|
265301
|
4.5 |
MEDIUM
Adjacent
|
buffalo
|
bbr-4mg_firmware
bbr-4hg_firmware
|
Input validation issue in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to cause the device to become unresponsive via unspecified v…
|
CWE-20
Improper Input Validation
|
CVE-2017-10897
|
2024-11-21 12:06 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265302
|
6.1 |
MEDIUM
Network
|
buffalo
|
bbr-4mg_firmware
bbr-4hg_firmware
|
Cross-site scripting vulnerability in Buffalo BBR-4HG and and BBR-4MG broadband routers with firmware 1.00 to 1.48 and 2.00 to 2.07 allows an attacker to inject arbitrary web script or HTML via unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2017-10896
|
2024-11-21 12:06 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265303
|
7.8 |
HIGH
Local
|
j-lis
|
the_public_certification_service_for_individuals
|
Untrusted search path vulnerability in The Public Certification Service for Individuals "The JPKI user's software" Ver3.1 and earlier allows an attacker to gain privileges via a Trojan horse DLL in a…
|
CWE-426
Untrusted Search Path
|
CVE-2017-10893
|
2024-11-21 12:06 |
2017-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265304
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in a WiFI driver function, an integer overflow leading to heap buffer overflow may pote…
|
CWE-119
CWE-190
Incorrect Access of Indexable Resource ('Range Error')
Integer Overflow or Wraparound
|
CVE-2017-11043
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265305
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a possibility of stack corruption due to buffer overflow of Partition name whi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11007
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265306
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a Use After Free condition can occur during positioning.
|
CWE-416
Use After Free
|
CVE-2017-11006
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265307
|
9.8 |
CRITICAL
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, a Use After Free condition can occur during a deinitialization path.
|
CWE-416
Use After Free
|
CVE-2017-11005
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265308
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, ImsService and the IQtiImsExt AIDL APIs are not subject to access control.
|
CWE-862
Missing Authorization
|
CVE-2017-11042
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265309
|
7.8 |
HIGH
Local
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, in the coresight-tmc driver, a simultaneous read and enable of the ETR device after cha…
|
CWE-416
Use After Free
|
CVE-2017-11033
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265310
|
7.5 |
HIGH
Network
|
google
|
android
|
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, the VIDIOC_G_SDE_ROTATOR_FENCE ioctl command can be used to cause a Use After Free cond…
|
CWE-200
CWE-416
Information Exposure
Use After Free
|
CVE-2017-11031
|
2024-11-21 12:06 |
2017-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
