|
255331
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
The dump_section_as_bytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-7209
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255332
|
7.1 |
HIGH
Local
|
libav
|
libav
|
The decode_residual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (buffer over-read) or obtain sensitive information from process memory via a crafted h264…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7208
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255333
|
5.5 |
MEDIUM
Local
|
artifex
|
ghostscript
|
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-7207
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255334
|
7.1 |
HIGH
Local
|
libav
|
libav
|
The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory v…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7206
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255335
|
6.1 |
MEDIUM
Network
|
gamepanelx
|
gamepanelx-v3
|
A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. The vulnerability exists due to insufficient filtration of user-supplied data (a) passed to the "GamePanelX-V3-master/ajax/ajax.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7205
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255336
|
6.1 |
MEDIUM
Network
|
imdbphp_project
|
imdbphp
|
A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The vulnerability exists due to insufficient filtration of user-supplied data (name) passed to the "imdbphp-master/demo/search.php" URL. …
|
CWE-79
Cross-site Scripting
|
CVE-2017-7204
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255337
|
6.1 |
MEDIUM
Network
|
zoneminder
|
zoneminder
|
A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder-maste…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7203
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255338
|
6.1 |
MEDIUM
Network
|
slims
|
slims7_cendana
|
Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. The vulnerabilities exist due to insufficient filtration of user-supplied data (id) passed to the 'slims7_cen…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7202
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255339
|
5.8 |
MEDIUM
Network
|
openstack
|
glance
|
An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible t…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-7200
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255340
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7187
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
