemagick
canonical
debian
|
imagemagick
ubuntu_linux
debian_linux
|
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (CPU exhaus…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-18271
|
2024-11-21 12:19 |
2018-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249558
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel before 4.13.5, a local user could create keyrings for other users via keyctl commands, setting unwanted defaults or causing a denial of service.
|
NVD-CWE-noinfo
|
CVE-2017-18270
|
2024-11-21 12:19 |
2018-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249559
|
9.8 |
CRITICAL
Network
|
gnu
|
glibc
|
An SSE2-optimized memmove implementation for i386 in sysdeps/i386/i686/multiarch/memcpy-sse2-unaligned.S in the GNU C Library (aka glibc or libc6) 2.21 through 2.27 does not correctly perform the ove…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-18269
|
2024-11-21 12:19 |
2018-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249560
|
5.9 |
MEDIUM
Network
|
broadcom
|
symantec_intelligencecenter
|
Symantec IntelligenceCenter 3.3 is vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. A remote attacker, who has captured a pre-recorded SSL session inspected by SSLV, can e…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2017-18268
|
2024-11-21 12:19 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
