|
264351
|
9.8 |
CRITICAL
Network
|
quest
|
kace_asset_management_appliance
kace_systems_management_appliance
k1000_as_a_service
|
SQL injection exists in Quest KACE Asset Management Appliance 6.4.120822 through 7.2, Systems Management Appliance 6.4.120822 through 7.2.101, and K1000 as a Service 7.0 through 7.2.
|
CWE-89
SQL Injection
|
CVE-2017-12567
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264352
|
8.8 |
HIGH
Network
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12644
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264353
|
6.5 |
MEDIUM
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-12643
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264354
|
8.8 |
HIGH
Network
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12642
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264355
|
8.8 |
HIGH
Network
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12641
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264356
|
8.8 |
HIGH
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-12640
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264357
|
8.8 |
HIGH
Network
|
kaseya
|
unitrends_backup
|
It was discovered that an issue in the session logic in Unitrends Backup (UB) before 10.0.0 allowed using the LOGDIR environment variable during a web session to elevate an existing low-privilege use…
|
NVD-CWE-noinfo
|
CVE-2017-12479
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264358
|
9.8 |
CRITICAL
Network
|
kaseya
|
unitrends_backup
|
It was discovered that the api/storage web interface in Unitrends Backup (UB) before 10.0.0 has an issue in which one of its input parameters was not validated. A remote attacker could use this flaw …
|
CWE-287
Improper Authentication
|
CVE-2017-12478
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264359
|
9.8 |
CRITICAL
Network
|
kaseya
|
unitrends_backup
|
It was discovered that the bpserverd proprietary protocol in Unitrends Backup (UB) before 10.0.0, as invoked through xinetd, has an issue in which its authentication can be bypassed. A remote attacke…
|
CWE-287
Improper Authentication
|
CVE-2017-12477
|
2024-11-21 12:09 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264360
|
8.8 |
HIGH
Network
|
opencv
debian
|
opencv
debian_linux
|
OpenCV (Open Source Computer Vision Library) through 3.3 has an out-of-bounds write error in the function FillColorRow4 in utils.cpp when reading an image file by using cv::imread.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12606
|
2024-11-21 12:09 |
2017-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
