The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

 

 

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
apache -- hadoop In Apache Hadoop 2.8.0, 3.0.0-alpha1, and 3.0.0-alpha2, the LinuxContainerExecutor runs docker commands as root with insufficient input validation. When the docker feature is enabled, authenticated users can run commands as root. 2017-06-04 8.5 CVE-2017-7669
BID(link is external)
MLIST
bigtreecms -- bigtree_cms Unrestricted File Upload exists in BigTree CMS through 4.2.18: if an attacker uploads an 'xxx.pht' or 'xxx.phtml' file, they could bypass a safety check and execute any code. 2017-06-02 7.5 CVE-2017-9364
CONFIRM(link is external)
CONFIRM(link is external)
dolibarr -- dolibarr Dolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in user/index.php (search_supervisor and search_statut parameters). 2017-06-05 7.5 CVE-2017-9435
CONFIRM(link is external)
CONFIRM(link is external)
google -- android In NAS in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9923
BID(link is external)
CONFIRM(link is external)
google -- android In 1x in all Android releases from CAF using the Linux kernel, a Signed to Unsigned Conversion Error could potentially occur. 2017-06-06 9.3 CVE-2014-9924
BID(link is external)
CONFIRM(link is external)
google -- android In HDR in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9925
BID(link is external)
CONFIRM(link is external)
google -- android In GNSS in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9926
BID(link is external)
CONFIRM(link is external)
google -- android In UIM in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9927
CONFIRM(link is external)
google -- android In GERAN in all Android releases from CAF using the Linux kernel, a Buffer Copy without Checking Size of Input vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9928
BID(link is external)
CONFIRM(link is external)
google -- android In WCDMA in all Android releases from CAF using the Linux kernel, a Use of Out-of-range Pointer Offset vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9929
BID(link is external)
CONFIRM(link is external)
google -- android In WCDMA in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9930
BID(link is external)
CONFIRM(link is external)
google -- android In the Embedded File System in all Android releases from CAF using the Linux kernel, a Time-of-Check Time-of-Use Race Condition vulnerability could potentially exist. 2017-06-06 7.6 CVE-2014-9941
BID(link is external)
CONFIRM(link is external)
google -- android In Boot in all Android releases from CAF using the Linux kernel, a Use of Uninitialized Variable vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9942
BID(link is external)
CONFIRM(link is external)
google -- android In Core Kernel in all Android releases from CAF using the Linux kernel, a Null Pointer Dereference vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9943
BID(link is external)
CONFIRM(link is external)
google -- android In the Secure File System in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9944
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9945
BID(link is external)
CONFIRM(link is external)
google -- android In Core Kernel in all Android releases from CAF using the Linux kernel, a Use After Free vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9946
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Validation of Array Index vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9948
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9949
BID(link is external)
CONFIRM(link is external)
google -- android In Core Kernel in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9950
BID(link is external)
CONFIRM(link is external)
google -- android In the Secure File System in all Android releases from CAF using the Linux kernel, a capture-replay vulnerability could potentially exist. 2017-06-06 9.3 CVE-2014-9952
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist. 2017-06-06 9.3 CVE-2015-9005
BID(link is external)
CONFIRM(link is external)
google -- android In Resource Power Manager (RPM) in all Android releases from CAF using the Linux kernel, an Improper Access Control vulnerability could potentially exist. 2017-06-06 9.3 CVE-2015-9006
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, a Double Free vulnerability could potentially exist. 2017-06-06 9.3 CVE-2015-9007
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, a Time-of-Check Time-of-Use Race Condition vulnerability could potentially exist. 2017-06-06 9.3 CVE-2016-10297
BID(link is external)
CONFIRM(link is external)
lenovo -- lenovo_service_bridge In Lenovo Service Bridge before version 4, a user with local privileges on a system could execute code with administrative privileges. 2017-06-04 7.2 CVE-2016-8228
CONFIRM(link is external)
mercurial -- mercurial In Mercurial before 4.1.3, "hg serve --stdio" allows remote authenticated users to launch the Python debugger, and consequently execute arbitrary code, by using --debugger as a repository name. 2017-06-06 9.0 CVE-2017-9462
CONFIRM
CONFIRM
CONFIRM
soffid -- iam Untrusted Java serialization in Soffid IAM console before 1.7.5 allows remote attackers to achieve arbitrary remote code execution via a crafted authentication request. 2017-06-02 7.5 CVE-2017-9363
CONFIRM(link is external)
todd_miller -- sudo Todd Miller's sudo version 1.8.20p1 and earlier is vulnerable to an input validation (embedded newlines) in the get_process_ttyname() function resulting in information disclosure and command execution. 2017-06-05 7.2 CVE-2017-1000368
BID(link is external)
CONFIRM(link is external)
websitebaker -- websitebaker WebsiteBaker v2.10.0 has a SQL injection vulnerability in /account/details.php. 2017-06-02 7.5 CVE-2017-9360
MISC(link is external)
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dns.c by trying to detect self-referencing pointers. 2017-06-02 7.8 CVE-2017-9345
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-slsk.c by making loop bounds more explicit. 2017-06-02 7.8 CVE-2017-9346
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This was addressed in epan/dissectors/packet-dcm.c by validating a length value. 2017-06-02 7.8 CVE-2017-9349
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by checking for a negative length. 2017-06-02 7.8 CVE-2017-9350
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by ensuring that backwards parsing cannot occur. 2017-06-02 7.8 CVE-2017-9352
BID(link is external)
MISC
MISC
MISC

