Lucene search
+L

3056 matches found

Prion
Prion
added 2017/07/05 8:29 p.m.19 views

Design/Logic Flaw

IrfanView version 4.44 32bit with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "Read Access Violation on Control Flow starting at FPX!GetPlugInInfo+0x0000000000012bf2."...

6.8CVSS8AI score0.01265EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2017/07/05 8:29 p.m.14 views

Code injection

XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .bie file, related to a "Read Access Violation on Block Data Move starting at Xjbig+0x000000000000121b."...

6.8CVSS7.7AI score0.01556EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2017/07/05 8:29 p.m.27 views

CVE-2017-9926

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000000000400000+0x000000000001b596."...

8.8CVSS7.3AI score0.01268EPSS
Exploits0References2
Prion
Prion
added 2017/07/05 8:29 p.m.13 views

Design/Logic Flaw

IrfanView version 4.44 32bit with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "Read Access Violation on Control Flow starting at FPX!FPXGetScanDevicePropertyGroup+0x000000000000c99a."...

6.8CVSS8AI score0.01265EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2017/07/05 8:29 p.m.12 views

Design/Logic Flaw

IrfanView version 4.44 32bit with FPX Plugin 4.46 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "Read Access Violation on Block Data Move starting at FPX!FPXGetScanDevicePropertyGroup+0x000000000000b84f."...

6.8CVSS8AI score0.02092EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2017/07/05 8:29 p.m.2 views

UBUNTU-CVE-2017-9927

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000000000400000+0x000000000001b5fe."...

8.8CVSS7.4AI score0.01268EPSS
Exploits0References3
OSV
OSV
added 2017/07/05 8:29 p.m.3 views

UBUNTU-CVE-2017-9926

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000000000400000+0x000000000001b596."...

8.8CVSS7.4AI score0.01268EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/07/05 7:0 p.m.28 views

CVE-2017-9926

In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image0000000000400000+0x000000000001b596."...

9AI score0.01268EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/07/05 7:0 p.m.35 views

CVE-2017-9926

Removed by vendor...

8.8CVSS8.9AI score0.01268EPSS
Exploits0
CVE
CVE
added 2017/06/24 12:0 a.m.362 views

CVE-2017-9833

CVE-2017-9833 affects BOA Web Server 0.94.14rc21, enabling arbitrary file read via path traversal through the FILECAMERA parameter in /cgi-bin/wapopen. Exploitation reads files with root privileges without credentials. Affected component: BOA Web Server; root cause: improper handling of FILECAMER...

7.8CVSS7.5AI score0.68243EPSS
In wildExploits6References2Affected Software1
CNVD
CNVD
added 2017/06/23 12:0 a.m.5 views

Siemens XHQ Elevation of Privilege Vulnerability

XHQ Production Operations Intelligence is Siemens Energy's flagship solution, widely deployed by the world's largest oil & gas and chemical companies. An elevation of privilege vulnerability exists in Siemens XHQ 4 and XHQ 5. It allows an authenticated remote user with low privileges to gain read...

6.5CVSS7.2AI score0.01054EPSS
Exploits0References1
NVD
NVD
added 2017/06/15 4:29 p.m.28 views

CVE-2016-10395

In FlexNet Publisher versions before Luton SP1 11.14.1.1 running FlexNet Publisher Licensing Service on Windows platform, a boundary error related to a named pipe within the FlexNet Publisher Licensing Service can be exploited to cause an out-of-bounds memory read access and subsequently execute...

7.8CVSS8.4AI score0.00402EPSS
Exploits0References6
Hacker One
Hacker One
added 2017/06/01 2:53 a.m.22 views

U.S. Dept Of Defense: Exposed FTP Credentials on ███████

Summary: An exposed configuration file leaks FTP credentials to a DoD server. Description: The config file hosted onftp://█████████/pub/misc/FTP███████Sign.exe.config exposes a username █████████ and associated password ███████. These are valid credentials for the FTP server operating on...

1.3AI score
Exploits0
OSV
OSV
added 2017/04/24 7:59 p.m.1 views

CVE-2017-3548

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: Integration Broker. Supported versions that are affected are 8.54 and 8.55. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.5CVSS5.8AI score0.25832EPSS
Exploits9References5
OSV
OSV
added 2017/04/24 7:59 p.m.8 views

CVE-2017-3552

Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications subcomponent: OPERA Room Image/Picture Setup. Supported versions that are affected are 5.4.0.x, 5.4.1.x, 5.4.2.x, 5.4.3.x, 5.5.0.x and 5.5.1.x. Easily "exploitable" vulnerability allows...

4.3CVSS5.8AI score0.00956EPSS
Exploits0References2
OSV
OSV
added 2017/04/24 7:59 p.m.2 views

CVE-2017-3490

Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications subcomponent: Limits and Collateral. Supported versions that are affected are 12.0.0 and 12.1.0. Difficult to exploit vulnerability allows low privileged attacker...

3.1CVSS5.8AI score0.01015EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.2 views

CVE-2017-3498

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Kernel. The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris...

3.3CVSS5.8AI score0.00394EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.3 views

CVE-2017-3474

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: Zone. The supported version that is affected is 11.3. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Solaris executes to compromise Solaris. Successf...

3.3CVSS5.8AI score0.00394EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.6 views

CVE-2017-3473

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications subcomponent: Miscellaneous. Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access vi...

4.3CVSS5.8AI score0.0127EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.5 views

CVE-2016-5551

Vulnerability in the Solaris Cluster component of Oracle Sun Systems Products Suite subcomponent: NAS device addition. The supported version that is affected is 4.3. Easily "exploitable" vulnerability allows unauthenticated attacker with logon to the infrastructure where Solaris Cluster executes ...

2.8CVSS5.8AI score0.00371EPSS
Exploits0References3
Rows per page
Query Builder