** 출처: [K-ICT 빅데이터센터] 빅데이터 활용 단계별 업무절차 및 기술 활용 매뉴얼 v1.0

** 매뉴얼:

실무자를_위한_빅데이터_업무절차_및_기술활용_매뉴얼_1.0.pdf

 

저작자 표시 비영리 변경 금지
신고
Posted by manga0713

 

 

 

 

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

 

 

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
cacti -- cacti spikekill.php in Cacti before 1.1.16 might allow remote attackers to execute arbitrary code via the avgnan, outlier-start, or outlier-end parameter. 2017-08-01 7.5 CVE-2017-12065
BID(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server, as demonstrated by copying configuration data into a readable filesystem. 2017-07-30 10.0 CVE-2017-9479
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to obtain root access to the Network Processor (NP) Linux system by enabling a TELNET daemon (through CVE-2017-9479 exploitation) and then establishing a TELNET session. 2017-07-30 10.0 CVE-2017-9482
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows Network Processor (NP) Linux users to obtain root access to the Application Processor (AP) Linux system via shell metacharacters in commands. 2017-07-30 10.0 CVE-2017-9483
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version DPC3941_2.5s3_PROD_sey); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_sey) devices allows remote attackers to execute arbitrary code via a specific (but unstated) exposed service. NOTE: the scope of this CVE does NOT include the concept of "Unnecessary Services" in general; the scope is only a single service that is unnecessarily exposed, leading to remote code execution. The details of that service might be disclosed at a later date. 2017-07-30 7.5 CVE-2017-9521
MISC(link is external)
cisco -- mx011anm_firmware The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows physically proximate attackers to execute arbitrary commands as root by pulling up the diagnostics menu on the set-top box, and then posting to a Web Inspector route. 2017-07-30 7.2 CVE-2017-9497
MISC(link is external)
etoilewebdesign -- ultimate_product_catalog The Etoile Ultimate Product Catalog plugin 4.2.11 for WordPress has SQL injection with these wp-admin/admin-ajax.php POST actions: catalogue_update_order list-item, video_update_order video-item, image_update_order list-item, tag_group_update_order list_item, category_products_update_order category-product-item, custom_fields_update_order field-item, categories_update_order category-item, subcategories_update_order subcategory-item, and tags_update_order tag-list-item. 2017-08-02 7.5 CVE-2017-12199
MISC(link is external)
glpi-project -- glpi SQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 via the start parameter. 2017-07-28 7.5 CVE-2017-11184
CONFIRM(link is external)
CONFIRM(link is external)
ibm -- bigfix_platform IBM Tivoli Endpoint Manager could allow a unauthorized user to consume all resources and crash the system. IBM X-Force ID: 123906. 2017-07-31 7.8 CVE-2017-1227
CONFIRM(link is external)
MISC(link is external)
imagemagick -- imagemagick The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an integer signedness error leading to excessive memory consumption via a crafted DCM file. 2017-08-02 7.1 CVE-2017-12140
BID(link is external)
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service. 2017-08-04 7.8 CVE-2017-12429
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service. 2017-08-04 7.8 CVE-2017-12430
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allows attackers to cause a denial of service. 2017-08-04 7.1 CVE-2017-12432
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service. 2017-08-04 7.8 CVE-2017-12435
CONFIRM(link is external)
inversepath -- tenshi Tenshi 0.15 creates a tenshi.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for tenshi.pid modification before a root script executes a "kill `cat /pathname/tenshi.pid`" command. 2017-07-30 7.8 CVE-2017-11746
MISC(link is external)
kiri -- tween Untrusted search path vulnerability in Tween Ver1.6.6.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. 2017-08-02 9.3 CVE-2017-2279
JVN(link is external)
lame_project -- lame There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file. 2017-07-28 7.5 CVE-2017-11720
MISC(link is external)
microsoft -- outlook Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a remote code execution vulnerability due to the way Microsoft Outlook parses specially crafted email messages, aka "Microsoft Office Outlook Memory Corruption Vulnerability" 2017-08-01 9.3 CVE-2017-8663
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
netcomm -- 4gt101w_bootloader NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 do not require authentication for logfile.html, status.html, or system_config.html. 2017-07-28 7.5 CVE-2017-11645
MISC(link is external)
nvidia -- gpu_driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where the size of an input buffer is not validated which may lead to denial of service or potential escalation of privileges 2017-07-28 7.2 CVE-2017-6253
CONFIRM(link is external)
nvidia -- gpu_driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a pointer passed from an user to the driver is used without validation which may lead to denial of service or potential escalation of privileges. 2017-07-28 7.2 CVE-2017-6254
CONFIRM(link is external)
nvidia -- gpu_driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where an improper input parameter handling may lead to a denial of service or potential escalation of privileges. 2017-07-28 7.2 CVE-2017-6255
CONFIRM(link is external)
openexif_project -- openexif The ExifImageFile::readImage function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted jpg file. 2017-07-31 7.1 CVE-2017-11118
MISC
timidity++_project -- timidity++ The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mid file. NOTE: CPU consumption might be relevant when using the --background option. 2017-07-31 7.1 CVE-2017-11549
MISC
trendmicro -- control_manager SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x1b07 due to lack of proper user input validation in cmdHandlerTVCSCommander.dll. Fomerly ZDI-CAN-4560. 2017-08-02 7.5 CVE-2017-11383
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x3b21 due to lack of proper user input validation in mdHandlerLicenseManager.dll. Fomerly ZDI-CAN-4561. 2017-08-02 7.5 CVE-2017-11384
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x6b1b due to lack of proper user input validation in cmdHandlerStatusMonitor.dll. Formerly ZDI-CAN-4545. 2017-08-02 7.5 CVE-2017-11385
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when executing opcode 0x4707 due to lack of proper user input validation in cmdHandlerNewReportScheduler.dll. Formerly ZDI-CAN-4549. 2017-08-02 7.5 CVE-2017-11386
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager Directory traversal vulnerability in Trend Micro Control Manager 6.0 allows remote code execution by attackers able to drop arbitrary files in a web-facing directory. Formerly ZDI-CAN-4684. 2017-08-02 7.5 CVE-2017-11389
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- deep_discovery_director A command injection vulnerability exists in Trend Micro Deep Discovery Director 1.1 that allows an attacker to restore accounts that can access the pre-configuration console. 2017-08-01 7.5 CVE-2017-11381
CONFIRM(link is external)
MISC(link is external)
trendmicro -- interscan_messaging_security_virtual_appliance Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the "t" parameter within modTMCSS Proxy. Formerly ZDI-CAN-4744. 2017-08-03 9.0 CVE-2017-11391
BID(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- officescan Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the tr parameter within Proxy.php. Formerly ZDI-CAN-4543. 2017-08-03 10.0 CVE-2017-11393
BID(link is external)
MISC(link is external)
MISC