 

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
asterisk -- certified_asterisk A memory exhaustion vulnerability exists in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1 and Certified Asterisk 13.13 before 13.13-cert4, which can be triggered by sending specially crafted SCCP packets causing a infinite loop and leading to memory exhaustion (by message logging in that loop). 2017-06-02 5.0 CVE-2017-9358
CONFIRM
BID(link is external)
CONFIRM
bigtreecms -- bigtree_cms CSRF exists in BigTree CMS through 4.2.18 with the force parameter to /admin/pages/revisions.php - for example: /admin/pages/revisions/1/?force=false. A page with id=1 can be unlocked. 2017-06-02 6.8 CVE-2017-9365
CONFIRM(link is external)
CONFIRM(link is external)
bigtreecms -- bigtree_cms BigTree CMS through 4.2.18 does not prevent a user from deleting their own account. This could have security relevance because deletion was supposed to be an admin-only action, and the admin may have other tasks (such as data backups) to complete before a user is deleted. 2017-06-02 4.0 CVE-2017-9378
MISC(link is external)
MISC(link is external)
bigtreecms -- bigtree_cms Multiple CSRF issues exist in BigTree CMS through 4.2.18 - the clear parameter to core\admin\modules\dashboard\vitals-statistics\404\clear.php and the from or to parameter to core\admin\modules\dashboard\vitals-statistics\404\create-301.php. 2017-06-02 6.8 CVE-2017-9379
MISC(link is external)
bigtreecms -- bigtree_cms SQL injection vulnerability in BigTree CMS through 4.2.18 allows remote authenticated users to execute arbitrary SQL commands via core\admin\modules\developer\modules\designer\form-create.php. The attacker creates a crafted table name at admin/developer/modules/designer/ and the injection is visible at admin/dashboard/vitals-statistics/integrity/check/?external=true. 2017-06-04 6.5 CVE-2017-9427
MISC(link is external)
bigtreecms -- bigtree_cms A directory traversal vulnerability exists in core\admin\ajax\developer\extensions\file-browser.php in BigTree CMS through 4.2.18 on Windows, allowing attackers to read arbitrary files via ..\ sequences in the directory parameter. 2017-06-04 5.0 CVE-2017-9428
MISC(link is external)
bigtreecms -- bigtree_cms ** DISPUTED ** BigTree CMS through 4.2.18 allows remote authenticated users to execute arbitrary code by uploading a crafted package containing a PHP web shell, related to extraction of a ZIP archive to filename patterns such as cache/package/xxx/yyy.php. This issue exists in core\admin\modules\developer\extensions\install\unpack.php and core\admin\modules\developer\packages\install\unpack.php. NOTE: the vendor states "You must implicitly trust any package or extension you install as they all have the ability to write PHP files." 2017-06-05 6.5 CVE-2017-9442
MISC(link is external)
bigtreecms -- bigtree_cms ** DISPUTED ** BigTree CMS through 4.2.18 allows remote authenticated users to conduct SQL injection attacks via a crafted tables object in manifest.json in an uploaded package. This issue exists in core\admin\modules\developer\extensions\install\process.php and core\admin\modules\developer\packages\install\process.php. NOTE: the vendor states "You must implicitly trust any package or extension you install as they all have the ability to write PHP files." 2017-06-05 6.5 CVE-2017-9443
MISC(link is external)
cryptopp -- crypto++ Crypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read vulnerability in zinflate.cpp in the Inflator filter. 2017-06-05 5.0 CVE-2017-9434
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
freedesktop -- poppler In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of service via a crafted file. 2017-06-02 4.3 CVE-2017-9406
CONFIRM
freedesktop -- poppler In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file. 2017-06-02 4.3 CVE-2017-9408
CONFIRM
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Information Exposure vulnerability could potentially exist. 2017-06-06 4.3 CVE-2014-9947
BID(link is external)
CONFIRM(link is external)
google -- android In TrustZone in all Android releases from CAF using the Linux kernel, an Information Exposure Through Timing Discrepancy vulnerability could potentially exist. 2017-06-06 4.3 CVE-2014-9951
BID(link is external)
CONFIRM(link is external)
google -- android The stock Android browser address bar in all Android operating systems suffers from Address Bar Spoofing, which allows remote attackers to trick a victim by displaying a malicious page for legitimate domain names. 2017-06-06 4.3 CVE-2015-3830
MISC(link is external)
MISC(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows attackers to cause a denial of service (memory leak) via a crafted file. 2017-06-02 4.3 CVE-2017-9405
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows attackers to cause a denial of service (memory leak) via a crafted file. 2017-06-02 4.3 CVE-2017-9407
