|
255071
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11731
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255072
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11730
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255073
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11729
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255074
|
5.5 |
MEDIUM
Local
|
libming
|
ming
|
A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted fi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11728
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255075
|
5.4 |
MEDIUM
Network
|
thycotic
|
secret_server
|
The share function in Thycotic Secret Server before 10.2.000019 mishandles the Back Button, leading to unintended redirections.
|
CWE-601
Open Redirect
|
CVE-2017-11725
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255076
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9-3 and 7.x through 7.0.6-3 has memory leaks involving the quantum_info and clone_info data structures.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-11724
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255077
|
7.5 |
HIGH
Network
|
xinha
|
xinha
|
Directory traversal vulnerability in plugins/ImageManager/backend.php in Xinha 0.96, as used in Jojo 4.4.0, allows remote attackers to delete any folder via directory traversal sequences in the deld …
|
CWE-22
Path Traversal
|
CVE-2017-11723
|
2024-11-21 12:08 |
2017-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255078
|
9.8 |
CRITICAL
Network
|
lame_project
|
lame
|
There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.
|
CWE-369
Divide By Zero
|
CVE-2017-11720
|
2024-11-21 12:08 |
2017-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255079
|
6.5 |
MEDIUM
Network
|
graphicsmagick
|
graphicsmagick
|
The WriteOnePNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11722
|
2024-11-21 12:08 |
2017-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255080
|
9.1 |
CRITICAL
Network
|
medhost
|
medhost_document_management_system
|
MEDHOST Document Management System contains hard-coded credentials that are used for Apache Solr access. An attacker with knowledge of the hard-coded credentials and the ability to communicate direct…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-11694
|
2024-11-21 12:08 |
2017-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
