|
198761
|
5.0 |
MEDIUM
Network
|
cisco
|
webex_meeting_center
|
A vulnerability in Cisco WebEx Meeting Center could allow an authenticated, remote attacker to initiate connections to arbitrary hosts, aka a "URL Redirection Vulnerability." The vulnerability is due…
|
CWE-20
Improper Input Validation
|
CVE-2017-12297
|
2024-11-21 12:09 |
2017-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198762
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.13.11 mishandles node splitting, which allows local users to cause a denial of service (NULL point…
|
-
|
CVE-2017-12193
|
2024-11-21 12:09 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198763
|
6.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The bio_map_user_iov and bio_unmap_user functions in block/bio.c in the Linux kernel before 4.13.8 do unbalanced refcounting when a SCSI I/O vector has small consecutive buffers belonging to the same…
|
-
|
CVE-2017-12190
|
2024-11-21 12:09 |
2017-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198764
|
7.8 |
HIGH
Local
|
apache
debian
|
openoffice
debian_linux
|
A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12608
|
2024-11-21 12:09 |
2017-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198765
|
7.8 |
HIGH
Local
|
apache
debian
|
openoffice
debian_linux
|
A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and appl…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-12607
|
2024-11-21 12:09 |
2017-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198766
|
8.2 |
HIGH
Local
|
cisco
|
umbrella_insights_virtual_appliance
|
A vulnerability in Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier could allow an authenticated, local attacker to log in to an affected virtual appliance with root privileges. The vulne…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-12350
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198767
|
9.8 |
CRITICAL
Network
|
cisco
|
finesse
hosted_collaboration_solution
emergency_responder
unity_connection
socialminer
mediasense
unified_communications_manager
prime_license_manager
unified_communications_m…
|
A vulnerability in the upgrade mechanism of Cisco collaboration products based on the Cisco Voice Operating System software platform could allow an unauthenticated, remote attacker to gain unauthoriz…
|
CWE-287
Improper Authentication
|
CVE-2017-12337
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198768
|
6.1 |
MEDIUM
Network
|
cisco
|
registered_envelope_service
|
Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2017-12323
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198769
|
6.1 |
MEDIUM
Network
|
cisco
|
email_encryption
|
Multiple vulnerabilities in the web interface of the Cisco Registered Envelope Service (a cloud-based service) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2017-12322
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198770
|
6.7 |
MEDIUM
Local
|
cisco
|
ip_phone_8800_series_firmware
|
A vulnerability in the debug interface of Cisco IP Phone 8800 series could allow an authenticated, local attacker to execute arbitrary commands, aka Debug Shell Command Injection. The vulnerability i…
|
CWE-78
OS Command
|
CVE-2017-12305
|
2024-11-21 12:09 |
2017-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