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows attackers to cause a denial of service (memory leak) via a crafted file. 2017-06-02 4.3 CVE-2017-9409
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service via a crafted file. 2017-06-05 4.3 CVE-2017-9439
BID(link is external)
CONFIRM(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPSDChannel in coders/psd.c, which allows attackers to cause a denial of service via a crafted file. 2017-06-05 4.3 CVE-2017-9440
BID(link is external)
CONFIRM(link is external)
jamroom -- jamroom Cross Site Scripting (XSS) exists in Jamroom before 4.2.7 via the Status Update field. 2017-06-04 4.3 CVE-2012-6705
MISC(link is external)
BID(link is external)
lenovo -- lenovo_service_bridge A cross-site request forgery vulnerability in Lenovo Service Bridge before version 4 could be exploited by an attacker with access to the DHCP server used by the system where LSB is installed. 2017-06-04 6.8 CVE-2016-8229
CONFIRM(link is external)
lenovo -- lenovo_service_bridge In Lenovo Service Bridge before version 4, an insecure HTTP connection is used by LSB to send system serial number, machine type and model and product name to Lenovo's servers. 2017-06-04 5.0 CVE-2016-8230
CONFIRM(link is external)
lenovo -- lenovo_service_bridge In Lenovo Service Bridge before version 4, a bug found in the signature verification logic of the code signing certificate could be exploited by an attacker to insert a forged code signing certificate. 2017-06-04 5.0 CVE-2016-8231
CONFIRM(link is external)
libtiff -- libtiff In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file. 2017-06-02 4.3 CVE-2017-9403
CONFIRM
libtiff -- libtiff In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file. 2017-06-02 4.3 CVE-2017-9404
CONFIRM
odoo -- odoo Directory traversal vulnerability in tools.file_open in Odoo 8.0, 9.0, and 10.0 allows remote authenticated users to read arbitrary local files readable by the Odoo service. 2017-06-04 4.0 CVE-2017-9416
CONFIRM(link is external)
open-emr -- openemr OpenEMR 5.0.0 and prior allows low-privilege users to upload files of dangerous types which can result in arbitrary code execution within the context of the vulnerable application. 2017-06-02 6.5 CVE-2017-9380
MISC(link is external)
todd_miller -- sudo Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution. 2017-06-05 6.9 CVE-2017-1000367
SUSE
SUSE
SUSE
MISC(link is external)
FULLDISC
DEBIAN
MLIST(link is external)
BID(link is external)
SECTRACK(link is external)
UBUNTU(link is external)
REDHAT(link is external)
FEDORA
GENTOO
CONFIRM(link is external)
virustotal -- yara libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule (involving hex strings) that is mishandled in the _yr_re_emit function, a different vulnerability than CVE-2017-9304. 2017-06-05 5.0 CVE-2017-9438
CONFIRM(link is external)
CONFIRM(link is external)
websitebaker -- websitebaker WebsiteBaker v2.10.0 has a stored XSS vulnerability in /account/details.php. 2017-06-02 4.3 CVE-2017-9361
MISC(link is external)
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the MSNIP dissector misuses a NULL pointer. This was addressed in epan/dissectors/packet-msnip.c by validating an IPv4 address. 2017-06-02 5.0 CVE-2017-9343
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value. 2017-06-02 5.0 CVE-2017-9344
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/asn1/ros/packet-ros-template.c by validating an OID. 2017-06-02 5.0 CVE-2017-9347
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value. 2017-06-02 5.0 CVE-2017-9348
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully. 2017-06-02 5.0 CVE-2017-9351
BID(link is external)
MISC
MISC
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. This was addressed in epan/dissectors/packet-ipv6.c by validating an IPv6 address. 2017-06-02 5.0 CVE-2017-9353
BID(link is external)
MISC
MISC
MISC
MISC
wireshark -- wireshark In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP dissector could crash. This was addressed in epan/dissectors/packet-rgmp.c by validating an IPv4 address. 2017-06-02 5.0 CVE-2017-9354
BID(link is external)
MISC
MISC
MISC
MISC
ytnef_project -- ytnef In ytnef 1.9.2, the MAPIPrint function in lib/ytnef.c allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. 2017-06-07 4.3 CVE-2017-9470
MISC
ytnef_project -- ytnef In ytnef 1.9.2, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. 2017-06-07 4.3 CVE-2017-9471
MISC
ytnef_project -- ytnef In ytnef 1.9.2, the SwapDWord function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. 2017-06-07 4.3 CVE-2017-9472
MISC
ytnef_project -- ytnef In ytnef 1.9.2, the TNEFFillMapi function in lib/ytnef.c allows remote attackers to cause a denial of service (memory consumption) via a crafted file. 2017-06-07 4.3 CVE-2017-9473
MISC
ytnef_project -- ytnef In ytnef 1.9.2, the DecompressRTF function in lib/ytnef.c allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. 2017-06-07 4.3 CVE-2017-9474
MISC

