|
250701
|
3.8 |
LOW
Local
|
vmware
|
airwatch_agent
airwatch_inbox
|
Airwatch Inbox for Android contains a vulnerability that may allow a rooted device to decrypt the local data used by the application. Successful exploitation of this issue may result in an unauthoriz…
|
NVD-CWE-noinfo
|
CVE-2017-4896
|
2024-11-21 12:26 |
2017-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250702
|
8.8 |
HIGH
Local
|
vmware
|
airwatch_agent
airwatch_inbox
|
Airwatch Agent for Android contains a vulnerability that may allow a device to bypass root detection. Successful exploitation of this issue may result in an enrolled device having unrestricted access…
|
NVD-CWE-noinfo
|
CVE-2017-4895
|
2024-11-21 12:26 |
2017-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250703
|
9.8 |
CRITICAL
Network
|
emc
|
mainframe_enablers_resourcepak_base
|
EMC Mainframe Enablers ResourcePak Base versions 7.6.0, 8.0.0, and 8.1.0 contains a fix for a privilege management vulnerability that could potentially be exploited by malicious users to compromise t…
|
CWE-269
Improper Privilege Management
|
CVE-2017-4982
|
2024-11-21 12:26 |
2017-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250704
|
7.5 |
HIGH
Network
|
openssl
hp
|
openssl
operations_agent
|
During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake (or vice-versa) then this can cause OpenSSL 1.1.0 before 1.1.0e to crash (d…
|
CWE-20
Improper Input Validation
|
CVE-2017-3733
|
2024-11-21 12:26 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250705
|
7.5 |
HIGH
Network
|
openssl
nodejs
|
openssl
node.js
|
If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resu…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-3731
|
2024-11-21 12:26 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250706
|
5.9 |
MEDIUM
Network
|
openssl
nodejs
|
openssl
node.js
|
There is a carry propagating bug in the x86_64 Montgomery squaring procedure in OpenSSL 1.0.2 before 1.0.2k and 1.1.0 before 1.1.0d. No EC algorithms are affected. Analysis suggests that attacks agai…
|
CWE-200
Information Exposure
|
CVE-2017-3732
|
2024-11-21 12:26 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250707
|
7.5 |
HIGH
Network
|
openssl
oracle
|
openssl
jd_edwards_enterpriseone_tools
agile_engineering_data_management
jd_edwards_world_security
communications_operations_monitor
communications_eagle_lnp_application_processor
c…
|
In OpenSSL 1.1.0 before 1.1.0d, if a malicious server supplies bad parameters for a DHE or ECDHE key exchange then this can result in the client attempting to dereference a NULL pointer leading to a …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-3730
|
2024-11-21 12:26 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250708
|
6.7 |
MEDIUM
Local
|
dell
|
emc_data_domain_os
|
EMC Data Domain OS 5.2 through 5.7 before 5.7.3.0 and 6.0 before 6.0.1.0 is affected by a privilege escalation vulnerability that may potentially be exploited by attackers to compromise the affected …
|
NVD-CWE-noinfo
|
CVE-2017-4983
|
2024-11-21 12:26 |
2017-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250709
|
8.8 |
HIGH
Network
|
google
|
chrome
|
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-5051
|
2024-11-21 12:26 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250710
|
8.8 |
HIGH
Network
|
google
|
chrome
|
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-5050
|
2024-11-21 12:26 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
