|
257281
|
6.7 |
MEDIUM
Local
|
cisco
|
nx-os
unified_computing_system
|
A vulnerability in Cisco NX-OS System Software could allow an authenticated, local attacker to bypass signature verification when loading a software patch. The vulnerability is due to insufficient NX…
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2017-12331
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257282
|
6.3 |
MEDIUM
Local
|
cisco
|
nx-os
|
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vulnerability is due to insufficient input validation…
|
CWE-77
Command Injection
|
CVE-2017-12330
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257283
|
6.3 |
MEDIUM
Local
|
cisco
|
nx-os
unified_computing_system
firepower_extensible_operating_system
|
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenticated, local attacker to perform a command injection attack. The vuln…
|
CWE-77
Command Injection
|
CVE-2017-12329
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257284
|
5.8 |
MEDIUM
Network
|
cisco
|
ip_phone_8800_series_firmware
|
A vulnerability in Session Initiation Protocol (SIP) call handling in Cisco IP Phone 8800 Series devices could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition b…
|
CWE-20
Improper Input Validation
|
CVE-2017-12328
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257285
|
5.0 |
MEDIUM
Network
|
cisco
|
webex_meeting_center
|
A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due…
|
CWE-20
Improper Input Validation
|
CVE-2017-12297
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257286
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL point…
|
-
|
CVE-2017-12193
|
2024-11-21 12:09 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257287
|
6.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same…
|
-
|
CVE-2017-12190
|
2024-11-21 12:09 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257288
|
7.8 |
HIGH
Local
|
apache
debian
|
openoffice
debian_linux
|
A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12608
|
2024-11-21 12:09 |
2017-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257289
|
7.8 |
HIGH
Local
|
apache
debian
|
openoffice
debian_linux
|
A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and appl…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12607
|
2024-11-21 12:09 |
2017-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257290
|
8.2 |
HIGH
Local
|
cisco
|
umbrella_insights_virtual_appliance
|
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulne…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-12350
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
