|
257501
|
4.3 |
MEDIUM
Network
|
nextcloud
|
nextcloud_server
|
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a error message disclosing existence of file in write-only share. Due to an error in the application logic an adversary with access to a write-o…
|
CWE-200
Information Exposure
|
CVE-2017-0885
|
2024-11-21 12:03 |
2017-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257502
|
4.3 |
MEDIUM
Network
|
nextcloud
|
nextcloud_server
|
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a creation of folders in read-only folders despite lacking permissions issue. Due to a logical error in the file caching layer an authenticated …
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-0884
|
2024-11-21 12:03 |
2017-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257503
|
6.4 |
MEDIUM
Network
|
nextcloud
|
nextcloud_server
|
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a permission increase on re-sharing via OCS API issue. A permission related issue within the OCS sharing API allowed an authenticated adversary …
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-0883
|
2024-11-21 12:03 |
2017-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257504
|
6.3 |
MEDIUM
Network
|
gitlab
|
gitlab
|
Multiple versions of GitLab expose sensitive user credentials when assigning a user to an issue or merge request. A fix was included in versions 8.15.8, 8.16.7, and 8.17.4, which were released on Mar…
|
CWE-200
Information Exposure
|
CVE-2017-0882
|
2024-11-21 12:03 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257505
|
4.3 |
MEDIUM
Network
|
zulip
|
zulip_server
|
An error in the implementation of an autosubscribe feature in the check_stream_exists route of the Zulip group chat application server before 1.4.3 allowed an authenticated user to subscribe to a pri…
|
CWE-863
Incorrect Authorization
|
CVE-2017-0881
|
2024-11-21 12:03 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257506
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the kernel USB gadget driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate bec…
|
CWE-200
Information Exposure
|
CVE-2017-0537
|
2024-11-21 12:03 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257507
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Synaptics touchscreen driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate…
|
CWE-200
Information Exposure
|
CVE-2017-0536
|
2024-11-21 12:03 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257508
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate becau…
|
CWE-200
Information Exposure
|
CVE-2017-0535
|
2024-11-21 12:03 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257509
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate becaus…
|
CWE-200
Information Exposure
|
CVE-2017-0534
|
2024-11-21 12:03 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257510
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Qualcomm video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate becaus…
|
CWE-200
Information Exposure
|
CVE-2017-0533
|
2024-11-21 12:03 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