 

 

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
arris -- tg1682g_firmware The Comcast firmware on Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST) devices allows configuration changes via CSRF. 2017-07-30 6.8 CVE-2017-9489
MISC(link is external)
artifex -- ghostscript psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document, related to an out-of-bounds read in the igc_reloc_struct_ptr function in psi/igc.c. 2017-07-28 6.8 CVE-2017-11714
CONFIRM(link is external)
CONFIRM(link is external)
bigtreecms -- bigtree_cms SQL injection vulnerability in core\admin\auto-modules\forms\process.php in BigTree 4.2.18 allows remote authenticated users to execute arbitrary SQL commands via the tags array parameter. 2017-07-29 6.5 CVE-2017-11736
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices sets the CM MAC address to a value with a two-byte offset from the MTA/VoIP MAC address, which indirectly allows remote attackers to discover hidden Home Security Wi-Fi networks by leveraging the embedding of the MTA/VoIP MAC address into the DNS hostname. 2017-07-30 5.0 CVE-2017-9478
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to obtain unintended access to the Network Processor (NP) 169.254/16 IP network by adding a routing-table entry that specifies the LAN IP address as the router for that network. 2017-07-30 5.0 CVE-2017-9481
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to discover a CM MAC address by sniffing Wi-Fi traffic and performing simple arithmetic calculations. 2017-07-30 5.0 CVE-2017-9484
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to write arbitrary data to a known /var/tmp/sess_* pathname by leveraging the device's operation in UI dev mode. 2017-07-30 5.0 CVE-2017-9485
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to compute password-of-the-day values via unspecified vectors. 2017-07-30 5.0 CVE-2017-9486
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to discover a WAN IPv6 IP address by leveraging knowledge of the CM MAC address. 2017-07-30 4.3 CVE-2017-9487
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) and DPC3941T (firmware version DPC3941_2.5s3_PROD_sey) devices allows remote attackers to access the web UI by establishing a session to the wan0 WAN IPv6 address and then entering unspecified hardcoded credentials. This wan0 interface cannot be accessed from the public Internet. 2017-07-30 5.8 CVE-2017-9488
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version DPC3941_2.5s3_PROD_sey); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_sey) devices does not set the secure flag for cookies in an https session to an administration application, which makes it easier for remote attackers to capture these cookies by intercepting their transmission within an http session. 2017-07-30 5.0 CVE-2017-9491
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); Cisco DPC3939B (firmware version dpc3939b-v303r204217-150321a-CMCST); Cisco DPC3941T (firmware version DPC3941_2.5s3_PROD_sey); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_sey) devices does not include the HTTPOnly flag in a Set-Cookie header for administration applications, which makes it easier for remote attackers to obtain potentially sensitive information via script access to cookies. 2017-07-30 5.0 CVE-2017-9492
MISC(link is external)
cisco -- ios Cisco IOS before 15.2(4)S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service (CPU consumption, watchdog timeout, crash) by walking specific SNMP objects. 2017-08-02 6.8 CVE-2012-5030
CISCO(link is external)
cisco -- mx011anm_firmware The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows remote attackers to conduct successful forced-pairing attacks (between an RF4CE remote and a set-top box) by repeatedly transmitting the same pairing code. 2017-07-30 5.8 CVE-2017-9493
MISC(link is external)
cisco -- mx011anm_firmware The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows physically proximate attackers to access an SNMP server by connecting a cable to the Ethernet port, and then establishing communication with the device's link-local IPv6 address. 2017-07-30 4.6 CVE-2017-9496
MISC(link is external)
connectwise -- manage services/system_io/actionprocessor/System.rails in ConnectWise Manage 2017.5 is vulnerable to Cross-Site Request Forgery (CSRF), as demonstrated by changing an e-mail address setting. 2017-07-31 6.8 CVE-2017-11726
MISC(link is external)
