|
254051
|
6.1 |
MEDIUM
Network
|
netiq
|
imanager
|
Multiple potential reflected XSS issues exist in NetIQ iManager versions before 2.7.7 Patch 10 HF2 and 3.0.3.2.
|
CWE-79
Cross-site Scripting
|
CVE-2017-7425
|
2024-11-21 12:31 |
2017-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254052
|
8.8 |
HIGH
Network
|
enalean
|
tuleap
|
An issue was discovered in Enalean Tuleap 9.6 and prior versions. The vulnerability exists because the User::getRecentElements() method is using the unserialize() function with a preference value tha…
|
CWE-94
Code Injection
|
CVE-2017-7411
|
2024-11-21 12:31 |
2017-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254053
|
7.2 |
HIGH
Network
|
fortinet
|
fortiwlc
|
An OS Command Injection vulnerability in Fortinet FortiWLC 6.1-2 through 6.1-5, 7.0-7 through 7.0-10, 8.0 through 8.2, and 8.3.0 through 8.3.2 file management AP script download webUI page allows an …
|
CWE-78
OS Command
|
CVE-2017-7341
|
2024-11-21 12:31 |
2017-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254054
|
5.4 |
MEDIUM
Network
|
fortinet
|
fortiwlc
|
A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC 6.1-x (6.1-2, 6.1-4 and 6.1-5); 7.0-x (7.0-7, 7.0-8, 7.0-9, 7.0-10); and 8.x (8.0, 8.1, 8.2 and 8.3.0-8.3.2) allows an authenticated us…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7335
|
2024-11-21 12:31 |
2017-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254055
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "Security" component. It allows attackers to bypass the keychain access p…
|
CWE-521
Weak Password Requirements
|
CVE-2017-7150
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254056
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "StorageKit" component. It allows attackers to discover passwords for APF…
|
NVD-CWE-noinfo
|
CVE-2017-7149
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254057
|
3.3 |
LOW
Local
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Location Framework" component. It allows attackers to obtain sensitive location information via a…
|
CWE-200
Information Exposure
|
CVE-2017-7148
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254058
|
5.3 |
MEDIUM
Network
|
apple
|
apple_support
|
An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is affected. The issue involves the "Analytics" component. It allows remote attackers to obtain sensitive a…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2017-7147
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254059
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Security" component. It allows attackers to track users across installs via a crafted app that le…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-7146
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254060
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Time" component. The "Setting Time Zone" feature mishandles the possibility of using location dat…
|
CWE-275
Permission Issues
|
CVE-2017-7145
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
