|
250191
|
6.5 |
MEDIUM
Network
|
aubio
ffmpeg
|
aubio
ffmpeg
libswresample
|
The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of servi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17555
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250192
|
5.5 |
MEDIUM
Local
|
aubio
|
aubio
|
A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-17554
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250193
|
5.3 |
MEDIUM
Network
|
changyou
|
dolphin
|
The Dolphin Browser for Android 12.0.2 suffers from an insecure parsing implementation of the Intent URI scheme. This vulnerability could allow attackers to abuse this implementation through a malici…
|
NVD-CWE-noinfo
|
CVE-2017-17553
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250194
|
8.8 |
HIGH
Network
|
changyou
|
dolphin
|
The Backup and Restore feature in Mobotap Dolphin Browser for Android 12.0.2 suffers from an arbitrary file write vulnerability when attempting to restore browser settings from a malicious Dolphin Br…
|
CWE-20
Improper Input Validation
|
CVE-2017-17551
|
2024-11-21 12:18 |
2017-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250195
|
8.8 |
HIGH
Network
|
phacility
|
phabricator
|
Phabricator before 2017-11-10 does not block the --config and --debugger flags to the Mercurial hg program, which allows remote attackers to execute arbitrary code by using the web UI to browse a bra…
|
NVD-CWE-noinfo
|
CVE-2017-17536
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250196
|
8.8 |
HIGH
Network
|
lilypond
|
lilypond
|
lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-inje…
|
CWE-74
Injection
|
CVE-2017-17523
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250197
|
8.8 |
HIGH
Network
|
sensible-utils_project
|
sensible-utils
|
sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argumen…
|
CWE-74
Injection
|
CVE-2017-17512
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250198
|
8.8 |
HIGH
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is an out of bounds write vulnerability in the function H5G__ent_decode_vec in H5Gcache.c in libhdf5.a. For example, h5dump would crash or possibly have unspecified other impact…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-17509
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250199
|
6.5 |
MEDIUM
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
|
CWE-369
Divide By Zero
|
CVE-2017-17508
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250200
|
6.5 |
MEDIUM
Network
|
hdfgroup
|
hdf5
|
In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5T_conv_struct_opt in H5Tconv.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-17507
|
2024-11-21 12:18 |
2017-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
