Lista CVE - 2017 / Ottobre
Visualizzazione 201 - 300 di 1398 CVE per Ottobre 2017 (Pagina 3 di 14)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2017-1201 | 2017-10-05 | IBM BigFix Compliance Analytics 1.9.79 (TEMA SUAv1 SCA SCM) stores user credentials in clear text which can be read by a local user. IBM X-Force ID: 123676. |
| CVE-2017-1301 | 2017-10-05 | IBM Spectrum Protect 7.1 and 8.1 could allow a local attacker to launch a symlink attack. IBM Spectrum Protect Backup-archive Client creates temporary files insecurely. A local attacker could exploit... |
| CVE-2017-1339 | 2017-10-05 | IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) Server uses weak encryption for the password. A database administrator may be able to decrypt the IBM Spectrum protect client... |
| CVE-2017-1378 | 2017-10-05 | IBM Spectrum Protect 7.1 and 8.1 (formerly Tivoli Storage Manager) disclosed unencrypted login credentials to Vmware vCenter in the application trace output which could be obtained by a local user.... |
| CVE-2017-1522 | 2017-10-05 | IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the... |
| CVE-2017-12106 | 2017-10-05 | A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code... |
| CVE-2017-2880 | 2017-10-05 | An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execution. An attacker... |
| CVE-2017-2920 | 2017-10-05 | An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially... |
| CVE-2017-12732 | 2017-10-05 | A Stack-based Buffer Overflow issue was discovered in GE CIMPLICITY Versions 9.0 and prior. A function reads a packet to indicate the next packet length. The next packet length is... |
| CVE-2017-13992 | 2017-10-05 | An Insufficient Entropy issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The application does not utilize sufficiently random number generation for the web interface authentication mechanism, which could... |
| CVE-2017-13994 | 2017-10-05 | A Cross-site Scripting issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web interface lacks proper web request validation, which could allow XSS attacks to occur if an... |
| CVE-2017-13996 | 2017-10-05 | A Relative Path Traversal issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The web user interface fails to prevent access to critical files that non administrative users should... |
| CVE-2017-13998 | 2017-10-05 | An Insufficiently Protected Credentials issue was discovered in LOYTEC LVIS-3ME versions prior to 6.2.0. The application does not sufficiently protect sensitive information from unauthorized access. |
| CVE-2017-15041 | 2017-10-05 | Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository... |
| CVE-2017-15042 | 2017-10-05 | An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections... |
| CVE-2017-12730 | 2017-10-06 | An Unquoted Search Path issue was discovered in mySCADA myPRO Versions 7.0.26 and prior. Application services utilize unquoted search path elements, which could allow an attacker to execute arbitrary code... |
| CVE-2017-15045 | 2017-10-06 | LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fill_buffer in libmp3lame/util.c, related to lame_encode_buffer_sample_t in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410. |
| CVE-2017-15046 | 2017-10-06 | LAME 3.99.5, 3.99.4, 3.98.4, 3.98.2, 3.98 and 3.97 have a stack-based buffer overflow in unpack_read_samples in frontend/get_audio.c, a different vulnerability than CVE-2017-9412. |
| CVE-2017-15047 | 2017-10-06 | The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by leveraging... |
| CVE-2017-15056 | 2017-10-06 | p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted binary file,... |
| CVE-2017-15063 | 2017-10-06 | There are CSRF vulnerabilities in Subrion CMS 4.1.x through 4.1.5, and before 4.2.0, because of a logic error. Although there is functionality to detect CSRF, it is called too late... |
| CVE-2017-1000254 | 2017-10-06 | libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in (anonymous or not), it asks the server... |
| CVE-2014-7240 | 2017-10-06 | Cross-site scripting (XSS) vulnerability in the Easy Contact Form Solution plugin before 1.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the value parameter in... |
| CVE-2014-8492 | 2017-10-06 | Multiple cross-site scripting (XSS) vulnerabilities in assets/misc/fallback-page.php in the Profile Builder plugin before 2.0.3 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) site_name,... |
