*** 출처: [GT온라인] 미 교통부, 새로운 자율주행차량 가이드라인 발표

 

 

 

 트럼프 행정부에서는 기존 가이드라인의 자발성을 유지하면서도 간소화

 ○ 완전 자율주행시스템과 운전자보조시스템(Advanced driver assistance systems, ADAS)를 포함한 자동화 기능 개발 통합

 ○ 산··지역·/연방 정부 간의 각 노력을 통합

 ○ 자발적인 지침이지만 SAE 레벨 3~5 자동화에 중점

 

 

 

*** 가이드라인:

Automated driving Systems 2.0.pdf

저작자 표시 비영리 변경 금지
신고
Posted by manga0713

 

 

 

 

IV. 4차 산업혁명 메커니즘과 기상기후산업의 대응

 

 

- 4차 산업혁명이 진행함에 따라 기존 사회 그리고 경제 서비스에 대한 실시간 상황정보와 정보공간의 인공지능형 서비스 프로세스가 하나의 플랫폼 상에서 움직이는 체계로 재편될 것으로 기대된다.

 

- 이러한 변화는 사람의 노동 대신에 인공지능과 빅데이터 등으로 실시간 상황에 대응하는 개별맞춤지능형 제품, 소량 생산 체계로 제조생태계가 진화할 것으로 파악된다.

 

- 지능형 생산-공급-소비-O2O 비즈니스 프로세스 메커니즘은 IoT, IoE 그리고 클라우딩 기반 빅데이터 수집 및 분석, 인공지능을 활용하는 실시간 비즈니스 가치에 대한 고도해석에 이어 O2O 비즈니스 환경상 수요 및 소비 예측 데이터 제공과 매출 창출을 위한 아이디어 제공을 하며, O2O 비즈니스 환경상에서 물류, 유통, 소비, 서비스를 포함하고 있다. 이때 IoT, IoE, O2O 상에서는 일종의 실시간 상황정보와 서비스 프로세스 그리고 실물이 혼재되어 연결되거나 연동한다.

 

- 기상기후정보 기반 부산지역 전통산업의 4차 산업혁명화 요구 기술 도출 내용

 

 

 

 

 

- 기술 도출의 기반 시나리오

 

부산지역의 전통산업인 섬유패션산업 및 신발산업을 ICT 기술과 결합하려면 인터넷에 연결된 옷, 신발, 기타 액세서리용 "스마트 패션 신발" 기술을 개발해야 한다.

 

또한, 전통 제조업의 생산성 및 효율성 제고를 위해서는 사물인터넷을 활용한 스마트 패션, 신발, 액세서리 서비스 간의 정보 교환과 수집된 데이터를 기반으로 상황분석과 생산 시뮬레이션을 통한 실시간 맞춤, 주문, 소량 생산하는 지능형 생산시스템 "패션, 신발, 소재 생산 스마트 팩토리"의 구축이 필요하다.

 

더불어 온라인 및 디지털 기기를 오프라인 매장에 활용한 패션 유통산업의 변화에 대비한 '스마트 스토어' 기술 개발도 요구된다.

 

 

 

 

*** 출처: [IITP] 4차 산업혁명과 기상기후정보 기반 부산전통산업 대응 - 오희선, 오재호 부경대학교 교수

*** 문서:

file4952635503269815574-181401.pdf

 

저작자 표시 비영리 변경 금지
신고
Posted by manga0713

 

 

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

 