connectwise -- manage services/system_io/actionprocessor/Contact.rails in ConnectWise Manage 2017.5 allows arbitrary client-side JavaScript code execution (involving a ContactCommon field) on victims who click on a crafted link, aka XSS. 2017-07-31 4.3 CVE-2017-11727
MISC(link is external)
earcms -- ear_music In Earcms Ear Music through 4.1 build 20170710, remote authenticated users can execute arbitrary PHP code by changing the allowable music-upload extensions to include .php in addition to .mp3 and .m4a in admin.php?iframe=config_upload, and then using user.php/music/add/ to upload the code. 2017-07-30 6.0 CVE-2017-11756
MISC(link is external)
ffmpeg -- ffmpeg The dnxhd_decode_header function in libavcodec/dnxhddec.c in FFmpeg through 3.3.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via a crafted DNxHD file. 2017-07-28 6.8 CVE-2017-11719
BID(link is external)
CONFIRM(link is external)
gigaccsecure -- gigacc_office GigaCC OFFICE ver.2.3 and earlier allows remote attackers to execute arbitrary OS commands via specially crafted mail template. 2017-08-02 6.0 CVE-2016-7844
BID(link is external)
MISC(link is external)
MISC(link is external)
gigaccsecure -- gigacc_office GigaCC OFFICE ver.2.3 and earlier allows remote attackers to upload arbitrary files as a user profile image, which may be exploited for unauthorized file sharing. 2017-08-02 5.5 CVE-2016-7845
BID(link is external)
MISC(link is external)
MISC(link is external)
gitlab -- gitlab GitLab Enterprise Edition (EE) before 8.17.7, 9.0.11, 9.1.8, 9.2.8, and 9.3.8 allows an authenticated user with the ability to create a project to use the mirroring feature to potentially read repositories belonging to other users. 2017-08-02 4.0 CVE-2017-11437
CONFIRM(link is external)
gnu -- glibc The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path DNS spoofing attacks due to IP fragmentation. 2017-08-01 4.3 CVE-2017-12132
MISC
MISC
graphicsmagick -- graphicsmagick The WriteOnePNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the program's actual control flow was inconsistent with its indentation. This resulted in a logging statement executing outside of a loop, and consequently using an invalid array index corresponding to the loop's exit condition. 2017-07-28 4.3 CVE-2017-11722
MISC(link is external)
ibm -- api_connect IBM API Connect 5.0.0.0 could allow a user to bypass policy restrictions and create non-compliant passwords which could be intercepted and decrypted using man in the middle techniques. IBM X-Force ID: 127160. 2017-07-31 4.3 CVE-2017-1386
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- i IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379. 2017-07-31 5.0 CVE-2017-1460
MISC(link is external)
MISC(link is external)
ibm -- infosphere_information_server IBM InfoSphere Information Server 9.1, 11.3, and 11.5 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 127155. 2017-08-02 6.4 CVE-2017-1383
CONFIRM(link is external)
MISC(link is external)
ibm -- infosphere_information_server A network layer security vulnerability in InfoSphere Information Server 9.1, 11.3, and 11.5 can lead to privilege escalation or unauthorized access. IBM X-Force ID: 128466. 2017-08-02 6.8 CVE-2017-1467
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_information_server IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a local user to gain elevated privileges by placing arbitrary files in installation directories. IBM X-force ID: 128467. 2017-08-02 4.6 CVE-2017-1468
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_information_server IBM InfoSphere Information Server 9.1, 11.3, and 11.5 could allow a privileged user to cause a memory dump that could contain highly sensitive information including access credentials. IBM X-Force ID: 128693. 2017-08-02 4.0 CVE-2017-1495
CONFIRM(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 10.1, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 119727. 2017-07-31 6.8 CVE-2016-9714
CONFIRM(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 119729. 2017-07-31 6.8 CVE-2016-9716
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 product. It enables attackers by exposing the presence of duplicated parameters which may produce an anomalous behavior in the application that can be potentially exploited. 2017-07-31 4.0 CVE-2016-9717
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 126062. 2017-08-03 4.3 CVE-2017-1327
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- inotes IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 126234. 2017-07-31 4.3 CVE-2017-1332