 

 

Low Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
piwigo -- piwigo Cross-site scripting (XSS) vulnerability in admin.php in Piwigo 2.9.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter. 2017-06-06 3.5 CVE-2017-9452
MISC(link is external)
telaxus -- epesi Telaxus EPESI 1.8.2 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in modules/Base/Dashboard/Dashboard_0.php, which allows remote attackers to inject arbitrary web script or HTML via a crafted tab_name parameter. 2017-06-02 3.5 CVE-2017-9366
CONFIRM(link is external)
CONFIRM

 

 

Severity Not Yet Assigned

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
acquisition_technology_&_logistics_agency --  installer_of_electronic_tendering_and_bid_opening_system
 
Untrusted search path vulnerability in Installer of electronic tendering and bid opening system available prior to May 25, 2017 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. 2017-06-09 not yet calculated CVE-2017-2178
JVN(link is external)
CONFIRM(link is external)
adblock -- adblock
 
AdBlock before 2.21 allows remote attackers to block arbitrary resources on arbitrary websites and to disable arbitrary blocking filters. 2017-06-08 not yet calculated CVE-2015-2692
CONFIRM(link is external)
MISC(link is external)
amd -- fglrx-driver AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. NOTE: This vulnerability exists due to an incomplete fix for CVE-2015-7723. 2017-06-07 not yet calculated CVE-2015-7724
MISC(link is external)
FULLDISC
BUGTRAQ(link is external)
BID(link is external)
MISC(link is external)
amd -- fglrx-driver AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. 2017-06-07 not yet calculated CVE-2015-7723
MISC(link is external)
FULLDISC
BUGTRAQ(link is external)
BID(link is external)
MISC(link is external)

apache -- archiva

The Content-Encoding HTTP header feature in ws-xmlrpc 3.1.3 as used in Apache Archiva allows remote attackers to cause a denial of service (resource consumption) by decompressing a large file containing zeroes. 2017-06-06 not yet calculated CVE-2016-5004
MLIST(link is external)
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
MISC(link is external)
apache -- cxf_fediz Application plugins in Apache CXF Fediz before 1.1.3 and 1.2.x before 1.2.1 allow remote attackers to cause a denial of service. 2017-06-07 not yet calculated CVE-2015-5175
MLIST(link is external)
BID(link is external)
CONFIRM
CONFIRM
MLIST
apache -- java_servlet_specification
 
The error page mechanism of the Java Servlet Specification requires that, when an error occurs and an error page is configured for the error that occurred, the original request and response are forwarded to the error page. This means that the request is presented to the error page with the original HTTP method. If the error page is a static file, expected behaviour is to serve content of the file as if processing a GET request, regardless of the actual HTTP method. The Default Servlet in Apache Tomcat 9.0.0.M1 to 9.0.0.M20, 8.5.0 to 8.5.14, 8.0.0.RC1 to 8.0.43 and 7.0.0 to 7.0.77 did not do this. Depending on the original request this could lead to unexpected and undesirable results for static error pages including, if the DefaultServlet is configured to permit writes, the replacement or removal of the custom error page. Notes for other user provided error pages: (1) Unless explicitly coded otherwise, JSPs ignore the the HTTP method. JSPs used as error pages must must ensure that they handle any error dispatch as a GET request, regardless of the actual method. (2) By default, the response generated by a Servlet does depend on the HTTP method. Custom Servlets used as error pages must ensure that they handle any error dispatch as a GET request, regardless of the actual method. 2017-06-06 not yet calculated CVE-2017-5664
BID(link is external)
MLIST
appcheck -- appcheck
 
Untrusted search path vulnerability in AppCheck and AppCheck Pro prior to version 2.0.1.15 allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory. 2017-06-09 not yet calculated CVE-2017-2214
JVN(link is external)
apple -- mac_sleipnir_4
 
Sleipnir 4 Black Edition for Mac 4.5.3 and earlier and Sleipnir 4 for Mac 4.5.3 and earlier (Mac App Store) may allow a remote attacker to spoof the URL display via a specially crafted webpage. 2017-06-09 not yet calculated CVE-2016-7831
JVN(link is external)
arm -- arm_trusted_firmware
 
In ARM Trusted Firmware 1.3, RO memory is always executable at AArch64 Secure EL1, allowing attackers to bypass the MT_EXECUTE_NEVER protection mechanism. This issue occurs because of inconsistency in the number of execute-never bits (one bit versus two bits). 2017-06-07 not yet calculated CVE-2017-7563
CONFIRM(link is external)
arm -- arm_trusted_firmware
 
