|
255201
|
7.5 |
HIGH
Network
|
fortinet
|
fortios
|
An information disclosure vulnerability in Fortinet FortiOS 5.6.0, 5.4.4 and below versions allows attacker to get FortiOS version info by inspecting FortiOS IKE VendorID packets.
|
CWE-200
Information Exposure
|
CVE-2017-3130
|
2024-11-21 12:24 |
2017-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255202
|
7.5 |
HIGH
Network
|
apache
|
cxf
|
The OAuth2 Hawk and JOSE MAC Validation code in Apache CXF prior to 3.0.13 and 3.1.x prior to 3.1.10 is not using a constant time MAC signature comparison algorithm which may be exploited by sophisti…
|
NVD-CWE-noinfo
|
CVE-2017-3156
|
2024-11-21 12:24 |
2017-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255203
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
Adobe Connect versions 9.6.1 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to a stored cross-site scripting attack.
|
CWE-79
Cross-site Scripting
|
CVE-2017-3103
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255204
|
6.1 |
MEDIUM
Network
|
adobe
|
connect
|
Adobe Connect versions 9.6.1 and earlier have a reflected cross-site scripting vulnerability. Successful exploitation could lead to a reflected cross-site scripting attack.
|
CWE-79
Cross-site Scripting
|
CVE-2017-3102
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255205
|
7.5 |
HIGH
Network
|
adobe
|
connect
|
Adobe Connect versions 9.6.1 and earlier have a clickjacking vulnerability. Successful exploitation could lead to a clickjacking attack.
|
NVD-CWE-noinfo
|
CVE-2017-3101
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255206
|
6.5 |
MEDIUM
Network
|
adobe
|
flash_player_desktop_runtime
flash_player
|
Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 2 BitmapData class. Successful exploitation could lead to memory address di…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-3100
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255207
|
8.8 |
HIGH
Network
|
adobe
|
flash_player_desktop_runtime
flash_player
|
Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 3 raster data model. Successful exploitation could lead to arbitrary code e…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-3099
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255208
|
6.5 |
MEDIUM
Network
|
adobe
|
flash_player_desktop_runtime
flash_player
|
Adobe Flash Player versions 26.0.0.131 and earlier have a security bypass vulnerability related to the Flash API used by Internet Explorer. Successful exploitation could lead to information disclosur…
|
NVD-CWE-noinfo
|
CVE-2017-3080
|
2024-11-21 12:24 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255209
|
7.8 |
HIGH
Local
|
iceni
|
infix
|
An out-of-bounds write vulnerability exists in the PDF parsing functionality of Infix 7.1.5. A specially crafted PDF file can cause a vulnerability resulting in potential memory corruption. An attack…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-2863
|
2024-11-21 12:24 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255210
|
8.8 |
HIGH
Network
|
freedesktop
|
poppler
|
An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causi…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-2820
|
2024-11-21 12:24 |
2017-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