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
google -- android A elevation of privilege vulnerability in the Android framework (windowmanager). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-62196835. 2017-09-08 9.3 CVE-2017-0752
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android libraries (libgdx). Product: Android. Versions: 7.1.1, 7.1.2, 8.0. Android ID: A-62218744. 2017-09-08 9.3 CVE-2017-0753
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android libraries (libminikin). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-32178311. 2017-09-08 9.3 CVE-2017-0755
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34621073. 2017-09-08 9.3 CVE-2017-0756
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36006815. 2017-09-08 9.3 CVE-2017-0757
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36492741. 2017-09-08 9.3 CVE-2017-0758
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36715268. 2017-09-08 9.3 CVE-2017-0759
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37237396. 2017-09-08 9.3 CVE-2017-0760
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-38448381. 2017-09-08 9.3 CVE-2017-0761
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-62214264. 2017-09-08 9.3 CVE-2017-0762
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62534693. 2017-09-08 9.3 CVE-2017-0763
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libvorbis). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62872015. 2017-09-08 9.3 CVE-2017-0764
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62872863. 2017-09-08 9.3 CVE-2017-0765
BID(link is external)
CONFIRM(link is external)
google -- android A remote code execution vulnerability in the Android media framework (libjhead). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37776688. 2017-09-08 9.3 CVE-2017-0766
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37536407. 2017-09-08 9.3 CVE-2017-0767
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android media framework (libeffects). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62019992. 2017-09-08 9.3 CVE-2017-0768
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37662122. 2017-09-08 9.3 CVE-2017-0769
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android media framework (libmediaplayerservice). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-38234812. 2017-09-08 9.3 CVE-2017-0770
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android media framework (libskia). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-37624243. 2017-09-08 7.1 CVE-2017-0771
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-38115076. 2017-09-08 7.1 CVE-2017-0772
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37615911. 2017-09-08 7.1 CVE-2017-0773
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-62673844. 2017-09-08 7.1 CVE-2017-0774
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62673179. 2017-09-08 7.1 CVE-2017-0775
BID(link is external)
CONFIRM(link is external)
google -- android A information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-62133227. 2017-09-08 7.8 CVE-2017-0778
BID(link is external)
CONFIRM(link is external)
google -- android A denial of service vulnerability in the Android runtime (android messenger). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-37742976. 2017-09-08 7.1 CVE-2017-0780
BID(link is external)
CONFIRM(link is external)
google -- android A information disclosure vulnerability in the N/A memory subsystem. Product: Android. Versions: Android kernel. Android ID: A-35764946. 2017-09-08 7.1 CVE-2017-0793
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek accessory detector driver. Product: Android. Versions: Android kernel. Android ID: A-36198473. References: M-ALPS03361480. 2017-09-08 9.3 CVE-2017-0795
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek auxadc driver. Product: Android. Versions: Android kernel. Android ID: A-62458865. References: M-ALPS03353884, M-ALPS03353886, M-ALPS03353887. 2017-09-08 9.3 CVE-2017-0796
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek accessory detector driver. Product: Android. Versions: Android kernel. Android ID: A-62459766. References: M-ALPS03353854. 2017-09-08 9.3 CVE-2017-0797
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek kernel. Product: Android. Versions: Android kernel. Android ID: A-36100671. References: M-ALPS03365532. 2017-09-08 9.3 CVE-2017-0798
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek lastbus. Product: Android. Versions: Android kernel. Android ID: A-36731602. References: M-ALPS03342072. 2017-09-08 9.3 CVE-2017-0799
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek teei. Product: Android. Versions: Android kernel. Android ID: A-37683975. References: M-ALPS03302988. 2017-09-08 9.3 CVE-2017-0800
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the MediaTek libmtkomxvdec. Product: Android. Versions: Android kernel. Android ID: A-38447970. References: M-ALPS03337980. 2017-09-08 9.3 CVE-2017-0801
BID(link is external)
CONFIRM(link is external)
ibm -- db2_connect IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128178. 2017-09-12 7.2 CVE-2017-1451
CONFIRM(link is external)
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
ibm -- db2_connect IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user to obtain elevated privilege and overwrite DB2 files. IBM X-Force ID: 128180. 2017-09-12 7.2 CVE-2017-1452
CONFIRM(link is external)
BID(link is external)
SECTRACK(link is external)
MISC(link is external)
imagemagick -- imagemagick In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadMPCImage in coders/mpc.c) via a crafted file. 2017-09-12 7.1 CVE-2017-14325
CONFIRM(link is external)
imagemagick -- imagemagick ImageMagick 7.0.6-6 has a large loop vulnerability in ReadWPGImage in coders/wpg.c, causing CPU exhaustion via a crafted wpg image file. 2017-09-12 7.1 CVE-2017-14341
CONFIRM(link is external)
CONFIRM(link is external)
microsoft -- edge Microsoft Edge in Microsoft Windows 1703 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft Edge accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8731, CVE-2017-8734, and CVE-2017-11766. 2017-09-12 7.6 CVE-2017-8751
SECTRACK(link is external)
CONFIRM(link is external)
synology -- photo_station Multiple SQL injection vulnerabilities in Synology Photo Station before 6.7.4-3433 and 6.3-2968 allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter to label.php; or (2) type parameter to synotheme.php. 2017-09-08 7.5 CVE-2017-11161
CONFIRM(link is external)
tcpdump -- tcpdump The SMB/CIFS parser in tcpdump before 4.9.2 has a buffer over-read in smbutil.c:name_len(). 2017-09-14 7.5 CVE-2017-12893
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in addrtoname.c:lookup_bytestring(). 2017-09-14 7.5 CVE-2017-12894
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print(). 2017-09-14 7.5 CVE-2017-12895
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print(). 2017-09-14 7.5 CVE-2017-12896
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The ISO CLNS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isoclns_print(). 2017-09-14 7.5 CVE-2017-12897
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:interp_reply(). 2017-09-14 7.5 CVE-2017-12898
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c:decnet_print(). 2017-09-14 7.5 CVE-2017-12899