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- jazz_reporting_service IBM Jazz Reporting Service (JRS) 5.0 and 6.0 could disclose sentive information, including user credentials, through an error message from the Report Builder administrator configuration page. IBM X-Force ID: 126863. 2017-07-31 4.0 CVE-2017-1370
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- mobilefirst_platform_foundation A Reflected Cross Site Scripting (XSS) vulnerability exists in the authorization function exposed by RESTful Web Api of IBM Worklight Framework 6.1, 6.2, 6.3, 7.0, 7.1, and 8.0. The vulnerable parameter is "scope"; if you set as its value a "realm" not defined in authenticationConfig.xml, you get an HTTP 403 Forbidden response and the value will be reflected in the body of the HTTP response. By setting it to arbitrary JavaScript code it is possible to modify the flow of the authorization function, potentially leading to credential disclosure within a trusted session. 2017-08-01 4.3 CVE-2017-1500
CONFIRM(link is external)
MISC(link is external)
ibm -- websphere_application_server IBM WebSphere Application Server version 9.0.0.4 could provide weaker than expected security after using the PasswordUtil command to enable AES password encryption. IBM X-Force ID: 129579. 2017-08-03 4.0 CVE-2017-1504
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- websphere_mq_internet_pass-thru IBM WebSphere MQ Internet Pass-Thru 2.0 and 2.1 could allow n attacker to cause the MQIPT to stop responding due to an incorrectly configured security policy. IBM X-Force ID: 121156. 2017-08-02 5.0 CVE-2017-1118
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- websphere_portal IBM WebSphere Portal and Web Content Manager 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 125457. 2017-07-31 4.3 CVE-2017-1303
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
iid -- rbb_speed_test The RBB SPEED TEST App for Android version 2.0.3 and earlier, RBB SPEED TEST App for iOS version 2.1.0 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. 2017-08-02 4.3 CVE-2017-2278
MISC(link is external)
JVN(link is external)
imagemagick -- imagemagick The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9-3 and 7.x through 7.0.6-3 has memory leaks involving the quantum_info and clone_info data structures. 2017-07-29 4.3 CVE-2017-11724
CONFIRM(link is external)
imagemagick -- imagemagick The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. 2017-07-30 4.3 CVE-2017-11750
CONFIRM(link is external)
imagemagick -- imagemagick The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file. 2017-07-30 4.3 CVE-2017-11751
CONFIRM(link is external)
imagemagick -- imagemagick The ReadMAGICKImage function in coders/magick.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file. 2017-07-30 4.3 CVE-2017-11752
CONFIRM(link is external)
imagemagick -- imagemagick The GetImageDepth function in MagickCore/attribute.c in ImageMagick 7.0.6-4 might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted Flexible Image Transport System (FITS) file. 2017-07-30 4.3 CVE-2017-11753
MISC(link is external)
imagemagick -- imagemagick The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call. 2017-07-30 4.3 CVE-2017-11754
MISC(link is external)
imagemagick -- imagemagick The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an AcquireSemaphoreInfo call. 2017-07-30 4.3 CVE-2017-11755
MISC(link is external)
imagemagick -- imagemagick ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c. 2017-08-03 5.0 CVE-2017-12418
CONFIRM(link is external)
imagemagick -- imagemagick The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5 and 7.x before 7.0.6-5 allows remote attackers to cause a denial of service (memory leak) via a crafted file, related to the WriteMSLImage function. 2017-08-04 4.3 CVE-2017-12427
CONFIRM(link is external)
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c. 2017-08-04 5.0 CVE-2017-12428
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service. 2017-08-04 4.3 CVE-2017-12431
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause a denial of service, related to ResizeMagickMemory in memory.c. 2017-08-04 4.3 CVE-2017-12433
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.6-1, a missing NULL check vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service (assertion failure) in DestroyImageInfo in image.c. 2017-08-04 4.3 CVE-2017-12434
CONFIRM(link is external)
joomla -- joomla! The CMS installer in Joomla! before 3.7.4 does not verify a user's ownership of a webspace, which allows remote authenticated users to gain control of the target application by leveraging Certificate Transparency logs. 2017-08-02 6.5 CVE-2017-11364
