|
267471
|
7.8 |
HIGH
Local
|
google
|
android
|
An elevation of privilege vulnerability in the NVIDIA Libnvparser component due to a memcpy into a fixed sized buffer with a user-controlled size could lead to a memory corruption and possible remote…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-0340
|
2024-11-21 12:02 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267472
|
5.5 |
MEDIUM
Local
|
google
|
android
|
An information disclosure vulnerability in the NVIDIA Video Driver due to an out-of-bounds read function in the Tegra Display Controller driver could result in possible information disclosure. This i…
|
CWE-200
Information Exposure
|
CVE-2017-0326
|
2024-11-21 12:02 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267473
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the inten…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9989
|
2024-11-21 12:02 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267474
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the inten…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9988
|
2024-11-21 12:02 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267475
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the inten…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9987
|
2024-11-21 12:02 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267476
|
5.4 |
MEDIUM
Network
|
ibm
|
jazz_reporting_service
|
IBM Jazz Foundation Reporting Service (JRS) 5.0 and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the inten…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9986
|
2024-11-21 12:02 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267477
|
7.5 |
HIGH
Network
|
torproject
|
tor
|
Tor 0.3.x before 0.3.0.9 has a guard-selection algorithm that only considers the exit relay (not the exit relay's family), which might allow remote attackers to defeat intended anonymity properties b…
|
CWE-200
Information Exposure
|
CVE-2017-0377
|
2024-11-21 12:02 |
2017-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267478
|
5.9 |
MEDIUM
Network
|
ibm
|
qradar_security_information_and_event_manager
|
IBM QRadar 7.2 and 7.3 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerabi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9972
|
2024-11-21 12:02 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267479
|
5.3 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 could allow an authenticated user with special privileges to view files that they should not have access to. IBM X-Force ID: 120275.
|
CWE-200
Information Exposure
|
CVE-2016-9983
|
2024-11-21 12:02 |
2017-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267480
|
6.5 |
MEDIUM
Network
|
ibm
|
sterling_b2b_integrator
|
IBM Sterling B2B Integrator Standard Edition 5.2 could allow an authenticated user to obtain sensitive information such as account lists due to improper access control. IBM X-Force ID: 120274.
|
CWE-200
Information Exposure
|
CVE-2016-9982
|
2024-11-21 12:02 |
2017-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
