Lucene search
K

2526 matches found

OSV
OSV
added 2017/08/08 12:29 a.m.3 views

CVE-2017-9940

A vulnerability was discovered in Siemens SiPass integrated All versions before V2.70 that could allow an attacker with access to a low-privileged user account to read or write files on the file system of the SiPass integrated server over the network...

8.1CVSS5.8AI score
Exploits0References2
GithubExploit
GithubExploit
added 2017/08/03 10:28 p.m.26 views

Exploit for CVE-2016-0040

CVE-2016-0040 This exploit builds upon SMMRootkit's 32Bit projec...

7.8CVSS7.4AI score0.24554EPSS
Exploits10
CNVD
CNVD
added 2017/08/02 12:0 a.m.4 views

Oracle PeopleSoft Enterprise PRTL Interaction Hub Remote Vulnerability

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle that provides human capital management, financial management, supplier relationship management, and more.PeopleSoft Enterprise PRTL Interaction Hub is one of the enterprise and Customer Interaction...

6.1CVSS6.5AI score0.0147EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/26 12:0 a.m.1 views

Inteno Router Information Disclosure Vulnerability

Inteno routers is a wireless router from Inteno Broadband Technologies in Sweden. A security vulnerability exists in Inteno routers, which stems from the program's failure to properly configure JUCI ACLs, which can be exploited to read and write files and add a root SSH key by sending JSON comman...

9CVSS8.9AI score0.01197EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2017/07/26 12:0 a.m.4 views

PT-2017-12151 · Sipcrack +1 · Sipcrack +1

Name of the Vulnerable Software and Affected Versions: SIPcrack version 0.2 Description: An out-of-bounds read and write flaw was found in the way SIPcrack processed SIP traffic, due to mishandling of 0x00 termination of a payload array. A remote attacker could potentially use this flaw to crash...

5.9CVSS5.5AI score0.02014EPSS
Exploits1References11
Exploit DB
Exploit DB
added 2017/07/20 12:0 a.m.27 views

Docker Daemon - Unprotected TCP Socket

Exploit Title: Docker Daemon - Unprotected TCP Socket Date: 20-07-2017 Exploit Author: Martin Pizala Vendor Homepage: https://www.docker.com Software Link: https://www.docker.com/get-docker Version: Since 0.4.7 2013-06-28 feature: mount host directories Tested on: Docker CE 17.06.0-ce and Docker...

7.4AI score
Exploits0
Oracle linux
Oracle linux
added 2017/07/18 12:0 a.m.59 views

freeradius security update

2.2.6-7 - Resolves: Bug1469115 CVE-2017-10979 freeradius: Out-of-bounds write in radcoalesce - Resolves: Bug1469118 CVE-2017-10978 freeradius: Out-of-bounds read/write due to improper output buffer size check in makesecret - Resolves: Bug1469120 CVE-2017-10980 freeradius: Memory leak in decodetlv...

9.8CVSS1.7AI score0.22202EPSS
Exploits0
OSV
OSV
added 2017/07/17 9:29 p.m.3 views

CVE-2017-9811

The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 version 8.0.4.312. By abusing the quarantine read and write operations, it is possible to elevate the privileges to root...

9.8CVSS5.8AI score0.10474EPSS
Exploits5References6
Prion
Prion
added 2017/07/17 5:29 p.m.20 views

Design/Logic Flaw

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

5CVSS8.4AI score0.03001EPSS
Exploits0References6Affected Software8
NVD
NVD
added 2017/07/17 5:29 p.m.26 views

CVE-2017-10978

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

7.5CVSS8.5AI score0.03001EPSS
Exploits0References6
OSV
OSV
added 2017/07/17 5:29 p.m.18 views

CVE-2017-10978

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

7.5CVSS7.4AI score
Exploits0References6
Cvelist
Cvelist
added 2017/07/17 4:0 p.m.25 views

CVE-2017-10978

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

8.6AI score0.03001EPSS
Exploits0References6
CVE
CVE
added 2017/07/17 4:0 p.m.136 views

CVE-2017-10978

FreeRADIUS is affected by CVE-2017-10978 (and related CVEs) with out-of-bounds memory handling in packet processing. The primary publicly documented issue for CVE-2017-10978 is an out-of-bounds read/write in make_secret() that can cause a crash and, in some disclosures, potential code execution, ...

7.5CVSS8.4AI score0.03001EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2017/07/17 4:0 p.m.45 views

CVE-2017-11361

Inteno routers are affected by CVE-2017-11361 due to a JUCI ACL misconfiguration. The issue allows the low-privilege "user" account to read and write files and to add a root SSH key by sending JSON commands to ubus. Exploitation is sometimes easy because the "user" password might be the default "...

9CVSS8.7AI score0.01197EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2017/07/17 4:0 p.m.25 views

CVE-2017-10978

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

7.5CVSS8.8AI score0.03001EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/07/17 12:0 a.m.27 views

CVE-2017-10978

An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in makesecret" and a denial of service...

7.5CVSS7.2AI score0.03001EPSS
Exploits0References4
CNVD
CNVD
added 2017/07/13 12:0 a.m.3 views

Siemens SiPass Integrated File Read/Write Vulnerability

SiPass server is a component of the SiPass centralized access control system that receives connections from clients for communication. A file read/write vulnerability exists in Siemens SiPass integrated, where an attacker with access to a low-privileged user account could read or write files on t...

8.1CVSS6.8AI score0.00859EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/05 12:0 a.m.5 views

Siemens OZW672 and OZW772 Data Read/Write Vulnerability

Siemens OZW672 and OZW772 are both building controller products from Siemens, Germany. A data read/write vulnerability exists in the Siemens OZW672 and OZW772. An attacker can exploit the vulnerability to read and write historical measurement data under certain conditions, or read and modify data...

6.5CVSS6.8AI score0.00761EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/29 12:0 a.m.1 views

Gentoo Local Privilege Vulnerability

Gentoo is an open source Linux system from the Gentoo Foundation. Ebuild in Gentoo may change directory and file permissions based on the order of installed packages, which can be exploited by a local attacker to read or write to a restricted directory, execute restricted commands via the affecte...

7.1CVSS7AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2017/06/26 7:29 a.m.4 views

CVE-2017-9466

The executable httpd on the TP-Link WR841N V8 router before TL-WR841NUNV8170210 contained a design flaw in the use of DES for block encryption. This resulted in incorrect access control, which allowed attackers to gain read-write access to system settings through the protected router configuratio...

9.8CVSS5.8AI score0.00488EPSS
Exploits2References1
Rows per page
Query Builder