|
253291
|
5.9 |
MEDIUM
Network
|
zohocorp
|
site24x7_mobile_network_poller
|
The Zoho Site24x7 Mobile Network Poller application before 1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain …
|
CWE-295
Improper Certificate Validation
|
CVE-2017-14582
|
2024-11-21 12:13 |
2017-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253292
|
8.8 |
HIGH
Network
|
git-scm
debian
|
git
debian_linux
|
Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl scripts to support subcommands such as cvsserver, which allows attackers…
|
CWE-78
OS Command
|
CVE-2017-14867
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253293
|
5.5 |
MEDIUM
Local
|
exiv2
|
exiv2
|
There is a heap-based buffer overflow in the Exiv2::s2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14866
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253294
|
5.5 |
MEDIUM
Local
|
exiv2
|
exiv2
|
There is a heap-based buffer overflow in the Exiv2::us2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14865
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253295
|
5.5 |
MEDIUM
Local
|
exiv2
canonical
debian
|
exiv2
ubuntu_linux
debian_linux
|
An Invalid memory address dereference was discovered in Exiv2::getULong in types.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14864
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253296
|
5.5 |
MEDIUM
Local
|
exiv2
|
exiv2
|
A NULL pointer dereference was discovered in Exiv2::Image::printIFDStructure in image.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14863
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253297
|
5.5 |
MEDIUM
Local
|
exiv2
canonical
debian
|
exiv2
ubuntu_linux
debian_linux
|
An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14862
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253298
|
5.5 |
MEDIUM
Local
|
exiv2
|
exiv2
|
There is a stack consumption vulnerability in the Exiv2::Internal::stringFormat function of image.cpp in Exiv2 0.26. A Crafted input will lead to a remote denial of service attack.
|
CWE-190
CWE-674
Integer Overflow or Wraparound
Uncontrolled Recursion
|
CVE-2017-14861
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253299
|
5.5 |
MEDIUM
Local
|
exiv2
|
exiv2
|
There is a heap-based buffer over-read in the Exiv2::Jp2Image::readMetadata function of jp2image.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14860
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253300
|
5.5 |
MEDIUM
Local
|
exiv2
canonical
debian
|
exiv2
ubuntu_linux
debian_linux
|
An Invalid memory address dereference was discovered in Exiv2::StringValueBase::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to de…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14859
|
2024-11-21 12:13 |
2017-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