| CVE-2014-8758 | 2017-10-06 | Cross-site scripting (XSS) vulnerability in Best Gallery Albums Plugin before 3.0.70for WordPress allows remote attackers to inject arbitrary web script or HTML via the order_id parameter in the gallery_album_sorting page... |
| CVE-2014-0047 | 2017-10-06 | Docker before 1.5 allows local users to have unspecified impact via vectors involving unsafe /tmp usage. |
| CVE-2014-2903 | 2017-10-06 | CyaSSL does not check the key usage extension in leaf certificates, which allows remote attackers to spoof servers via a crafted server certificate not authorized for use in an SSL/TLS... |
| CVE-2015-1206 | 2017-10-06 | Heap-based buffer overflow in Google Chrome before M40 allows remote attackers to cause a denial of service (unpaged memory write and process crash) via a crafted MP4 file. |
| CVE-2015-2158 | 2017-10-06 | Off-by-one error in the pngcrush_measure_idat function in pngcrush.c in pngcrush before 1.7.84 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a... |
| CVE-2015-2297 | 2017-10-06 | nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header. |
| CVE-2015-5246 | 2017-10-06 | The LDAP Authentication functionality in Foreman might allow remote attackers with knowledge of old passwords to gain access via vectors involving the password lifetime period in Active Directory. |
| CVE-2017-1002153 | 2017-10-06 | Koji 1.13.0 does not properly validate SCM paths, allowing an attacker to work around blacklisted paths for build submission. |
| CVE-2017-13068 | 2017-10-06 | QNAP has already patched this vulnerability. This security concern allows a remote attacker to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does... |
| CVE-2017-9272 | 2017-10-06 | The Bi-directional driver in IDM 4.5 before 4.0.3.0 could be susceptible to a denial of service attack. |
| CVE-2017-9273 | 2017-10-06 | The Bi-directional driver in IDM 4.5 before 4.0.3.0 could be susceptible to unauthorized log configuration changes. |
| CVE-2017-13069 | 2017-10-06 | QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8.6 (for QTS 4.2.x), 5.0.7 (for QTS 4.3.x), and earlier. If exploited, these vulnerabilities may allow a... |
| CVE-2017-15079 | 2017-10-06 | The Smush Image Compression and Optimization plugin before 2.7.6 for WordPress allows directory traversal. |
| CVE-2017-15084 | 2017-10-06 | The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22. |
| CVE-2014-8957 | 2017-10-06 | Cross-site scripting (XSS) vulnerability in OpenKM before 6.4.19 allows remote authenticated users to inject arbitrary web script or HTML via the Tasks parameter. |
| CVE-2015-0296 | 2017-10-06 | The pre-install script in texlive 3.1.20140525_r34255.fc21 as packaged in Fedora 21 and rpm, and texlive 6.20131226_r32488.fc20 and rpm allows local users to delete arbitrary files via a crafted file in... |
| CVE-2015-1429 | 2017-10-06 | Directory traversal vulnerability in Cybele Software Thinfinity Remote Desktop Workstation 3.0.0.3 32-bit and 64-bit allows remote attackers to download arbitrary files via a .. (dot dot) in an unspecified parameter. |
| CVE-2015-1828 | 2017-10-06 | The Ruby http gem before 0.7.3 does not verify hostnames in SSL connections, which might allow remote attackers to obtain sensitive information via a man-in-the-middle-attack. |
| CVE-2015-2142 | 2017-10-06 | Multiple cross-site request forgery (CSRF) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote authenticated users to (1) hijack the authentication of users for requests that cause an unspecified impact via... |
| CVE-2015-2143 | 2017-10-06 | Multiple cross-site request forgery (CSRF) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to hijack the authentication of users for requests that cause an unspecified impact via unknown parameters. |
| CVE-2015-2144 | 2017-10-06 | Multiple cross-site scripting (XSS) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote authenticated users to inject arbitrary web script or HTML via the (1) project name parameter to project.php; the... |
| CVE-2015-2145 | 2017-10-06 | Multiple cross-site scripting (XSS) vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. |
