|
253791
|
7.5 |
HIGH
Network
|
microfocus
|
sentinel
|
A vulnerability was discovered in NetIQ Sentinel Server 8.0 before 8.0.1 that may allow remote denial of service.
|
CWE-20
Improper Input Validation
|
CVE-2017-5185
|
2024-11-21 12:27 |
2017-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253792
|
5.3 |
MEDIUM
Network
|
microfocus
|
sentinel
|
A vulnerability was discovered in NetIQ Sentinel Server 8.0 before 8.0.1 that may allow leakage of information (account enumeration).
|
CWE-200
Information Exposure
|
CVE-2017-5184
|
2024-11-21 12:27 |
2017-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253793
|
10.0 |
CRITICAL
Network
|
projectatomic
|
bubblewrap
|
When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an a…
|
CWE-20
Improper Input Validation
|
CVE-2017-5226
|
2024-11-21 12:27 |
2017-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253794
|
7.5 |
HIGH
Network
|
eviewgps
|
ev-07s_gps_tracker_firmware
|
Due to a lack of standard encryption when transmitting sensitive information over the internet to a centralized monitoring service, the Eview EV-07S GPS Tracker discloses personally identifying infor…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2017-5239
|
2024-11-21 12:27 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253795
|
5.3 |
MEDIUM
Network
|
eviewgps
|
ev-07s_gps_tracker_firmware
|
Due to a lack of bounds checking, several input configuration fields for the Eview EV-07S GPS Tracker will overflow data stored in one variable to another, overwriting the data of another field.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-5238
|
2024-11-21 12:27 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253796
|
7.5 |
HIGH
Network
|
eviewgps
|
ev-07s_gps_tracker_firmware
|
Due to a lack of authentication, an unauthenticated user who knows the Eview EV-07S GPS Tracker's phone number can revert the device to a factory default configuration with an SMS command, "RESET!"
|
CWE-287
Improper Authentication
|
CVE-2017-5237
|
2024-11-21 12:27 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253797
|
7.8 |
HIGH
Local
|
fedoraproject
kde
|
fedora
ark
|
ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications.
|
CWE-78
OS Command
|
CVE-2017-5330
|
2024-11-21 12:27 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253798
|
9.8 |
CRITICAL
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-5511
|
2024-11-21 12:27 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253799
|
7.8 |
HIGH
Local
|
imagemagick
debian
|
imagemagick
debian_linux
|
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-5510
|
2024-11-21 12:27 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253800
|
7.8 |
HIGH
Local
|
imagemagick
|
imagemagick
|
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-5509
|
2024-11-21 12:27 |
2017-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
