|
248181
|
7.8 |
HIGH
Local
|
sony
|
nfc_port_firmware
pc\/sc_activator_for_type_b
sfcard_viewer_2
nfc_net_installer
|
Untrusted search path vulnerability in NFC Port Software Version 5.5.0.6 and earlier (for RC-S310, RC-S320, RC-S330, RC-S370, RC-S380, RC-S380/S), NFC Port Software Version 5.3.6.7 and earlier (for R…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2017-2286
|
2024-11-21 12:23 |
2017-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248182
|
9.1 |
CRITICAL
Network
|
sony
|
wg-c10_firmware
|
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2017-2277
|
2024-11-21 12:23 |
2017-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248183
|
7.2 |
HIGH
Network
|
sony
|
wg-c10_firmware
|
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2276
|
2024-11-21 12:23 |
2017-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248184
|
7.2 |
HIGH
Network
|
sony
|
wg-c10_firmware
|
WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2017-2275
|
2024-11-21 12:23 |
2017-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248185
|
6.1 |
MEDIUM
Network
|
buffalo
|
wmr-433_firmware
wmr-433w_firmware
|
Cross-site scripting vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2017-2274
|
2024-11-21 12:23 |
2017-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248186
|
8.8 |
HIGH
Network
|
buffalo
|
wmr-433_firmware
wmr-433w_firmware
|
Cross-site request forgery (CSRF) vulnerability in WMR-433 firmware Ver.1.02 and earlier, WMR-433W firmware Ver.1.40 and earlier allows remote attackers to hijack the authentication of administrators…
|
CWE-352
Origin Validation Error
|
CVE-2017-2273
|
2024-11-21 12:23 |
2017-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248187
|
6.5 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web site.
|
CWE-20
Improper Input Validation
|
CVE-2017-2517
|
2024-11-21 12:23 |
2017-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248188
|
6.5 |
MEDIUM
Network
|
moodle
|
moodle
|
Moodle 3.x has user fullname disclosure on the user preferences page.
|
CWE-200
Information Exposure
|
CVE-2017-2642
|
2024-11-21 12:23 |
2017-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248189
|
8.8 |
HIGH
Network
|
juniper
|
junos
|
A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate…
|
CWE-77
Command Injection
|
CVE-2017-2349
|
2024-11-21 12:23 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248190
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
The Juniper Enhanced jdhcpd daemon may experience high CPU utilization, or crash and restart upon receipt of an invalid IPv6 UDP packet. Both high CPU utilization and repeated crashes of the jdhcpd d…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-2348
|
2024-11-21 12:23 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
