|
247831
|
7.5 |
HIGH
Network
|
google
|
android
|
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, buffer over-read is possible in camera driver function msm_isp_stop_stats_stream. Varia…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9696
|
2024-11-21 12:36 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247832
|
7.8 |
HIGH
Local
|
google
|
android
|
In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in a qbt1000 ioctl handler, an incorrect buffer size check has an integer overflow vuln…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-9690
|
2024-11-21 12:36 |
2017-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247833
|
5.4 |
MEDIUM
Network
|
ca
|
identity_governance
|
A stored cross-site scripting vulnerability in CA Identity Governance 12.6 allows remote authenticated attackers to display HTML or execute script in the context of another user.
|
CWE-79
Cross-site Scripting
|
CVE-2017-9394
|
2024-11-21 12:36 |
2017-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247834
|
7.4 |
HIGH
Network
|
savitech-ic
|
savitech_driver
|
Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."
|
CWE-295
Improper Certificate Validation
|
CVE-2017-9758
|
2024-11-21 12:36 |
2017-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247835
|
7.8 |
HIGH
Local
|
amazon
|
amazon_web_services_cloudformation_bootstrap
|
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap) before 1.4-19.10 allows local users to execute arbitrary code with root privileges by leveraging the abili…
|
CWE-269
Improper Privilege Management
|
CVE-2017-9450
|
2024-11-21 12:36 |
2017-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247836
|
8.2 |
HIGH
Network
|
envitech
|
envidas_ultimate
|
An Improper Authentication issue was discovered in Envitech EnviDAS Ultimate Versions prior to v1.0.0.5. The web application lacks proper authentication which could allow an attacker to view informat…
|
CWE-287
Improper Authentication
|
CVE-2017-9625
|
2024-11-21 12:36 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247837
|
8.8 |
HIGH
Network
|
atlassian
|
bamboo
|
Bamboo before 6.0.5, 6.1.x before 6.1.4, and 6.2.x before 6.2.1 had a REST endpoint that parsed a YAML file and did not sufficiently restrict which classes could be loaded. An attacker who can log in…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-9514
|
2024-11-21 12:36 |
2017-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247838
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing Netlink attributes, a buffer overread can occur.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9717
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247839
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a vendor command, a buffer over-read can occur.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9715
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247840
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, an out of bound memory access may happen in limCheckRxRSNIeMatch in case incorrect RSNI…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9714
|
2024-11-21 12:36 |
2017-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