SECTRACK(link is external)
CONFIRM
MISC
MISC(link is external)
libid3tag_project -- libid3tag The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file. 2017-07-31 4.3 CVE-2017-11550
MISC
libid3tag_project -- libid3tag The id3_field_parse function in field.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (OOM) via a crafted MP3 file. 2017-07-31 4.3 CVE-2017-11551
MISC
libming -- ming A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-28 4.3 CVE-2017-11703
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-28 4.3 CVE-2017-11704
MISC(link is external)
MISC(link is external)
libming -- ming A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-28 4.3 CVE-2017-11705
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer over-read was found in the function OpCode (called from decompileSETMEMBER) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11728
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1440) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11729
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer over-read was found in the function OpCode (called from decompileINCR_DECR line 1474) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11730
MISC(link is external)
MISC(link is external)
libming -- ming An invalid memory read vulnerability was found in the function OpCode (called from isLogicalOp and decompileIF) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11731
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer overflow vulnerability was found in the function dcputs (called from decompileIMPLEMENTS) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11732
MISC(link is external)
MISC(link is external)
libming -- ming A null pointer dereference vulnerability was found in the function stackswap (called from decompileSTACKSWAP) in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11733
MISC(link is external)
MISC(link is external)
libming -- ming A heap-based buffer over-read was found in the function decompileCALLFUNCTION in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file. 2017-07-29 4.3 CVE-2017-11734
MISC(link is external)
MISC(link is external)
libquicktime -- libquicktime In libquicktime 1.2.4, an allocation failure was found in the function quicktime_read_info in lqt_quicktime.c, which allows attackers to cause a denial of service via a crafted file. 2017-08-02 4.3 CVE-2017-12143
MISC(link is external)
MISC(link is external)
libquicktime -- libquicktime In libquicktime 1.2.4, an allocation failure was found in the function quicktime_read_ftyp in ftyp.c, which allows attackers to cause a denial of service via a crafted file. 2017-08-02 4.3 CVE-2017-12145
MISC(link is external)
MISC(link is external)
microsoft -- outlook Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a security feature bypass vulnerability due to the way that it handles input, aka "Microsoft Office Outlook Security Feature Bypass Vulnerability". 2017-08-01 6.8 CVE-2017-8571
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
microsoft -- outlook Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows an information disclosure vulnerability due to the way that it discloses the contents of its memory, aka "Microsoft Office Outlook Information Disclosure Vulnerability". 2017-08-01 4.3 CVE-2017-8572
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
modx -- modx_revolution In MODX Revolution 2.5.7, the "key" and "name" parameters in the System Settings module are vulnerable to XSS. A malicious payload sent to connectors/index.php will be triggered by every user, when they visit this module. 2017-07-30 4.3 CVE-2017-11744
MISC(link is external)
motorola -- mx011anm_firmware The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) devices allows remote attackers to enable a Remote Web Inspector that is accessible from the public Internet. 2017-07-30 5.0 CVE-2017-9494
MISC(link is external)
netcomm -- 4gt101w_bootloader NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. They does not contain any token that can mitigate CSRF vulnerabilities within the device. 2017-07-28 6.8 CVE-2017-11646
MISC(link is external)
nvidia -- gpu_driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to denial of service or potential escalation of privileges. 2017-07-28 4.6 CVE-2017-6256
CONFIRM(link is external)
open-emr -- openemr The csv_log_html function in library/edihistory/edih_csv_inc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name. 2017-08-01 5.0 CVE-2017-12064