In ARM Trusted Firmware through 1.3, the secure self-hosted invasive debug interface allows normal world attackers to cause a denial of service (secure world panic) via vectors involving debug exceptions and debug registers. 2017-06-07 not yet calculated CVE-2017-7564
CONFIRM(link is external)

arubanetworks -- clearpass_policy_manager

SQL injection vulnerability in ClearPass Policy Manager 6.5.x through 6.5.6 and 6.6.0. 2017-06-08 not yet calculated CVE-2016-2034
CONFIRM(link is external)
asterisk -- asterisk
 
PJSIP, as used in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1, Certified Asterisk 13.13 before 13.13-cert4, and other products, allows remote attackers to cause a denial of service (buffer overflow and application crash) via a SIP packet with a crafted CSeq header in conjunction with a Via header that lacks a branch parameter. 2017-06-02 not yet calculated CVE-2017-9372
CONFIRM
BID(link is external)
CONFIRM
asterisk -- asterisk
 
The multi-part body parser in PJSIP, as used in Asterisk Open Source 13.x before 13.15.1 and 14.x before 14.4.1, Certified Asterisk 13.13 before 13.13-cert4, and other products, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet. 2017-06-02 not yet calculated CVE-2017-9359
CONFIRM
BID(link is external)
CONFIRM
CONFIRM
atmail -- atmail
 
atmail before 7.8.0.2 has CSRF, allowing an attacker to upload and import users via CSV. 2017-06-08 not yet calculated CVE-2017-9517
CONFIRM(link is external)
atmail -- atmail
 
atmail before 7.8.0.2 has CSRF, allowing an attacker to create a user account. 2017-06-08 not yet calculated CVE-2017-9519
CONFIRM(link is external)
atmail -- atmail
 
atmail before 7.8.0.2 has CSRF, allowing an attacker to change the SMTP hostname and hijack all emails. 2017-06-08 not yet calculated CVE-2017-9518
CONFIRM(link is external)
bigtree -- bigtree_cms
 
BigTree CMS through 4.2.18 has CSRF related to the core\admin\modules\users\profile\update.php script (modify user information), the index.php/admin/developer/packages/delete/ URI (remove packages), the index.php/admin/developer/upgrade/ignore/?versions= URI, and the index.php/admin/developer/upgrade/set-ftp-directory/ URI. 2017-06-05 not yet calculated CVE-2017-9444
MISC(link is external)
bigtree -- bigtree_cms
 
** DISPUTED ** Multiple cross-site scripting (XSS) vulnerabilities in BigTree CMS through 4.2.18 allow remote authenticated users to inject arbitrary web script or HTML by uploading a crafted package, triggering mishandling of the (1) title or (2) version or (3) author_name parameter in manifest.json. This issue exists in core\admin\modules\developer\extensions\install\unpack.php and core\admin\modules\developer\packages\install\unpack.php. NOTE: the vendor states "You must implicitly trust any package or extension you install as they all have the ability to write PHP files." 2017-06-05 not yet calculated CVE-2017-9441
MISC(link is external)
bigtree -- bigtree_cms
 
SQL injection vulnerability in BigTree CMS through 4.2.18 allows remote authenticated users to execute arbitrary SQL commands via core/admin/modules/developer/modules/views/create.php. The attacker creates a crafted table name at admin/developer/modules/views/create/ and the injection is visible at admin/ajax/auto-modules/views/searchable-page/ or admin/modules_name. 2017-06-06 not yet calculated CVE-2017-9449
MISC(link is external)
bigtree -- bigtree_cms
 
Cross-site scripting (XSS) vulnerabilities in BigTree CMS through 4.2.18 allow remote authenticated users to inject arbitrary web script or HTML via the description parameter. This issue exists in core\admin\ajax\pages\save-revision.php and core\admin\modules\pages\revisions.php. Low-privileged (administrator) users can attack high-privileged (Developer) users. 2017-06-06 not yet calculated CVE-2017-9448
MISC(link is external)

blue_coat -- advanced_secure_gateway


 
Blue Coat Advanced Secure Gateway 6.6, CacheFlow 3.4, ProxySG 6.5 and 6.6 allows remote attackers to bypass blocked requests, user authentication, and payload scanning. 2017-06-08 not yet calculated CVE-2016-6594
CONFIRM(link is external)

bluez -- bluez


 
Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the parse_line function used in some userland utilities. 2017-06-09 not yet calculated CVE-2016-7837
CONFIRM
JVN(link is external)
broadcom -- wi-fi_chip
 
Broadcom BCM43xx Wi-Fi chips allow remote attackers to execute arbitrary code via unspecified vectors, aka the "Broadpwn" issue. 2017-06-04 not yet calculated CVE-2017-9417
MISC(link is external)
buffalo_inc -- wnc01wh_firmware
 
Buffalo NC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to bypass access restriction to enable the debug option via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7824
CONFIRM(link is external)
JVN(link is external)
buffalo_inc -- wnc01wh_firmware
 
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands. 2017-06-09 not yet calculated CVE-2016-7825
CONFIRM(link is external)
JVN(link is external)
buffalo_inc -- wnc01wh_firmware
 