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump Several protocol parsers in tcpdump before 4.9.2 could cause a buffer over-read in util-print.c:tok2strbuf(). 2017-09-14 7.5 CVE-2017-12900
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The EIGRP parser in tcpdump before 4.9.2 has a buffer over-read in print-eigrp.c:eigrp_print(). 2017-09-14 7.5 CVE-2017-12901
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c, several functions. 2017-09-14 7.5 CVE-2017-12902
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print(). 2017-09-14 7.5 CVE-2017-12985
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print(). 2017-09-14 7.5 CVE-2017-12986
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements(). 2017-09-14 7.5 CVE-2017-12987
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse(). 2017-09-14 7.5 CVE-2017-12988
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). 2017-09-14 7.5 CVE-2017-12991
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print(). 2017-09-14 7.5 CVE-2017-12992
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions. 2017-09-14 7.5 CVE-2017-12993
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). 2017-09-14 7.5 CVE-2017-12994
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print(). 2017-09-14 7.5 CVE-2017-12996
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_extd_ip_reach(). 2017-09-14 7.5 CVE-2017-12998
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print(). 2017-09-14 7.5 CVE-2017-12999
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print(). 2017-09-14 7.5 CVE-2017-13000
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh(). 2017-09-14 7.5 CVE-2017-13001
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension(). 2017-09-14 7.5 CVE-2017-13002
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print(). 2017-09-14 7.5 CVE-2017-13003
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header(). 2017-09-14 7.5 CVE-2017-13004
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xid_map_enter(). 2017-09-14 7.5 CVE-2017-13005
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions. 2017-09-14 7.5 CVE-2017-13006
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c:pktap_if_print(). 2017-09-14 7.5 CVE-2017-13007
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements(). 2017-09-14 7.5 CVE-2017-13008
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print(). 2017-09-14 7.5 CVE-2017-13009
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart(). 2017-09-14 7.5 CVE-2017-13010
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal(). 2017-09-14 7.5 CVE-2017-13011
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print(). 2017-09-14 7.5 CVE-2017-13012
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions. 2017-09-14 7.5 CVE-2017-13013
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions. 2017-09-14 7.5 CVE-2017-13014
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print(). 2017-09-14 7.5 CVE-2017-13015
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). 2017-09-14 7.5 CVE-2017-13016
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print(). 2017-09-14 7.5 CVE-2017-13017
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). 2017-09-14 7.5 CVE-2017-13018
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). 2017-09-14 7.5 CVE-2017-13019
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). 2017-09-14 7.5 CVE-2017-13020
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print(). 2017-09-14 7.5 CVE-2017-13021
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute(). 2017-09-14 7.5 CVE-2017-13022
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). 2017-09-14 7.5 CVE-2017-13023
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). 2017-09-14 7.5 CVE-2017-13024
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). 2017-09-14 7.5 CVE-2017-13025
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions. 2017-09-14 7.5 CVE-2017-13026
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print(). 2017-09-14 7.5 CVE-2017-13027
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). 2017-09-14 7.5 CVE-2017-13028
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options(). 2017-09-14 7.5 CVE-2017-13029
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions. 2017-09-14 7.5 CVE-2017-13030
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print(). 2017-09-14 7.5 CVE-2017-13031
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string(). 2017-09-14 7.5 CVE-2017-13032
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). 2017-09-14 7.5 CVE-2017-13033
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). 2017-09-14 7.5 CVE-2017-13034
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id(). 2017-09-14 7.5 CVE-2017-13035
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3(). 2017-09-14 7.5 CVE-2017-13036
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts(). 2017-09-14 7.5 CVE-2017-13037
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). 2017-09-14 7.5 CVE-2017-13038
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions. 2017-09-14 7.5 CVE-2017-13039
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions. 2017-09-14 7.5 CVE-2017-13040
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print(). 2017-09-14 7.5 CVE-2017-13041
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print(). 2017-09-14 7.5 CVE-2017-13042
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn(). 2017-09-14 7.5 CVE-2017-13043
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print(). 2017-09-14 7.5 CVE-2017-13044
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print(). 2017-09-14 7.5 CVE-2017-13045
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). 2017-09-14 7.5 CVE-2017-13046
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). 2017-09-14 7.5 CVE-2017-13047
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). 2017-09-14 7.5 CVE-2017-13048
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print(). 2017-09-14 7.5 CVE-2017-13049
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print(). 2017-09-14 7.5 CVE-2017-13050
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print(). 2017-09-14 7.5 CVE-2017-13051
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print(). 2017-09-14 7.5 CVE-2017-13052
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info(). 2017-09-14 7.5 CVE-2017-13053
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print(). 2017-09-14 7.5 CVE-2017-13054
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv(). 2017-09-14 7.5 CVE-2017-13055
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print(). 2017-09-14 7.5 CVE-2017-13687
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
tcpdump -- tcpdump The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print(). 2017-09-14 7.5 CVE-2017-13688
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print(). 2017-09-14 7.5 CVE-2017-13689
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IKEv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions. 2017-09-14 7.5 CVE-2017-13690
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
tcpdump -- tcpdump The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print(). 2017-09-14 7.5 CVE-2017-13725
SECTRACK(link is external)
CONFIRM
CONFIRM(link is external)
CONFIRM(link is external)
Back to top