| CVE-2015-2146 | 2017-10-06 | Multiple SQL injection vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to project.php, the (2) group_id parameter to group.php,... |
| CVE-2015-2147 | 2017-10-06 | Multiple SQL injection vulnerabilities in Issuetracker phpBugTracker before 1.7.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters. |
| CVE-2015-2148 | 2017-10-06 | Multiple cross-site scripting (XSS) vulnerabilities in Issuetracker phpBugTracker before 1.7.2 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters. |
| CVE-2015-2673 | 2017-10-06 | The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 through 3.0.20 for WordPress allow remote attackers to gain administrator privileges and execute arbitrary code via the... |
| CVE-2017-14971 | 2017-10-09 | Infocus Mondopad 2.2.08 is vulnerable to a Hashed Credential Disclosure vulnerability. The attacker provides a crafted Microsoft Office document containing a link that has a UNC pathname associated with an... |
| CVE-2017-14972 | 2017-10-09 | InFocus Mondopad 2.2.08 is vulnerable to authentication bypass when accessing uploaded files by entering Control-Alt-Delete, and then using Task Manager to reach a file. |
| CVE-2017-14973 | 2017-10-09 | IDenticard Two-Reader Controller Configuration Manager 1.18.8 (396) is vulnerable to Stored Cross-Site Scripting (XSS) via the notes field in /~user_handler?file=logged_in.shtm (aka the edit user page). |
| CVE-2017-15185 | 2017-10-09 | plugins/ogg.c in Libmp3splt 0.9.2 calls the libvorbis vorbis_block_clear function with uninitialized data upon detection of invalid input, which allows remote attackers to cause a denial of service (application crash) via... |
| CVE-2014-0030 | 2017-10-09 | The XML-RPC protocol support in Apache Roller before 5.0.3 allows attackers to conduct XML External Entity (XXE) attacks via unspecified vectors. |
| CVE-2014-9474 | 2017-10-09 | Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str. |
| CVE-2015-7842 | 2017-10-09 | Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2... |
| CVE-2017-13721 | 2017-10-09 | In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server... |
| CVE-2017-13723 | 2017-10-09 | In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially... |
| CVE-2017-14603 | 2017-10-09 | In Asterisk 11.x before 11.25.3, 13.x before 13.17.2, and 14.x before 14.6.2 and Certified Asterisk 11.x before 11.6-cert18 and 13.x before 13.13-cert6, insufficient RTCP packet validation could allow reading stale... |
| CVE-2017-14614 | 2017-10-09 | Directory traversal vulnerability in the Visor GUI Console in GridGain before 1.7.16, 1.8.x before 1.8.12, 1.9.x before 1.9.7, and 8.x before 8.1.5 allows remote authenticated users to read arbitrary files... |
| CVE-2017-14980 | 2017-10-09 | Buffer overflow in Sync Breeze Enterprise 10.0.28 allows remote attackers to have unspecified impact via a long username parameter to /login. |
| CVE-2017-15038 | 2017-10-09 | Race condition in the v9fs_xattrwalk function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local guest OS users to obtain sensitive information from host heap memory via vectors related to... |
| CVE-2017-5637 | 2017-10-10 | Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve... |
| CVE-2017-15188 | 2017-10-10 | A persistent (stored) XSS vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the hosts array parameter to... |
| CVE-2017-15194 | 2017-10-10 | include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page. |
| CVE-2017-15195 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit swimlanes of a private project of another user. |
| CVE-2017-15196 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can remove columns from a private project of another user. |
| CVE-2017-15197 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can add a new category to a private project of another user. |
| CVE-2017-15198 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit a category of a private project of another user. |
| CVE-2017-15199 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit metadata of a private project of another user, as demonstrated by Name, Email, Identifier, and Description. |
| CVE-2017-15200 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can add a new task to a private project of another user. |
| CVE-2017-15201 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit tags of a private project of another user. |
