|
250801
|
3.7 |
LOW
Network
|
tor_project
debian
|
tor
debian_linux
|
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays (that have incompletely downloaded descriptors) can pick th…
|
CWE-417
Channel and Path Errors
|
CVE-2017-8822
|
2024-11-21 12:34 |
2017-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250802
|
7.5 |
HIGH
Network
|
tor_project
debian
|
tor
debian_linux
|
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, an attacker can cause a denial of service (application hang) via c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8821
|
2024-11-21 12:34 |
2017-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250803
|
7.5 |
HIGH
Network
|
tor_project
debian
|
tor
debian_linux
|
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, remote attackers can cause a denial of service (NULL pointer deref…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-8820
|
2024-11-21 12:34 |
2017-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250804
|
7.5 |
HIGH
Network
|
tor_project
debian
|
tor
debian_linux
|
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, the replay-cache protection mechanism is ineffective for v2 onion …
|
NVD-CWE-noinfo
|
CVE-2017-8819
|
2024-11-21 12:34 |
2017-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250805
|
9.8 |
CRITICAL
Network
|
haxx
|
libcurl
curl
|
curl and libcurl before 7.57.0 on 32-bit platforms allow attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact because too litt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8818
|
2024-11-21 12:34 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250806
|
9.8 |
CRITICAL
Network
|
haxx
debian
|
libcurl
curl
debian_linux
|
The FTP wildcard function in curl and libcurl before 7.57.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact v…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-8817
|
2024-11-21 12:34 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250807
|
9.8 |
CRITICAL
Network
|
haxx
debian
|
libcurl
curl
debian_linux
|
The NTLM authentication feature in curl and libcurl before 7.57.0 on 32-bit platforms allows attackers to cause a denial of service (integer overflow and resultant buffer overflow, and application cr…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-8816
|
2024-11-21 12:34 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250808
|
9.8 |
CRITICAL
Network
|
cohuhd
|
3960hd_firmware
|
Client-side enforcement using JavaScript of server-side security options on the Cohu 3960HD allows an attacker to manipulate options sent to the camera and cause malfunction or code execution, as dem…
|
CWE-693
Protection Mechanism Failure
|
CVE-2017-8864
|
2024-11-21 12:34 |
2017-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250809
|
7.5 |
HIGH
Network
|
cohuhd
|
3960hd_firmware
|
Information disclosure of .esp source code on the Cohu 3960 allows an attacker to view sensitive information such as application logic with a simple web browser.
|
CWE-200
Information Exposure
|
CVE-2017-8863
|
2024-11-21 12:34 |
2017-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250810
|
9.8 |
CRITICAL
Network
|
cohuhd
|
3960hd_firmware
|
The webupgrade function on the Cohu 3960HD does not verify the firmware upgrade files or process, allowing an attacker to upload a specially crafted postinstall.sh file that will be executed with "ro…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2017-8862
|
2024-11-21 12:34 |
2017-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
