|
251271
|
6.5 |
MEDIUM
Network
|
oracle
|
applications_dba
|
Vulnerability in the Oracle Applications DBA component of Oracle E-Business Suite (subcomponent: AD Utilities). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Eas…
|
NVD-CWE-noinfo
|
CVE-2017-3562
|
2024-11-21 12:25 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251272
|
5.3 |
MEDIUM
Network
|
oracle
|
mysql
|
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: UDF). Supported versions that are affected are 5.7.18 and earlier. Difficult to exploit vulnerability allows low pri…
|
NVD-CWE-noinfo
|
CVE-2017-3529
|
2024-11-21 12:25 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251273
|
9.8 |
CRITICAL
Network
|
inmarsat
|
amosconnect
|
Hard-coded credentials in AmosConnect 8 allow remote attackers to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM pri…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-3222
|
2024-11-21 12:25 |
2017-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251274
|
9.8 |
CRITICAL
Network
|
inmarsat
|
amosconnect_8
|
Blind SQL injection in Inmarsat AmosConnect 8 login form allows remote attackers to access user credentials, including user names and passwords.
|
CWE-89
SQL Injection
|
CVE-2017-3221
|
2024-11-21 12:25 |
2017-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251275
|
5.3 |
MEDIUM
Local
|
oracle
|
solaris
|
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11. Easily exploitable vulnerability allows low privilege…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-3631
|
2024-11-21 12:25 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251276
|
5.3 |
MEDIUM
Local
|
oracle
|
solaris
|
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low pri…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-3630
|
2024-11-21 12:25 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251277
|
7.8 |
HIGH
Local
|
oracle
|
solaris
|
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows low pri…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-3629
|
2024-11-21 12:25 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251278
|
8.8 |
HIGH
Adjacent
|
acronis
|
true_image
|
Acronis True Image up to and including version 2017 Build 8053 performs software updates using HTTP. Downloaded updates are only verified using a server-provided MD5 hash.
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2017-3219
|
2024-11-21 12:25 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251279
|
8.8 |
HIGH
Adjacent
|
samsung
|
magician
|
Samsung Magician 5.0 fails to validate TLS certificates for HTTPS software update traffic. Prior to version 5.0, Samsung Magician uses HTTP for software updates.
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2017-3218
|
2024-11-21 12:25 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251280
|
9.8 |
CRITICAL
Network
|
greenpacket
huawei
mada
zte
zyxel
|
ox350_firmware
bm2022_firmware
hes-309m_firmware
hes-319m_firmware
hes-319m2w_firmware
hes-339m_firmware
soho_wireless_router_firmware
ox-330p_firmware
max218m_firmware
max…
|
WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to …
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2017-3216
|
2024-11-21 12:25 |
2017-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
