|
264201
|
7.5 |
HIGH
Network
|
expressionengine
|
expressionengine
|
ExpressionEngine version 2.x < 2.11.8 and version 3.x < 3.5.5 create an object signing token with weak entropy. Successfully guessing the token can lead to remote code execution.
|
CWE-331
Insufficient Entropy
|
CVE-2017-0897
|
2024-11-21 12:03 |
2017-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264202
|
7.8 |
HIGH
Local
|
google
|
android
|
A remote code execution vulnerability in libxml2 could enable an attacker using a specially crafted file to execute arbitrary code within the context of an unprivileged process. This issue is rated a…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-0663
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264203
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the kernel ION subsystem could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low because it f…
|
CWE-200
Information Exposure
|
CVE-2017-0651
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264204
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
An information disclosure vulnerability in the Synaptics touchscreen driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Low beca…
|
CWE-200
Information Exposure
|
CVE-2017-0650
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264205
|
7.0 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the MediaTek sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Mode…
|
NVD-CWE-noinfo
|
CVE-2017-0649
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264206
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
An elevation of privilege vulnerability in the kernel FIQ debugger could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High d…
|
NVD-CWE-noinfo
|
CVE-2017-0648
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264207
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in libziparchive could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could b…
|
CWE-200
Information Exposure
|
CVE-2017-0647
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264208
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in Bluetooth component could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate due to detai…
|
CWE-200
Information Exposure
|
CVE-2017-0646
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264209
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An elevation of privilege vulnerability in Bluetooth could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it is a local …
|
CWE-200
Information Exposure
|
CVE-2017-0645
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264210
|
5.5 |
MEDIUM
Local
|
google
|
android
|
A remote denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High severity due to the poss…
|
NVD-CWE-noinfo
|
CVE-2017-0644
|
2024-11-21 12:03 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