Cross-site request forgery (CSRF) vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows remote attackers to hijack the authentication of a logged in user to perform unintended operations via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7822
CONFIRM(link is external)
JVN(link is external)
buffalo_inc -- wnc01wh_firmware
 
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests. 2017-06-09 not yet calculated CVE-2016-7826
CONFIRM(link is external)
JVN(link is external)
buffalo_inc -- wnc01wh_firmware
 
Cross-site scripting vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7823
CONFIRM(link is external)
JVN(link is external)

buffalo_inc -- wnc01wh_firmware


 
Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allow remote attackers to cause a denial of service against the management screen via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7821
CONFIRM(link is external)
JVN(link is external)
cgi:irc -- irc.cgi
 
irc.cgi in CGI:IRC before 0.5.12 reflects user-supplied input from the R parameter without proper output encoding, aka XSS. 2017-06-06 not yet calculated CVE-2017-8920
CONFIRM
CONFIRM(link is external)
cisco -- anyconnect_secure_mobility_client_for_windows
 
A vulnerability in how DLL files are loaded with Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and run an executable file with privileges equivalent to the Microsoft Windows SYSTEM account. The vulnerability is due to incomplete input validation of path and file names of a DLL file before it is loaded. An attacker could exploit this vulnerability by creating a malicious DLL file and installing it in a specific system directory. A successful exploit could allow the attacker to execute commands on the underlying Microsoft Windows host with privileges equivalent to the SYSTEM account. The attacker would need valid user credentials to exploit this vulnerability. This vulnerability affects all Cisco AnyConnect Secure Mobility Client for Windows software versions prior to 4.4.02034. Cisco Bug IDs: CSCvc97928. 2017-06-08 not yet calculated CVE-2017-6638
BID(link is external)
CONFIRM(link is external)
cisco -- prime_data_center_network_manager
 
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, remote attacker to log in to the administrative console of a DCNM server by using an account that has a default, static password. The account could be granted root- or system-level privileges. The vulnerability exists because the affected software has a default user account that has a default, static password. The user account is created automatically when the software is installed. An attacker could exploit this vulnerability by connecting remotely to an affected system and logging in to the affected software by using the credentials for this default user account. A successful exploit could allow the attacker to use this default user account to log in to the affected software and gain access to the administrative console of a DCNM server. This vulnerability affects Cisco Prime Data Center Network Manager (DCNM) Software releases prior to Release 10.2(1) for Microsoft Windows, Linux, and Virtual Appliance platforms. Cisco Bug IDs: CSCvd95346. 2017-06-08 not yet calculated CVE-2017-6640
BID(link is external)
CONFIRM(link is external)
cisco -- prime_data_center_network_manager
 
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to access sensitive information or execute arbitrary code with root privileges on an affected system. The vulnerability is due to the lack of authentication and authorization mechanisms for a debugging tool that was inadvertently enabled in the affected software. An attacker could exploit this vulnerability by remotely connecting to the debugging tool via TCP. A successful exploit could allow the attacker to access sensitive information about the affected software or execute arbitrary code with root privileges on the affected system. This vulnerability affects Cisco Prime Data Center Network Manager (DCNM) Software Releases 10.1(1) and 10.1(2) for Microsoft Windows, Linux, and Virtual Appliance platforms. Cisco Bug IDs: CSCvd09961. 2017-06-08 not yet calculated CVE-2017-6639
BID(link is external)
CONFIRM(link is external)
cisco -- telepresence_codec_and_collaboration_endpoint_software
 
A vulnerability in the Session Initiation Protocol (SIP) of the Cisco TelePresence Codec (TC) and Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause a TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms within the software. An attacker could exploit this vulnerability by sending a flood of SIP INVITE packets to the affected device. An exploit could allow the attacker to impact the availability of services and data of the device, including a complete DoS condition. This vulnerability affects the following Cisco TC and CE platforms when running software versions prior to TC 7.3.8 and CE 8.3.0. Cisco Bug IDs: CSCux94002. 2017-06-08 not yet calculated CVE-2017-6648
BID(link is external)
CONFIRM(link is external)
compulab -- intense_pc_and_mintbox_2_firmware CompuLab Intense PC and MintBox 2 devices with BIOS before 2017-05-21 do not use the CloseMnf protection mechanism for write protection of flash memory regions, which allows local users to install a firmware rootkit by leveraging administrative privileges. 2017-06-06 not yet calculated CVE-2017-8083
MISC
MISC(link is external)

corega -- cg-wlbargmh_firmware


 
Cross-site scripting vulnerability in Corega CG-WLBARGMH and CG-WLBARGNL allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7808
CONFIRM(link is external)
JVN(link is external)
corega -- cg-wlr300nx_firmware
 
Cross-site scripting vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7810
CONFIRM(link is external)
JVN(link is external)
corega -- cg-wlr300nx_firmware
 
Cross-site request forgery (CSRF) vulnerability in Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows remote attackers to hijack the authentication of logged in user to conduct unintended operations via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7809
CONFIRM(link is external)
JVN(link is external)
corega -- cg-wlr300nx_firmware
 
