|
255491
|
7.5 |
HIGH
Network
|
haxx
|
libcurl
|
In curl and libcurl 7.52.0 to and including 7.53.1, libcurl would attempt to resume a TLS session even if the client certificate had changed. That is unacceptable since a server by specification is a…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-7468
|
2024-11-21 12:31 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255492
|
9.8 |
CRITICAL
Network
|
minicom_project
|
minicom
|
A buffer overflow flaw was found in the way minicom before version 2.7.1 handled VT100 escape sequences. A malicious terminal device could potentially use this flaw to crash minicom, or execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7467
|
2024-11-21 12:31 |
2018-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255493
|
9.0 |
CRITICAL
Adjacent
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the VirtFS, host directory sharing via Plan 9 File System (9pfs) support, is vulnerable to an improper access control issue. It could occur while accessing files on a…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-7471
|
2024-11-21 12:31 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255494
|
9.8 |
CRITICAL
Network
|
redhat
|
jboss_enterprise_application_platform
|
It was found that the JAXP implementation used in JBoss EAP 7.0 for XSLT processing is vulnerable to code injection. An attacker could use this flaw to cause remote code execution if they are able to…
|
-
|
CVE-2017-7465
|
2024-11-21 12:31 |
2018-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255495
|
8.0 |
HIGH
Network
|
redhat
|
ansible
openstack
|
Ansible before version 2.3 has an input validation vulnerability in the handling of data sent from client systems. An attacker with control over a client system being managed by Ansible, and the abil…
|
CWE-20
Improper Input Validation
|
CVE-2017-7466
|
2024-11-21 12:31 |
2018-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255496
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass intended memory-read restrictions via a c…
|
CWE-200
Information Exposure
|
CVE-2017-7173
|
2024-11-21 12:31 |
2018-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255497
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
mac_os_x
watchos
tvos
icloud
itunes
|
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7172
|
2024-11-21 12:31 |
2018-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255498
|
7.8 |
HIGH
Local
|
apple
|
iphone_os
mac_os_x
watchos
tvos
|
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7171
|
2024-11-21 12:31 |
2018-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255499
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Security" component. It allows attackers to execute arbitrary code in a privileged context…
|
CWE-20
Improper Input Validation
|
CVE-2017-7170
|
2024-11-21 12:31 |
2018-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255500
|
7.8 |
HIGH
Local
|
apple
|
xcode
|
An issue was discovered in certain Apple products. Xcode before 9.2 is affected. The issue involves the "ld64" component. A buffer overflow allows remote attackers to execute arbitrary code via craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7167
|
2024-11-21 12:31 |
2018-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