 

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
azeotech -- daqfactory An Uncontrolled Search Path Element issue was discovered in AzeoTech DAQFactory versions prior to 17.1. An uncontrolled search path element vulnerability has been identified, which may execute malicious DLL files that have been placed within the search path. 2017-09-08 4.6 CVE-2017-5147
BID(link is external)
MISC
divinglog -- diving_log XXE in Diving Log 6.0 allows attackers to remotely view local files through a crafted dive.xml file that is mishandled during a Subsurface import. 2017-09-08 4.3 CVE-2017-9095
MISC(link is external)
ee -- 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSettings. 2017-09-11 6.8 CVE-2017-14267
MISC
MISC(link is external)
MISC(link is external)
MISC(link is external)
MISC(link is external)
MISC(link is external)
MISC(link is external)
ee -- 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have XSS in the sms_content parameter in a getSMSlist request. 2017-09-11 4.3 CVE-2017-14268
MISC
MISC(link is external)
ee -- 4gee_wifi_mbb_firmware EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices allow remote attackers to obtain sensitive information via a JSONP endpoint, as demonstrated by passwords and SMS content. 2017-09-11 5.0 CVE-2017-14269
MISC
MISC(link is external)
ellucian -- banner_student Cross-site scripting (XSS) vulnerability in Ellucian (formerly SunGard) Banner Student 8.5.1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2017-09-11 4.3 CVE-2015-4687
MISC(link is external)
BUGTRAQ(link is external)
ffmpeg -- ffmpeg The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg 3.3.3 may return a NULL pointer depending on a value contained in a file, but callers do not anticipate this, as demonstrated by the avcodec_string function in libavcodec/utils.c, leading to a NULL pointer dereference. (It is also conceivable that there is security relevance for a NULL pointer dereference in av_color_primaries_name calls within the ffprobe command-line program.) 2017-09-09 6.8 CVE-2017-14225
BID(link is external)
MISC(link is external)
MISC
fortinet -- fortios A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to Execute unauthorized code or commands via the action input during the activation of a FortiToken. 2017-09-11 4.3 CVE-2017-3132
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
EXPLOIT-DB(link is external)
fortinet -- fortios A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.6.0 and earlier allows attackers to execute unauthorized code or commands via the Replacement Message HTML for SSL-VPN. 2017-09-11 4.3 CVE-2017-3133
BID(link is external)
SECTRACK(link is external)
CONFIRM(link is external)
EXPLOIT-DB(link is external)
google -- android A information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-38496660. 2017-09-08 4.3 CVE-2017-0776
BID(link is external)
CONFIRM(link is external)
google -- android A information disclosure vulnerability in the Android media framework (n/a). Product: Android. Versions: 7.0, 7.1.1, 7.1.2. Android ID: A-38342499. 2017-09-08 4.3 CVE-2017-0777
BID(link is external)
CONFIRM(link is external)
google -- android A information disclosure vulnerability in the Android media framework (audioflinger). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-38340117. 2017-09-08 4.3 CVE-2017-0779
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Android system (nfc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37287958. 2017-09-08 5.8 CVE-2017-0784
BID(link is external)
CONFIRM(link is external)
google -- android A elevation of privilege vulnerability in the Broadcom wi-fi driver. Product: Android. Versions: Android kernel. Android ID: A-37351060. References: B-V2017060101. 2017-09-08 5.8 CVE-2017-