|
250171
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Modera…
|
NVD-CWE-noinfo
|
CVE-2017-6249
|
2024-11-21 12:29 |
2017-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250172
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Modera…
|
NVD-CWE-noinfo
|
CVE-2017-6248
|
2024-11-21 12:29 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250173
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the NVIDIA sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High d…
|
NVD-CWE-noinfo
|
CVE-2017-6247
|
2024-11-21 12:29 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250174
|
8.8 |
HIGH
Network
|
vimbadmin
|
vimbadmin
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the addAction and purgeAction functions in ViMbAdmin 3.0.15 allow remote attackers to hijack the authentication of logged administrators …
|
CWE-352
Origin Validation Error
|
CVE-2017-6086
|
2024-11-21 12:29 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250175
|
10.0 |
CRITICAL
Network
|
symantec
|
messaging_gateway
|
The Symantec Messaging Gateway can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machi…
|
NVD-CWE-noinfo
|
CVE-2017-6326
|
2024-11-21 12:29 |
2017-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250176
|
6.6 |
MEDIUM
Network
|
symantec
|
messaging_gateway
|
The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a type of vulnerability that is most commonly found to affect web applications that rely on a scripting run time.…
|
CWE-94
Code Injection
|
CVE-2017-6325
|
2024-11-21 12:29 |
2017-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250177
|
7.3 |
HIGH
Network
|
symantec
|
messaging_gateway
|
The Symantec Messaging Gateway, when processing a specific email attachment, can allow a malformed or corrupted Word file with a potentially malicious macro through despite the administrator having t…
|
NVD-CWE-noinfo
|
CVE-2017-6324
|
2024-11-21 12:29 |
2017-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250178
|
5.9 |
MEDIUM
Network
|
file\
canonical
debian
|
\
ubuntu_linux
debian_linux
|
Race condition in the rmtree and remove_tree functions in the File-Path module before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving directory-permission loos…
|
CWE-362
Race Condition
|
CVE-2017-6512
|
2024-11-21 12:29 |
2017-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250179
|
9.8 |
CRITICAL
Network
|
f5
|
big-ip_local_traffic_manager
big-ip_application_acceleration_manager
big-ip_advanced_firewall_manager
big-ip_access_policy_manager
big-ip_application_security_manager
big-ip_domain_nam…
|
In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may contain a default administrative password which could be used to remotely log into the BIG-IP system. …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-6131
|
2024-11-21 12:29 |
2017-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250180
|
9.8 |
CRITICAL
Network
|
ipswitch
|
moveit_dmz
moveit_transfer_2017
|
Ipswitch MOVEit Transfer (formerly DMZ) allows pre-authentication blind SQL injection. The fixed versions are MOVEit Transfer 2017 9.0.0.201, MOVEit DMZ 8.3.0.30, and MOVEit DMZ 8.2.0.20.
|
CWE-89
SQL Injection
|
CVE-2017-6195
|
2024-11-21 12:29 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
