|
252221
|
4.7 |
MEDIUM
Network
|
apple
|
safari
|
An issue was discovered in certain Apple products. Safari before 10.1.1 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web s…
|
CWE-20
Improper Input Validation
|
CVE-2017-2500
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252222
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
safari
tvos
|
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit Web Inspector" compo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2499
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252223
|
7.5 |
HIGH
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. The issue involves the "Security" component. It allows attackers to bypass intended access restrictions via an untrus…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-2498
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252224
|
6.1 |
MEDIUM
Network
|
apple
|
iphone_os
mac_os_x
|
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "iBooks" component. It allows remote attackers to trigger vi…
|
CWE-601
Open Redirect
|
CVE-2017-2497
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252225
|
8.8 |
HIGH
Network
|
apple
|
iphone_os
safari
|
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute ar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2496
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252226
|
6.5 |
MEDIUM
Network
|
apple
|
iphone_os
safari
|
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "Safari" component. It allows remote attackers to cause a de…
|
CWE-20
Improper Input Validation
|
CVE-2017-2495
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252227
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-2494
|
2024-11-21 12:23 |
2017-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252228
|
7.8 |
HIGH
Local
|
softbank
|
primedrive_desktop_application
|
Untrusted search path vulnerability in Installer for PrimeDrive Desktop Application version 1.4.4 and earlier allows remote attackers to execute arbitrary code via a specially crafted executable file…
|
CWE-426
Untrusted Search Path
|
CVE-2017-2167
|
2024-11-21 12:23 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252229
|
6.1 |
MEDIUM
Network
|
n-i-agroinformatics
|
soy_cms
|
Cross-site scripting vulnerability in SOY CMS with installer 1.8.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2017-2164
|
2024-11-21 12:23 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252230
|
7.5 |
HIGH
Network
|
n-i-agroinformatics
|
soy_cms
|
Directory traversal vulnerability in SOY CMS Ver.1.8.1 to Ver.1.8.12 allows authenticated attackers to read arbitrary files via shop_id.
|
CWE-22
Path Traversal
|
CVE-2017-2163
|
2024-11-21 12:23 |
2017-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
