|
253191
|
7.8 |
HIGH
Local
|
moxa
|
mxview
|
An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation vulnerability could allow an authorized user with file access to escalate privileges by inserting arbitrary…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2017-14030
|
2024-11-21 12:12 |
2018-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253192
|
6.1 |
MEDIUM
Network
|
dell
|
emc_vnx2_firmware
emc_vnx1_firmware
|
In Dell EMC VNX2 versions prior to Operating Environment for File 8.1.9.217 and VNX1 versions prior to Operating Environment for File 7.1.80.8, a web server error page in VNX Control Station is impac…
|
CWE-79
Cross-site Scripting
|
CVE-2017-14383
|
2024-11-21 12:12 |
2018-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253193
|
5.4 |
MEDIUM
Network
|
microfocus
|
operations_manager_i
|
Cross-Site Scripting (XSS) vulnerability has been identified in Micro Focus Operations Manager i, versions 10.60, 10.61, 10.62. The vulnerability could be remotely exploited to allow Cross-Site Scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2017-14363
|
2024-11-21 12:12 |
2017-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253194
|
6.5 |
MEDIUM
Network
|
emc
|
isilon_onefs
|
The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and 8.0.0.0 - 8.0.0.4 maintains default NFS export settings (including the NFS export security flavor for authentication) that can be l…
|
NVD-CWE-noinfo
|
CVE-2017-14387
|
2024-11-21 12:12 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253195
|
7.5 |
HIGH
Network
|
emc
|
data_domain_os
data_domain
|
An issue was discovered in EMC Data Domain DD OS 5.7 family, versions prior to 5.7.5.6; EMC Data Domain DD OS 6.0 family, versions prior to 6.0.2.9; EMC Data Domain DD OS 6.1 family, versions prior t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14385
|
2024-11-21 12:12 |
2017-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253196
|
6.1 |
MEDIUM
Network
|
maplesoft
|
maple_t.a.
|
A Reflected XSS Vulnerability affects the forgotten password page of Maplesoft Maple T.A. 2016.0.6 (Customer Hosted) via the emailAddress parameter to passwordreset/PasswordReset.do, aka Open Bug Bou…
|
CWE-79
Cross-site Scripting
|
CVE-2017-14134
|
2024-11-21 12:12 |
2017-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253197
|
6.1 |
MEDIUM
Network
|
trendmicro
|
scanmail
|
The Log Query and Quarantine Query pages in Trend Micro ScanMail for Exchange 12.0 are vulnerable to cross site scripting (XSS) attacks.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14093
|
2024-11-21 12:12 |
2017-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253198
|
8.8 |
HIGH
Network
|
trendmicro
|
scanmail
|
The absence of Anti-CSRF tokens in Trend Micro ScanMail for Exchange 12.0 web interface forms could allow an attacker to submit authenticated requests when an authenticated user browses an attacker-c…
|
CWE-352
Origin Validation Error
|
CVE-2017-14092
|
2024-11-21 12:12 |
2017-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253199
|
7.5 |
HIGH
Network
|
trendmicro
|
scanmail
|
A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which certain specific installations that utilize a uncommon feature - Other Update Sources - could be exploited to overwrite sensi…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2017-14091
|
2024-11-21 12:12 |
2017-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253200
|
9.1 |
CRITICAL
Network
|
trendmicro
|
scanmail
|
A vulnerability in Trend Micro ScanMail for Exchange 12.0 exists in which some communications to the update servers are not encrypted.
|
CWE-326
Inadequate Encryption Strength
|
CVE-2017-14090
|
2024-11-21 12:12 |
2017-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
