|
247241
|
5.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in QEMU (aka Quick Emulator), when built with IDE AHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplug…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2017-9373
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247242
|
7.5 |
HIGH
Network
|
citrix
|
xenmobile_server
|
XML external entity (XXE) vulnerability in Citrix XenMobile Server 9.x and 10.x before 10.5 RP3 allows attackers to obtain sensitive information via unspecified vectors.
|
CWE-611
XXE
|
CVE-2017-9231
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247243
|
9.1 |
CRITICAL
Network
|
hoytech
|
antiweb
|
In Anti-Web through 3.8.7, as used on NetBiter FGW200 devices through 3.21.2, WS100 devices through 3.30.5, EC150 devices through 1.40.0, WS200 devices through 3.30.4, EC250 devices through 1.40.0, a…
|
CWE-22
Path Traversal
|
CVE-2017-9097
|
2024-11-21 12:35 |
2017-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247244
|
9.8 |
CRITICAL
Network
|
newrelic
|
.net_agent
|
New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishand…
|
CWE-89
SQL Injection
|
CVE-2017-9246
|
2024-11-21 12:35 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247245
|
8.8 |
HIGH
Network
|
otrs
debian
|
otrs
debian_linux
|
In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5.0.19, an attacker with agent permission is capable of opening a specific URL in a browser to gain admi…
|
CWE-269
Improper Privilege Management
|
CVE-2017-9324
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247246
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9128
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247247
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_user_atoms_read_atom function in useratoms.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9127
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247248
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_read_dref_table function in dref.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted mp4 file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9126
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247249
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The lqt_frame_duration function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mp4 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9125
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247250
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_match_32 function in util.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9124
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
