Exploit Intelligence Platform

CVE-2017-12966 6.5 MEDIUM EPSS 0.00

The asn1f_lookup_symbol_impl function in asn1fix_retrieve.c in libasn1fix.a in asn1c 0.9.28 allows remote attackers to cause a denial of service (segmentation fault) via a crafted .asn1 file.

CWE-119 Aug 20, 2017

CVE-2017-12967 6.5 MEDIUM EPSS 0.01

The getsym function in tekhex.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a malformed tekhex binary.

CWE-125 Aug 19, 2017

CVE-2017-12957 6.5 MEDIUM EPSS 0.01

There is a heap-based buffer over-read in libexiv2 in Exiv2 0.26 that is triggered in the Exiv2::Image::io function in image.cpp. It will lead to remote denial of service.

CWE-125 Aug 18, 2017

CVE-2017-12956 6.5 MEDIUM EPSS 0.01

There is an illegal address access in Exiv2::FileIo::path[abi:cxx11]() in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service.

CWE-125 Aug 18, 2017

CVE-2017-8446 5.3 MEDIUM EPSS 0.00

The Reporting feature in X-Pack in versions prior to 5.5.2 and standalone Reporting plugin versions versions prior to 2.4.6 had an impersonation vulnerability. A user with the reporting_user role could execute a report with the permissions of another reporting user, possibly gaining access to sensitive data.

CWE-269 Aug 18, 2017

CVE-2017-8445 5.5 MEDIUM EPSS 0.00

An error was found in the X-Pack Security TLS trust manager for versions 5.0.0 to 5.5.1. If reloading the trust material fails the trust manager will be replaced with an instance that trusts all certificates. This could allow any node using any certificate to join a cluster. The proper behavior in this instance is for the TLS trust manager to deny all certificates.

CWE-295 Aug 18, 2017

CVE-2017-9682 4.7 MEDIUM EPSS 0.00

In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in two KGSL driver functions can lead to a Use After Free condition.

CWE-362 Aug 18, 2017

CVE-2017-8254 5.5 MEDIUM EPSS 0.00

In all Qualcomm products with Android releases from CAF using the Linux kernel, an audio client pointer is dereferenced before being checked if it is valid.

CWE-200 Aug 18, 2017

CVE-2017-12948 6.1 MEDIUM EPSS 0.00

Core\Admin\PFTemplater.php in the PressForward plugin 4.3.0 and earlier for WordPress has XSS in the PATH_INFO to wp-admin/admin.php, related to PHP_SELF.

CWE-79 Aug 18, 2017

CVE-2017-12882 5.4 MEDIUM EPSS 0.00

Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload functionality.

CWE-79 Aug 18, 2017

CVE-2015-5057 6.1 MEDIUM EPSS 0.00

Cross-site scripting (XSS) vulnerability exists in the Wordpress admin panel when the Broken Link Checker plugin before 1.10.9 is installed.

CWE-79 Aug 18, 2017

CVE-2015-4071 5.3 MEDIUM 1 PoC Analysis EPSS 0.13

The Helpdesk Pro Plugin before 1.4.0 for Joomla! allows remote attackers to read the support tickets of arbitrary users via obtaining the target ticketId, and navigating to http://{target}/component/helpdeskpro/?view=ticket&id={ticketId}.

CWE-200 Aug 18, 2017

CVE-2017-12591 5.4 MEDIUM EPSS 0.00

ASUS DSL-N10S V2.1.16_APAC devices have reflected and stored cross site scripting, as demonstrated by the snmpSysName parameter.

CWE-79 Aug 18, 2017

CVE-2017-0687 5.5 MEDIUM EPSS 0.00

A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35583675.

Aug 18, 2017

CVE-2017-9816 6.1 MEDIUM EPSS 0.00

Cross-site scripting (XSS) vulnerability in Paessler PRTG Network Monitor before 17.2.32.2279 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CWE-79 Aug 18, 2017

CVE-2017-9767 5.4 MEDIUM 1 PoC Analysis EPSS 0.00

Multiple cross-site scripting (XSS) vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the (1) Name or (2) Description parameter to RM/Reservation/ReserveNew; the (3) Description parameter to RM/Topology/Update; the (4) Name, (5) Description, (6) ExecutionBatches[0].Name, (7) ExecutionBatches[0].Description, or (8) Labels parameter to SnQ/JobTemplate/Edit; or (9) Alias or (10) Description parameter to RM/AbstractTemplate/AddOrUpdateAbstractTemplate.

CWE-79 Aug 18, 2017

CVE-2017-12859 5.9 MEDIUM EPSS 0.01

NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors.

CWE-20 Aug 18, 2017

CVE-2017-12680 6.1 MEDIUM EPSS 0.00

Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php.

CWE-79 Aug 18, 2017

CVE-2015-4082 6.5 MEDIUM 1 Writeup EPSS 0.01

attic before 0.15 does not confirm unencrypted backups with the user, which allows remote attackers with read and write privileges for the encrypted repository to obtain potentially sensitive information by changing the manifest type byte of the repository to "unencrypted / without key file".

CWE-264 Aug 18, 2017

CVE-2015-1878 6.8 MEDIUM EPSS 0.00

Thales nShield Connect hardware models 500, 1500, 6000, 500+, 1500+, and 6000+ before 11.72 allows physically proximate attackers to sign arbitrary data with previously loaded signing keys, extract the device identification key [KNETI] and impersonate the nShield Connect device on a network, affect the integrity and confidentiality of newly created keys, and potentially cause other unspecified impacts using previously loaded keys by connecting to the USB port on the front panel.

CWE-264 Aug 18, 2017