CONFIRM(link is external)
openexif_project -- openexif The ExifJpegHUFFTable::deriveTable function in ExifHuffmanTable.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted jpg file. 2017-07-31 4.3 CVE-2017-11115
MISC
openexif_project -- openexif The ExifImageFile::readDQT function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted jpg file. 2017-07-31 6.8 CVE-2017-11116
MISC
openexif_project -- openexif The ExifImageFile::readDHT function in ExifImageFileRead.cpp in OpenExif 2.1.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted jpg file. 2017-07-31 4.3 CVE-2017-11117
MISC
paloaltonetworks -- pan-os Cross-site scripting (XSS) vulnerability in the management web interface in Palo Alto Networks PAN-OS before 6.1.18, 7.x before 7.0.16, 7.1.x before 7.1.11, and 8.x before 8.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-08-02 4.3 CVE-2017-9459
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
paloaltonetworks -- pan-os Cross-site scripting (XSS) vulnerability in the GlobalProtect external interface in Palo Alto Networks PAN-OS before 6.1.18, 7.x before 7.0.16, 7.1.x before 7.1.11, and 8.x before 8.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-08-02 4.3 CVE-2017-9467
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
pega -- pega_platform Multiple cross-site scripting (XSS) vulnerabilities in PEGA Platform 7.2 ML0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to the main page; the (2) beanReference parameter to the JavaBean viewer page; or the (3) pyTableName to the System database schema modification page. 2017-08-02 4.3 CVE-2017-11355
FULLDISC
pega -- pega_platform The application distribution export functionality in PEGA Platform 7.2 ML0 and earlier allows remote authenticated users with certain privileges to obtain sensitive configuration information by leveraging a missing access control. 2017-08-02 4.0 CVE-2017-11356
FULLDISC
qemu -- qemu qemu-nbd in QEMU (aka Quick Emulator) does not ignore SIGPIPE, which allows remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt. 2017-08-02 5.0 CVE-2017-10664
MLIST(link is external)
BID(link is external)
MISC(link is external)
MLIST
rspamd_project -- rspamd interface/js/app/history.js in WebUI in Rspamd before 1.6.3 allows XSS via the Subject and Message-Id headers, which are mishandled in the history page. 2017-07-29 4.3 CVE-2017-11737
CONFIRM(link is external)
CONFIRM(link is external)
samsung -- samsung_mobile Race condition in the ioctl implementation in the Samsung Graphics 2D driver (aka /dev/fimg2d) in Samsung devices with Android L(5.0/5.1) allows local users to trigger memory errors by leveraging definition of g2d_lock and g2d_unlock lock macros as no-ops, aka SVE-2015-4598. 2017-08-02 4.4 CVE-2015-7891
MISC(link is external)
CONFIRM(link is external)
BID(link is external)
MISC
EXPLOIT-DB(link is external)
silkypress -- simple_custom_css_and_js Cross-site scripting vulnerability in Simple Custom CSS and JS prior to version 3.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-08-02 4.3 CVE-2017-2285
JVN(link is external)
MISC
MISC
MISC(link is external)
sound_exchange_project -- sound_exchange The startread function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted wav file. 2017-07-31 4.3 CVE-2017-11332
MISC
sound_exchange_project -- sound_exchange The read_samples function in hcom.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted hcom file. 2017-07-31 4.3 CVE-2017-11358
MISC
sound_exchange_project -- sound_exchange The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file. 2017-07-31 4.3 CVE-2017-11359
MISC
techroutes -- tr_1803-3g_firmware Techroutes TR 1803-3G Wireless Cellular Router/Modem 2.4.25 devices do not possess any protection against a CSRF vulnerability, as demonstrated by a goform/BasicSettings request to disable port filtering. 2017-07-31 6.8 CVE-2017-11648
MISC(link is external)
timidity++_project -- timidity++ The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mid file. NOTE: a crash might be relevant when using the --background option. 2017-07-31 4.3 CVE-2017-11546
MISC
timidity++_project -- timidity++ The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mid file. NOTE: a crash might be relevant when using the --background option. NOTE: the TiMidity++ README.alsaseq documentation suggests a setuid-root installation. 2017-07-31 4.3 CVE-2017-11547
MISC
trendmicro -- control_manager Authentication Bypass in Trend Micro Control Manager 6.0 causes Information Disclosure when authentication validation is not done for functionality that can change debug logging level. Formerly ZDI-CAN-4512. 2017-08-02 5.0 CVE-2017-11387
