|
257171
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62896384.
|
NVD-CWE-noinfo
|
CVE-2017-0833
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257172
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in the Android media framework (libmpeg2). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62887820.
|
NVD-CWE-noinfo
|
CVE-2017-0832
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257173
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the Android framework (window manager). Product: Android. Versions: 8.0. Android ID: A-37442941.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-0831
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257174
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the Android framework (device policy client). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62623498.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-0830
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257175
|
9.8 |
CRITICAL
Network
|
private_address_check_project
|
private_address_check
|
The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete blacklist of common private/local network addresses used to prevent server-side request forgery.
|
NVD-CWE-noinfo
|
CVE-2017-0909
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257176
|
7.8 |
HIGH
Local
|
nvidia
|
tegra_x1_firmware
|
An elevation of privilege vulnerability in the Direct rendering infrastructure of the NVIDIA Tegra X1 where an unchecked input from userspace is passed as a pointer to kfree. This could lead to kerne…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-0866
|
2024-11-21 12:03 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257177
|
9.8 |
CRITICAL
Network
|
recurly
|
recurly_client_.net
|
The Recurly Client .NET Library before 1.0.1, 1.1.10, 1.2.8, 1.3.2, 1.4.14, 1.5.3, 1.6.2, 1.7.1, 1.8.1 is vulnerable to a Server-Side Request Forgery vulnerability due to incorrect use of "Uri.Escape…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-0907
|
2024-11-21 12:03 |
2017-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257178
|
9.8 |
CRITICAL
Network
|
recurly
|
recurly_client_python
|
The Recurly Client Python Library before 2.0.5, 2.1.16, 2.2.22, 2.3.1, 2.4.5, 2.5.1, 2.6.2 is vulnerable to a Server-Side Request Forgery vulnerability in the "Resource.get" method that could result …
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-0906
|
2024-11-21 12:03 |
2017-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257179
|
9.8 |
CRITICAL
Network
|
recurly
|
recurly_client_ruby
|
The Recurly Client Ruby Library before 2.0.13, 2.1.11, 2.2.5, 2.3.10, 2.4.11, 2.5.4, 2.6.3, 2.7.8, 2.8.2, 2.9.2, 2.10.4, 2.11.3 is vulnerable to a Server-Side Request Forgery vulnerability in the "Re…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-0905
|
2024-11-21 12:03 |
2017-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257180
|
8.1 |
HIGH
Network
|
private_address_check_project
|
private_address_check
|
The private_address_check ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security measures, s…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2017-0904
|
2024-11-21 12:03 |
2017-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
