|
258461
|
8.8 |
HIGH
Network
|
moxa
|
edr-810_firmware
|
An exploitable cross-site request forgery vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP packet can cause cross-site request forger…
|
CWE-352
Origin Validation Error
|
CVE-2017-12126
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258462
|
8.8 |
HIGH
Network
|
moxa
|
edr-810_firmware
|
An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in …
|
CWE-78
OS Command
|
CVE-2017-12125
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258463
|
6.5 |
MEDIUM
Network
|
moxa
|
edr-810_firmware
|
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting …
|
CWE-20
CWE-476
Improper Input Validation
NULL Pointer Dereference
|
CVE-2017-12124
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258464
|
8.8 |
HIGH
Adjacent
|
moxa
|
edr-810_firmware
|
An exploitable clear text transmission of password vulnerability exists in the web server and telnet functionality of Moxa EDR-810 V4.1 build 17030317. An attacker can look at network traffic to get …
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2017-12123
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258465
|
8.8 |
HIGH
Network
|
moxa
|
edr-810_firmware
|
An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in …
|
CWE-78
OS Command
|
CVE-2017-12121
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258466
|
8.8 |
HIGH
Network
|
moxa
|
edr-810_firmware
|
An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation, resulting in…
|
CWE-78
OS Command
|
CVE-2017-12120
|
2024-11-21 12:08 |
2018-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258467
|
8.8 |
HIGH
Network
|
libsdl
debian
|
sdl_image
debian_linux
|
An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2_image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution.…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12122
|
2024-11-21 12:08 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258468
|
8.8 |
HIGH
Network
|
libxls_project
|
libxls
|
An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULRK record. A specially crafted XLS file can cause a memory corruption resul…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-12109
|
2024-11-21 12:08 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258469
|
8.8 |
HIGH
Network
|
libxls_project
|
libxls
|
An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULBLANK record. A specially crafted XLS file can cause a memory corruption re…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-12108
|
2024-11-21 12:08 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258470
|
7.8 |
HIGH
Local
|
pl32
|
photoline
|
An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12107
|
2024-11-21 12:08 |
2018-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