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager SQL Injection in Trend Micro Control Manager 6.0 causes Remote Code Execution when RestfulServiceUtility.NET.dll doesn't properly validate user provided strings before constructing SQL queries. Formerly ZDI-CAN-4639 and ZDI-CAN-4638. 2017-08-02 6.5 CVE-2017-11388
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- control_manager XML external entity (XXE) processing vulnerability in Trend Micro Control Manager 6.0, if exploited, could lead to information disclosure. Formerly ZDI-CAN-4706. 2017-08-02 5.0 CVE-2017-11390
BID(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- deep_discovery_email_inspector Denial of Service vulnerability in Trend Micro Deep Discovery Email Inspector 2.5.1 allows remote attackers to delete arbitrary files on vulnerable installations, thus disabling the service. Formerly ZDI-CAN-4350. 2017-08-03 6.4 CVE-2017-11382
BID(link is external)
MISC(link is external)
MISC(link is external)
trendmicro -- interscan_messaging_security_virtual_appliance Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the "T" parameter within modTMCSS Proxy. Formerly ZDI-CAN-4745. 2017-08-03 6.5 CVE-2017-11392
BID(link is external)
MISC(link is external)
MISC(link is external)
vmware -- vcenter_server VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Successful exploitation of this issue may allow unprivileged host users to load a shared library that may lead to privilege escalation. 2017-08-01 6.5 CVE-2017-4921
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
vmware -- vcenter_server VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure issue due to the service startup script using world writable directories as temporary storage for critical information. Successful exploitation of this issue may allow unprivileged host users to access certain critical information when the service gets restarted. 2017-08-01 4.0 CVE-2017-4922
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
vmware -- vcenter_server VMware vCenter Server (6.5 prior to 6.5 U1) contains an information disclosure vulnerability. This issue may allow plaintext credentials to be obtained when using the vCenter Server Appliance file-based backup feature. 2017-08-01 5.0 CVE-2017-4923
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
wppopupmaker -- popup_maker Cross-site scripting vulnerability in Popup Maker prior to version 1.6.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-08-02 4.3 CVE-2017-2284
JVN(link is external)
MISC
MISC
xinha -- xinha Directory traversal vulnerability in plugins/ImageManager/backend.php in Xinha 0.96, as used in Jojo 4.4.0, allows remote attackers to delete any folder via directory traversal sequences in the deld parameter. 2017-07-29 5.0 CVE-2017-11723
CONFIRM(link is external)
xiph.org -- libao The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file. 2017-07-31 4.3 CVE-2017-11548
MISC
xiph.org -- libvorbis The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file. 2017-07-31 4.3 CVE-2017-11333
MISC
xiph.org -- libvorbis The vorbis_block_clear function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ogg file. 2017-07-31 4.3 CVE-2017-11735
MISC
xiph.org -- vorbis-tools The wav_open function in oggenc/audio.c in Xiph.Org vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (memory allocation error) via a crafted wav file. 2017-07-31 4.3 CVE-2017-11331
MISC
xoops -- xoops XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter. 2017-08-02 5.8 CVE-2017-12138
BID(link is external)
CONFIRM(link is external)
xoops -- xoops XOOPS Core 2.5.8 has stored XSS in imagemanager.php because of missing MIME type validation in htdocs/class/uploader.php. 2017-08-02 4.3 CVE-2017-12139
BID(link is external)
CONFIRM(link is external)
ytnef_project -- ytnef In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. 2017-08-02 4.3 CVE-2017-12141
MISC(link is external)
MISC(link is external)
ytnef_project -- ytnef In ytnef 1.9.2, an invalid memory read vulnerability was found in the function SwapDWord in ytnef.c, which allows attackers to cause a denial of service via a crafted file. 2017-08-02 4.3 CVE-2017-12142
MISC(link is external)
MISC(link is external)
ytnef_project -- ytnef In ytnef 1.9.2, an allocation failure was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. 2017-08-02 4.3 CVE-2017-12144
BID(link is external)
MISC(link is external)
MISC

