|
258951
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the fd allocated during the get_metadata was not closed even though the buffer allocate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11019
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258952
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, when memory allocation fails while creating a calibration block in create_cal_block sta…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2017-11016
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258953
|
9.8 |
CRITICAL
Network
|
princeton
|
ptw-wms1_firmware
|
Improper authentication issue in PTW-WMS1 firmware version 2.000.012 allows remote attackers to log in to the device with root privileges and conduct arbitrary operations via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2017-10903
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258954
|
9.8 |
CRITICAL
Network
|
princeton
|
ptw-wms1_firmware
|
PTW-WMS1 firmware version 2.000.012 allows remote attackers to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2017-10902
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258955
|
7.5 |
HIGH
Network
|
princeton
|
ptw-wms1_firmware
|
Buffer overflow in PTW-WMS1 firmware version 2.000.012 allows remote attackers to conduct denial-of-service attacks via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10901
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258956
|
9.8 |
CRITICAL
Network
|
princeton
|
ptw-wms1_firmware
|
PTW-WMS1 firmware version 2.000.012 allows remote attackers to bypass access restrictions to obtain or delete data on the disk via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2017-10900
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258957
|
9.8 |
CRITICAL
Network
|
ark-web
|
a-reserve
|
SQL injection vulnerability in the A-Reserve and A-Reserve for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2017-10899
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258958
|
9.8 |
CRITICAL
Network
|
ark-web
|
a-member
|
SQL injection vulnerability in the A-Member and A-Member for MT cloud versions 3.8.6 and earlier allows an attacker to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2017-10898
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258959
|
7.5 |
HIGH
Network
|
sdnsproxy_project
|
sdnsproxy
|
sDNSProxy.exe ver1.1.0.0 and earlier allows remote attackers to cause a denial of service via unspecified vectors.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2017-10895
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258960
|
7.5 |
HIGH
Network
|
streamrelay
|
streamrelay
|
StreamRelay.NET.exe ver2.14.0.7 and earlier allows remote attackers to cause a denial of service via unspecified vectors.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2017-10894
|
2024-11-21 12:06 |
2017-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
