|
259471
|
5.6 |
MEDIUM
Local
|
xen
|
xen
|
A domain cleanup issue was discovered in the C xenstore daemon (aka cxenstored) in Xen through 4.9.x. When shutting down a VM with a stubdomain, a race in cxenstored may cause a double-free. The xens…
|
CWE-362
Race Condition
|
CVE-2017-14317
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259472
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gnttab_cache_flush` handles GNTTABOP_cache_flush grant table operations. It checks to see if the calling domain is the owner of the…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14318
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259473
|
8.8 |
HIGH
Local
|
xen
|
xen
|
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memf…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14316
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259474
|
7.5 |
HIGH
Adjacent
|
apple
|
iphone_os
|
In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with at…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14315
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259475
|
7.5 |
HIGH
Network
|
hbgk
|
hb7024xt_firmware
hb7032xt_firmware
hb7008t2_firmware
hb7016t2_firmware
hb7204xt_firmware
hb7208xt_firmware
hb7216xt_firmware
hb7208x3_firmware
hb7216x3_firmware
hb7204x_fi…
|
On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change.
|
CWE-20
Improper Input Validation
|
CVE-2017-14335
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259476
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have un…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-14333
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259477
|
6.5 |
MEDIUM
Network
|
imagemagick
canonical
|
imagemagick
ubuntu_linux
|
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-14326
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259478
|
6.5 |
MEDIUM
Network
|
imagemagick
canonical
|
imagemagick
ubuntu_linux
|
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadM…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-14325
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259479
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-14324
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259480
|
7.8 |
HIGH
Local
|
broadcom
|
tcpreplay
|
tcprewrite in Tcpreplay 3.4.4 has a Heap-Based Buffer Overflow vulnerability triggered by a crafted PCAP file, a related issue to CVE-2016-6160.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14266
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