Corega CG-WLR300NX firmware Ver. 1.20 and earlier allows an attacker on the same network segment to bypass access restriction to perform arbitrary operations via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7811
CONFIRM(link is external)
JVN(link is external)
craft_cms -- craft_cms
 
Craft CMS before 2.6.2982 allows for a potential XSS attack vector by uploading a malicious SVG file. 2017-06-08 not yet calculated CVE-2017-9516
MISC(link is external)
MISC(link is external)
MISC(link is external)
cybozu -- dezie
 
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to obtain an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7832
JVN(link is external)
CONFIRM(link is external)
cybozu -- dezie
 
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7833
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon Cybozu Garoon 3.0.0 to 4.2.2 allow remote attackers to obtain CSRF tokens via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-4907
JVN(link is external)
CONFIRM(link is external)

cybozu -- garoon

Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to inject arbitrary web script or HTML via "Messages" function of Cybozu Garoon Keitai. 2017-06-09 not yet calculated CVE-2016-4906
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to alter or delete another user's private RSS settings via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-4908
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
SQL injection vulnerability in the Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to execute arbitrary SQL commands via "MultiReport" function. 2017-06-09 not yet calculated CVE-2016-7803
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to bypass access restrictions to delete other users' To-Dos via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7801
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to bypass access restriction to delete other operational administrators' MultiReport filters via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-4910
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
Directory traversal vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote authenticated attackers to read arbitrary files via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-7802
JVN(link is external)
CONFIRM(link is external)
cybozu -- garoon
 
Cross-site request forgery (CSRF) vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to hijack the authentication of a logged in user to force a logout via unspecified vectors. 2017-06-09 not yet calculated CVE-2016-4909
JVN(link is external)
CONFIRM(link is external)
cybozu -- kintone
 
The Cybozu kintone mobile for Android 1.0.6 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. 2017-06-09 not yet calculated CVE-2016-7816
JVN(link is external)
CONFIRM(link is external)
deraemon-cms -- deraemon-cms
 
Cross-site scripting vulnerability in DERAEMON-CMS version 0.8.9 and earlier allows remote attackers to inject arbitrary web script or HTML via the parameters hostname, database and username. 2017-06-09 not yet calculated CVE-2016-7813
CONFIRM(link is external)
JVN(link is external)
document_liberation_project -- libmwaw
 
Document Liberation Project libmwaw before 2017-04-08 has an out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in lib/MsWrd1Parser.cxx. 2017-06-04 not yet calculated CVE-2017-9433
MISC
MISC(link is external)
document_liberation_project -- libstaroffice
 
Document Liberation Project libstaroffice before 2017-04-07 has an out-of-bounds write caused by a stack-based buffer overflow related to the DatabaseName::read function in lib/StarWriterStruct.cxx. 2017-06-04 not yet calculated CVE-2017-9432
MISC
MISC(link is external)
elastic -- kibana
 
Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. 2017-06-05 not yet calculated CVE-2017-8440
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
elastic -- kibana
 
Kibana version 5.4.0 was affected by a Cross Site Scripting (XSS) bug in the Time Series Visual Builder. This bug could allow an attacker to obtain sensitive information from Kibana users. 2017-06-05 not yet calculated CVE-2017-8439
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
elastic -- x-pack
 
Elastic X-Pack Security versions prior to 5.4.1 and 5.3.3 did not always correctly apply Document Level Security to index aliases. This bug could allow a user with restricted permissions to view data they should not have access to when performing certain operations against an index alias. 2017-06-05 not yet calculated CVE-2017-8441
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
elastic -- x-pack
 
Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as functionality. This bug prevents transitioning into the specified user specified in a run_as request. If a role has been created using a template that contains the _user properties, the behavior of run_as will be incorrect. Additionally if the run_as user specified does not exist, the transition will not happen. 2017-06-05 not yet calculated CVE-2017-8438
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
emc -- multiple_products
 
EMC RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2 (all patch levels); RSA Via Lifecycle and Governance version 7.0 (all patch levels); and RSA Identity Management and Governance (IMG) version 6.9.1 (all patch levels) have Stored Cross Site Scripting vulnerabilities that could potentially be exploited by malicious users to compromise an affected system. 2017-06-09 not yet calculated CVE-2017-5004
CONFIRM(link is external)
emc -- multiple_products
 
EMC RSA Identity Governance and Lifecycle versions 7.0.1, 7.0.2 (all patch levels); RSA Via Lifecycle and Governance version 7.0 (all patch levels); and RSA Identity Management and Governance (IMG) version 6.9.1 (all patch levels) have Reflected Cross Site Scripting vulnerabilities that could potentially be exploited by malicious users to compromise an affected system. 2017-06-09 not yet calculated CVE-2017-5003
CONFIRM(link is external)
f5 -- big-ip_enterprise_manager
 
Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x before 10.2.4 HF12, 11.x before 11.2.1 HF15, 11.3.x, 11.4.x before 11.4.1 HF9, 11.5.x before 11.5.2 HF1, and 11.6.0 before HF4, and Enterprise Manager 2.1.0 through 2.3.0 and 3.x before 3.1.1 HF5 allows remote authenticated administrators to cause a denial of service via unspecified vectors. 2017-06-08 not yet calculated CVE-2014-6031
CONFIRM(link is external)
f5 -- multiple_products A stored cross-site scripting (XSS) vulnerability in the Configuration utility device name change page in BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, WOM and WebSafe version 12.0.0 - 12.1.2, 11.4.0 - 11.6.1, and 11.2.1 allows an authenticated user to inject arbitrary web script or HTML. Exploitation requires Resource Administrator or Administrator privileges, and it could cause the Configuration utility client to become unstable. 2017-06-09 not yet calculated CVE-2016-7469
CONFIRM(link is external)
flatcore -- flatcore
 
Cross site scripting (XSS) vulnerability in pages.edit_form.php in flatCore 1.4.6 allows remote attackers to inject arbitrary JavaScript via the PATH_INFO in an acp.php URL, due to use of unsanitized $_SERVER['PHP_SELF'] to generate URLs. 2017-06-06 not yet calculated CVE-2017-9451
MISC(link is external)
game-music-emu -- game-music-emu
 
game-music-emu before 0.6.1 mishandles unspecified integer values. 2017-06-06 not yet calculated CVE-2016-9961
SUSE
SUSE
MLIST(link is external)
BID(link is external)
CONFIRM
CONFIRM(link is external)
FEDORA
FEDORA
FEDORA
FEDORA
MISC(link is external)
game-music-emu -- game-music-emu
 
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash). 2017-06-06 not yet calculated CVE-2016-9960
SUSE
SUSE
MLIST(link is external)
BID(link is external)
CONFIRM
CONFIRM(link is external)
FEDORA
FEDORA
FEDORA
FEDORA
MISC(link is external)
google -- android
 
b/libs/gui/ISurfaceComposer.cpp in Android allows attackers to trigger a denial of service (null pointer dereference and process crash). 2017-06-08 not yet calculated CVE-2014-7919
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
google -- android
 
Acer Portal app before 3.9.4.2000 for Android does not properly validate SSL certificates, which allows remote attackers to perform a Man-in-the-middle attack via a crafted SSL certificate. 2017-06-08 not yet calculated CVE-2016-5648
MISC(link is external)
FULLDISC
BUGTRAQ(link is external)
CERT-VN
google -- android
 
The mobiGate App for Android version 2.2.1.2 and earlier and mobiGate App for iOS version 2.2.4.1 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. 2017-06-09 not yet calculated CVE-2016-7805
JVN(link is external)
google -- chrome
 
Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted .m4a file. 2017-06-06 not yet calculated CVE-2015-1207
CONFIRM
CONFIRM(link is external)
google -- grpc
 
Google gRPC before 2017-04-05 has an out-of-bounds write caused by a heap-based buffer overflow related to core/lib/iomgr/error.c. 2017-06-04 not yet calculated CVE-2017-9431
MISC
MISC(link is external)
group_sessions -- group_sessions GroupSession versions 4.6.4 and earlier allows remote authenticated attackers to bypass access restrictions to obtain sensitive information such as emails via unspecified vectors. 2017-06-09 not yet calculated CVE-2017-2165
JVN(link is external)

h2o_project -- h2o

Use-after-free vulnerability in H2O allows remote attackers to cause a denial-of-service (DoS) or obtain server certificate private keys and possibly other information. 2017-06-09 not yet calculated CVE-2016-7835
CONFIRM(link is external)
JVN(link is external)
houkokusyo -- sakusei_shien_tool
 
Untrusted search path vulnerability in the installer of Houkokusyo Sakusei Shien Tool ver3.0.2 (For the first installation) (The version which was available on the website from 2017 April 4 to 2017 May 18) and ver2.0 and later (For the first installation) (The versions which were available on the website prior to 2017 April 4) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. 2017-06-09 not yet calculated CVE-2017-2209
CONFIRM(link is external)
CONFIRM(link is external)
MISC(link is external)
JVN(link is external)
huawei -- ar1220_firmware
 
Huawei AR1220 routers with software before V200R005SPH006 allow remote attackers to cause a denial of service (board reset) via vectors involving a large amount of traffic from the GE port to the FE port. 2017-06-08 not yet calculated CVE-2015-2255
CONFIRM(link is external)
huawei -- campus_firmware
 
The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation. 2017-06-08 not yet calculated CVE-2015-2800
CONFIRM(link is external)
BID(link is external)
huawei -- campus_firmware
 
The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message. 2017-06-08 not yet calculated CVE-2015-3913
CONFIRM(link is external)
huawei -- oceanstor_firmware
 
The XML interface in Huawei OceanStor UDS devices with software before V100R002C01SPC102 allows remote authenticated users to obtain sensitive information via a crafted XML document. 2017-06-08