|
252141
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The usbnet_generic_cdc_bind function in drivers/net/usb/cdc_ether.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (divide-by-zero error and system crash) or poss…
|
CWE-369
Divide By Zero
|
CVE-2017-16649
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252142
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possib…
|
CWE-416
Use After Free
|
CVE-2017-16648
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252143
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impac…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-16647
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252144
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or possibly have unspecified other impact via a …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-16646
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252145
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-16645
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252146
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (improper error handling and system crash) or poss…
|
CWE-388
7PK - Errors
|
CVE-2017-16644
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252147
|
6.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
The parse_hid_report_descriptor function in drivers/input/tablet/gtco.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (out-of-bounds read and system crash) or pos…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-16643
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252148
|
9.8 |
CRITICAL
Network
|
ingenious_school_management_system_project
|
ingenious_school_management_system
|
/view/friend_profile.php in Ingenious School Management System 2.3.0 is vulnerable to Boolean-based and Time-based SQL injection in the 'friend_index' parameter of a GET request.
|
CWE-89
SQL Injection
|
CVE-2017-16561
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252149
|
7.5 |
HIGH
Network
|
php
debian
canonical
netapp
|
php
debian_linux
ubuntu_linux
storage_automation_store
clustered_data_ontap
|
In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-16642
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252150
|
7.2 |
HIGH
Network
|
cacti
|
cacti
|
lib/rrd.php in Cacti 1.1.27 allows remote authenticated administrators to execute arbitrary OS commands via the path_rrdtool parameter in an action=save request to settings.php.
|
CWE-78
OS Command
|
CVE-2017-16641
|
2024-11-21 12:16 |
2017-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
