|
255001
|
6.1 |
MEDIUM
Network
|
cisco
|
unity_connection
|
A vulnerability in the web framework of Cisco Unity Connection could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web inter…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12212
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255002
|
5.3 |
MEDIUM
Network
|
cisco
|
ios_xe
ios
|
A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause high CPU usage or a reload of …
|
NVD-CWE-noinfo
|
CVE-2017-12211
|
2024-11-21 12:09 |
2017-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255003
|
6.1 |
MEDIUM
Network
|
paloaltonetworks
|
pan-os
|
Cross-site scripting (XSS) vulnerability in the GlobalProtect internal and external gateway interface in Palo Alto Networks PAN-OS before 6.1.18, 7.0.x before 7.0.17, 7.1.x before 7.1.12, and 8.0.x b…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12416
|
2024-11-21 12:09 |
2017-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255004
|
5.5 |
MEDIUM
Local
|
bento4
|
bento4
|
The AP4_AvccAtom::InspectFields function in Core/Ap4AvccAtom.cpp in Bento4 mp4dump before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application cras…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-12476
|
2024-11-21 12:09 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255005
|
5.5 |
MEDIUM
Local
|
axiosys
|
bento4
|
The AP4_Processor::Process function in Core/Ap4Processor.cpp in Bento4 mp4encrypt before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-12475
|
2024-11-21 12:09 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255006
|
5.5 |
MEDIUM
Local
|
bento4
|
bento4
|
The AP4_AtomSampleTable::GetSample function in Core/Ap4AtomSampleTable.cpp in Bento4 mp42ts before 1.5.0-616 allows remote attackers to cause a denial of service (NULL pointer dereference and applica…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-12474
|
2024-11-21 12:09 |
2017-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255007
|
7.7 |
HIGH
Network
|
netapp
|
clustered_data_ontap
|
NetApp Clustered Data ONTAP 8.3.x before 8.3.2P12 allows remote authenticated users to read data on other Storage Virtual Machines (SVMs) via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2017-12423
|
2024-11-21 12:09 |
2017-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255008
|
8.8 |
HIGH
Network
|
netapp
|
clustered_data_ontap
|
NetApp Clustered Data ONTAP 8.3.x before 8.3.2P12 allows remote authenticated users to execute arbitrary code on the storage controller via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2017-12421
|
2024-11-21 12:09 |
2017-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255009
|
6.5 |
MEDIUM
Network
|
netapp
|
storagegrid_webscale
|
NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors.
|
CWE-269
Improper Privilege Management
|
CVE-2017-12422
|
2024-11-21 12:09 |
2017-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255010
|
7.8 |
HIGH
Local
|
qpdf_project
|
qpdf
|
The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dictionaries, which allows remote attackers to cause a denial of service (stack consumption and segmentation fault) or possibly have…
|
CWE-20
Improper Input Validation
|
CVE-2017-12595
|
2024-11-21 12:09 |
2017-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
