|
255321
|
5.5 |
MEDIUM
Local
|
artifex
|
ghostscript
|
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-7207
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255322
|
7.1 |
HIGH
Local
|
libav
|
libav
|
The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory v…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7206
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255323
|
6.1 |
MEDIUM
Network
|
gamepanelx
|
gamepanelx-v3
|
A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. The vulnerability exists due to insufficient filtration of user-supplied data (a) passed to the "GamePanelX-V3-master/ajax/ajax.ph…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7205
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255324
|
6.1 |
MEDIUM
Network
|
imdbphp_project
|
imdbphp
|
A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The vulnerability exists due to insufficient filtration of user-supplied data (name) passed to the "imdbphp-master/demo/search.php" URL. …
|
CWE-79
Cross-site Scripting
|
CVE-2017-7204
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255325
|
6.1 |
MEDIUM
Network
|
zoneminder
|
zoneminder
|
A Cross-Site Scripting (XSS) was discovered in ZoneMinder before 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder-maste…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7203
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255326
|
6.1 |
MEDIUM
Network
|
slims
|
slims7_cendana
|
Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. The vulnerabilities exist due to insufficient filtration of user-supplied data (id) passed to the 'slims7_cen…
|
CWE-79
Cross-site Scripting
|
CVE-2017-7202
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255327
|
5.8 |
MEDIUM
Network
|
openstack
|
glance
|
An SSRF issue was discovered in OpenStack Glance before Newton. The 'copy_from' feature in the Image Service API v1 allowed an attacker to perform masked network port scans. With v1, it is possible t…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2017-7200
|
2024-11-21 12:31 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255328
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel through 4.10.4 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7187
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255329
|
7.5 |
HIGH
Network
|
pcre
|
pcre2
pcre
|
libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7186
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255330
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The xfrm_replay_verify_len function in net/xfrm/xfrm_user.c in the Linux kernel through 4.10.6 does not validate certain size data after an XFRM_MSG_NEWAE update, which allows local users to obtain r…
|
NVD-CWE-noinfo
|
CVE-2017-7184
|
2024-11-21 12:31 |
2017-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
