|
250581
|
9.6 |
CRITICAL
Network
|
google
redhat
|
chrome
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
An out-of-bounds read in V8 in Google Chrome prior to 57.0.2987.133 for Linux, Windows, and Mac, and 57.0.2987.132 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox vi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-5053
|
2024-11-21 12:26 |
2017-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250582
|
8.8 |
HIGH
Network
|
google
redhat
|
chrome
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
An incorrect assumption about block structure in Blink in Google Chrome prior to 57.0.2987.133 for Mac, Windows, and Linux, and 57.0.2987.132 for Android, allowed a remote attacker to potentially exp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-5052
|
2024-11-21 12:26 |
2017-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250583
|
7.5 |
HIGH
Network
|
lenovo
|
thinkcentre_m710s_firmware
thinkcentre_m710t_firmware
aio_e95_firmware
|
System boot process is not adequately secured In Lenovo E95 and ThinkCentre M710s/M710t because systems were shipped from factory without completing BIOS/UEFI initialization process.
|
NVD-CWE-noinfo
|
CVE-2017-3771
|
2024-11-21 12:26 |
2017-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250584
|
9.8 |
CRITICAL
Network
|
lenovo
|
service_framework
|
The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, co…
|
CWE-78
OS Command
|
CVE-2017-3761
|
2024-11-21 12:26 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250585
|
8.1 |
HIGH
Network
|
lenovo
|
service_framework
|
The Lenovo Service Framework Android application uses a set of nonsecure credentials when performing integrity verification of downloaded applications and/or data. This exposes the application to man…
|
CWE-354
CWE-522
Improper Validation of Integrity Check Value
Insufficiently Protected Credentials
|
CVE-2017-3760
|
2024-11-21 12:26 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250586
|
8.1 |
HIGH
Network
|
lenovo
|
service_framework
|
The Lenovo Service Framework Android application accepts some responses from the server without proper validation. This exposes the application to man-in-the-middle attacks leading to possible remote…
|
CWE-20
Improper Input Validation
|
CVE-2017-3759
|
2024-11-21 12:26 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250587
|
9.8 |
CRITICAL
Network
|
lenovo
|
service_framework
|
Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution.
|
NVD-CWE-noinfo
|
CVE-2017-3758
|
2024-11-21 12:26 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250588
|
8.6 |
HIGH
Network
|
cisco
|
firepower_extensible_operating_system
fxos
nx-os
|
A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an unauthenticate…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-3883
|
2024-11-21 12:26 |
2017-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250589
|
8.8 |
HIGH
Network
|
lenovo
|
xclarity_administrator
|
Privilege escalation vulnerability in LXCA versions earlier than 1.3.2 where an authenticated user may be able to abuse certain web interface functionality to execute privileged commands within the u…
|
NVD-CWE-noinfo
|
CVE-2017-3770
|
2024-11-21 12:26 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250590
|
6.7 |
MEDIUM
Local
|
lenovo
|
xclarity_administrator
|
An attacker who obtains access to the location where the LXCA file system is stored may be able to access credentials of local LXCA accounts in LXCA versions earlier than 1.3.2.
|
NVD-CWE-noinfo
|
CVE-2017-3763
|
2024-11-21 12:26 |
2017-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