 

 

Low Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
cacti -- cacti Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers, related to the $cancel_url variable. NOTE: this vulnerability exists because of an incomplete fix (lack of the htmlspecialchars ENT_QUOTES flag) for CVE-2017-11163. 2017-08-01 3.5 CVE-2017-12066
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST); Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST); and Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682_2.2p7s2_PROD_sey) devices makes it easy for remote attackers to determine the hidden SSID and passphrase for a Home Security Wi-Fi network. 2017-07-30 3.3 CVE-2017-9476
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421733-160420a-CMCST) and DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows remote attackers to discover the CM MAC address by connecting to the device's xfinitywifi hotspot. 2017-07-30 3.3 CVE-2017-9477
MISC(link is external)
cisco -- dpc3939_firmware The Comcast firmware on Cisco DPC3939 (firmware version dpc3939-P20-18-v303r20421746-170221a-CMCST) devices allows local users (e.g., users who have command access as a consequence of CVE-2017-9479 exploitation) to read arbitrary files via UPnP access to /var/IGD/. 2017-07-30 2.1 CVE-2017-9480
MISC(link is external)
comcast -- xfinity_xr11-20_firmware The Comcast firmware on Motorola MX011ANM (firmware version MX011AN_2.9p6s1_PROD_sey) and Xfinity XR11-20 Voice Remote devices allows local users to upload arbitrary firmware images to an XR11 by leveraging root access. In other words, there is no protection mechanism involving digital signatures for the firmware. 2017-07-30 2.1 CVE-2017-9498
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 119728. 2017-07-31 3.5 CVE-2016-9715
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 119732. 2017-07-31 3.5 CVE-2016-9718
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 119733. 2017-07-31 3.5 CVE-2016-9719
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- infosphere_master_data_management_server IBM InfoSphere Master Data Management Server 10.0, 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 123674. 2017-08-03 3.5 CVE-2017-1199
CONFIRM(link is external)
BID(link is external)
MISC(link is external)
ibm -- sterling_b2b_integrator IBM Sterling B2B Integrator Standard Edition 5.2.x is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128694.