|
257471
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (memory consumption in NewLinkedList …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-13131
|
2024-11-21 12:10 |
2017-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257472
|
7.8 |
HIGH
Local
|
bmc
|
patrol
|
mcmnm in BMC Patrol allows local users to gain privileges via a crafted libmcmclnx.so file in the current working directory, because it is setuid root and the RPATH variable begins with the .: substr…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2017-13130
|
2024-11-21 12:10 |
2017-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257473
|
9.8 |
CRITICAL
Network
|
noviflow
|
noviware
|
A network interface of the novi_process_manager_daemon service, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12787
|
2024-11-21 12:10 |
2017-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257474
|
9.8 |
CRITICAL
Network
|
noviflow
|
noviware
|
Network interfaces of the cliengine and noviengine services, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an op…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12786
|
2024-11-21 12:10 |
2017-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257475
|
9.8 |
CRITICAL
Network
|
noviflow
|
noviware
|
The novish command-line interface, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, is prone to a buffer overflow in the "show log cli" command. Th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12785
|
2024-11-21 12:10 |
2017-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257476
|
6.5 |
MEDIUM
Network
|
cyrusimap
fedoraproject
|
cyrus_imap
fedora
|
Cyrus IMAP before 3.0.3 allows remote authenticated users to write to arbitrary files via a crafted (1) SYNCAPPLY, (2) SYNCGET or (3) SYNCRESTORE command.
|
CWE-20
Improper Input Validation
|
CVE-2017-12843
|
2024-11-21 12:10 |
2017-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257477
|
6.5 |
MEDIUM
Network
|
graphicsmagick
|
graphicsmagick
|
GraphicsMagick 1.3.26 has a memory leak vulnerability in the function CloneImage in magick/image.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-13066
|
2024-11-21 12:10 |
2017-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257478
|
6.5 |
MEDIUM
Network
|
graphicsmagick
debian
|
graphicsmagick
debian_linux
|
GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability in the function SVGStartElement in coders/svg.c.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-13065
|
2024-11-21 12:10 |
2017-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257479
|
6.5 |
MEDIUM
Network
|
graphicsmagick
debian
|
graphicsmagick
debian_linux
|
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:311:12.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13064
|
2024-11-21 12:10 |
2017-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257480
|
6.5 |
MEDIUM
Network
|
graphicsmagick
debian
|
graphicsmagick
debian_linux
|
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:314:12.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-13063
|
2024-11-21 12:10 |
2017-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