| CVE-2017-15202 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit columns of a private project of another user. |
| CVE-2017-15203 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can remove categories from a private project of another user. |
| CVE-2017-15204 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can add automatic actions to a private project of another user. |
| CVE-2017-15205 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can download attachments from a private project of another user. |
| CVE-2017-15206 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can add an internal link to a private project of another user. |
| CVE-2017-15207 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can edit tasks of a private project of another user. |
| CVE-2017-15208 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can remove automatic actions from a private project of another user. |
| CVE-2017-15209 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can remove attachments from a private project of another user. |
| CVE-2017-15210 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can see thumbnails of pictures from a private project of another user. |
| CVE-2017-15211 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can add an external link to a private project of another user. |
| CVE-2017-15212 | 2017-10-10 | In Kanboard before 1.0.47, by altering form data, an authenticated user can at least see the names of tags of a private project of another user. |
| CVE-2017-15213 | 2017-10-10 | Stored XSS vulnerability in Flyspray before 1.0-rc6 allows an authenticated user to inject JavaScript to gain administrator privileges, via the real_name or email_address field to themes/CleanFS/templates/common.editallusers.tpl. |
| CVE-2017-15214 | 2017-10-10 | Stored XSS vulnerability in Flyspray 1.0-rc4 before 1.0-rc6 allows an authenticated user to inject JavaScript to gain administrator privileges and also to execute JavaScript against other users (including unauthenticated users),... |
| CVE-2017-15215 | 2017-10-10 | Reflected XSS vulnerability in Shaarli v0.9.1 allows an unauthenticated attacker to inject JavaScript via the searchtags parameter to index.php. If the victim is an administrator, an attacker can (for example)... |
| CVE-2017-14943 | 2017-10-10 | Trapeze TransitMaster is vulnerable to information disclosure (emails / hashed passwords) via a modified userID field in JSON data to ManageSubscriber.aspx/GetSubscriber. NOTE: this software is independently deployed at multiple municipal... |
| CVE-2014-9092 | 2017-10-10 | libjpeg-turbo before 1.3.1 allows remote attackers to cause a denial of service (crash) via a crafted JPEG file, related to the Exif marker. |
| CVE-2015-2856 | 2017-10-10 | Directory traversal vulnerability in the template function in function.inc in Accellion File Transfer Appliance devices before FTA_9_11_210 allows remote attackers to read arbitrary files via a .. (dot dot) in... |
| CVE-2017-12860 | 2017-10-10 | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who... |
| CVE-2017-12861 | 2017-10-10 | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only those who... |
| CVE-2017-13706 | 2017-10-10 | XML external entity (XXE) vulnerability in the import package functionality of the deployment module in Lansweeper before 6.0.100.67 allows remote authenticated users to obtain sensitive information, cause a denial of... |
| CVE-2008-7315 | 2017-10-10 | UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. |
| CVE-2015-2988 | 2017-10-10 | Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks. |
| CVE-2015-5639 | 2017-10-10 | niconico App for iOS before 6.38 does not verify SSL certificates which could allow remote attackers to execute man-in-the-middle attacks. |
| CVE-2015-5675 | 2017-10-10 | The sys_amd64 IRET Handler in the kernel in FreeBSD 9.3 and 10.1 allows local users to gain privileges or cause a denial of service (kernel panic). |
| CVE-2015-6521 | 2017-10-10 | Multiple cross-site scripting (XSS) vulnerabilities in ATutor LMS version 2.2. |
| CVE-2015-6918 | 2017-10-10 | salt before 2015.5.5 leaks git usernames and passwords to the log. |
| CVE-2015-7384 | 2017-10-10 | Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service. |