|
252541
|
4.8 |
MEDIUM
Network
|
emc
|
rsa_authentication_manager
|
In EMC RSA Authentication Manager 8.2 SP1 and earlier, a malicious RSA Security Console Administrator could craft a token profile and store the profile name in the RSA Authentication Manager database…
|
CWE-79
Cross-site Scripting
|
CVE-2017-8000
|
2024-11-21 12:33 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252542
|
6.6 |
MEDIUM
Network
|
pivotal_software
cloudfoundry
|
cloud_foundry_uaa
cloud_foundry_uaa_bosh
cloud_foundry_cf
|
In Cloud Foundry cf-release versions prior to v264; UAA release all versions of UAA v2.x.x, 3.6.x versions prior to v3.6.13, 3.9.x versions prior to v3.9.15, 3.20.x versions prior to v3.20.0, and oth…
|
CWE-269
Improper Privilege Management
|
CVE-2017-8032
|
2024-11-21 12:33 |
2017-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252543
|
4.9 |
MEDIUM
Network
|
emc
|
data_protection_advisor
|
EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high privileged user may potentially exploit this vulnerability to access unauthorized informa…
|
CWE-22
Path Traversal
|
CVE-2017-8003
|
2024-11-21 12:33 |
2017-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252544
|
8.8 |
HIGH
Network
|
emc
|
data_protection_advisor
|
EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL injection vulnerabilities. A remote authenticated attacker may potentially exploit these vulnerabilities to gain information about…
|
CWE-89
SQL Injection
|
CVE-2017-8002
|
2024-11-21 12:33 |
2017-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252545
|
5.5 |
MEDIUM
Local
|
gonitro
|
nitro_pro
|
Nitro Pro 11.0.3 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted PCX file.
|
CWE-20
Improper Input Validation
|
CVE-2017-7950
|
2024-11-21 12:33 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252546
|
7.5 |
HIGH
Network
|
teamspeak
|
teamspeak_server
teamspeak_client
|
A potential Buffer Overflow Vulnerability (from a BB Code handling issue) has been identified in TeamSpeak Server version 3.0.13.6 (08/11/2016 09:48:33), it enables the users to Crash any WINDOWS Cli…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8290
|
2024-11-21 12:33 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252547
|
5.5 |
MEDIUM
Local
|
stdutility
|
stdu_viewer
|
STDU Viewer version 1.6.375 might allow user-assisted attackers to execute code via a crafted file. One threat model is a victim who obtains an untrusted crafted file from a remote location and issue…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8387
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252548
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mkv file that is mishandled during the opening of a directory in "Browser" mode, because o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8381
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252549
|
7.8 |
HIGH
Local
|
irfanview
|
fpx
irfanview
|
IrfanView version 4.44 (32bit) with FPX Plugin 4.45 allows remote attackers to execute arbitrary code or cause a denial of service (Heap Corruption and application crash) in processing a FlashPix (.F…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8370
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252550
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
|
IrfanView version 4.44 (32bit) has a "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3" issue, which might allow attackers to execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8369
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
