Exploit Intelligence Platform

CVE-2017-12445 6.5 MEDIUM EPSS 0.00

The JB2BitmapCoder::code_row_by_refinement function in jb2/bmpcoder.cpp in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.

CWE-125 Aug 17, 2017

CVE-2017-12444 6.5 MEDIUM EPSS 0.00

The mdjvu_bitmap_get_bounding_box function in base/4bitmap.c in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.

CWE-125 Aug 17, 2017

CVE-2017-12443 6.5 MEDIUM EPSS 0.00

The mdjvu_bitmap_pack_row function in base/4bitmap.c in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.

CWE-125 Aug 17, 2017

CVE-2017-12442 6.5 MEDIUM EPSS 0.00

The row_is_empty function in base/4bitmap.c:272 in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.

CWE-125 Aug 17, 2017

CVE-2017-12441 6.5 MEDIUM EPSS 0.00

The row_is_empty function in base/4bitmap.c:274 in minidjvu 0.8 can cause a denial of service (invalid memory read and application crash) via a crafted djvu file.

CWE-125 Aug 17, 2017

CVE-2017-11664 6.5 MEDIUM 1 PoC Analysis EPSS 0.07

The _WM_SetupMidiEvent function in internal_midi.c:2122 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

CWE-125 Aug 17, 2017

CVE-2017-11663 6.5 MEDIUM 1 PoC Analysis EPSS 0.09

The _WM_SetupMidiEvent function in internal_midi.c:2315 in WildMIDI 0.4.2 can cause a denial of service (invalid memory read and application crash) via a crafted mid file.

CWE-125 Aug 17, 2017

CVE-2016-5858 4.7 MEDIUM EPSS 0.00

In an ioctl handler in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, if a user supplies a value too large, then an out-of-bounds read occurs.

CWE-200 Aug 16, 2017

CVE-2016-5855 4.7 MEDIUM EPSS 0.00

In a driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a user-supplied buffer is casted to a structure without checking if the source buffer is large enough.

CWE-200 Aug 16, 2017

CVE-2016-5854 4.7 MEDIUM EPSS 0.00

In a driver in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, kernel heap memory can be exposed to userspace.

CWE-200 Aug 16, 2017

CVE-2016-5347 4.7 MEDIUM EPSS 0.00

In all Qualcomm products with Android releases from CAF using the Linux kernel, kernel stack data can be leaked to userspace by an audio driver.

CWE-200 Aug 16, 2017

CVE-2017-12855 6.5 MEDIUM EPSS 0.00

Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is free to modify/reuse the grant entry when it is not in use. Under some circumstances, Xen will clear the status bits too early, incorrectly informing the guest that the grant is no longer in use. A guest may prematurely believe that a granted frame is safely private again, and reuse it in a way which contains sensitive information, while the domain on the far end of the grant is still using the grant. Xen 4.9, 4.8, 4.7, 4.6, and 4.5 are affected.

CWE-200 Aug 15, 2017

CVE-2017-1190 6.4 MEDIUM EPSS 0.00

IBM Emptoris Strategic Supply Management Platform 10.x and 10.1 could allow a local user with special access roles to execute arbitrary code on the system. By manipulating a configurable property, an attacker could exploit this vulnerability to gain full control over the system. IBM X-Force ID: 123559.

Aug 14, 2017

CVE-2016-6029 5.9 MEDIUM EPSS 0.00

IBM Emptoris Strategic Supply Management Platform 10.0 and 10.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 116881.

CWE-200 Aug 14, 2017

CVE-2016-6021 5.4 MEDIUM EPSS 0.00

IBM Emptoris Strategic Supply Management Platform 10.0 and 10.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 116755.

CWE-79 Aug 14, 2017

CVE-2017-11149 6.5 MEDIUM EPSS 0.00

Server-side request forgery (SSRF) vulnerability in Downloader in Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 allows remote authenticated users to download arbitrary local files via crafted URI.

CWE-918 Aug 14, 2017

CVE-2017-9662 5.3 MEDIUM EPSS 0.00

An Improper Privilege Management issue was discovered in Fuji Electric Monitouch V-SFT versions prior to Version 5.4.43.0. Monitouch V-SFT is installed in a directory with weak access controls by default, which could allow an authenticated attacker with local access to escalate privileges.

CWE-269 Aug 14, 2017

CVE-2017-9655 5.4 MEDIUM EPSS 0.00

A Cross-Site Scripting issue was discovered in OSIsoft PI Integrator for Business Analytics before 2016 R2, PI Integrator for Microsoft Azure before 2016 R2 SP1, and PI Integrator for SAP HANA before 2017. An attacker may be able to upload a malicious script that attempts to redirect users to a malicious web site.

CWE-79 Aug 14, 2017

CVE-2017-9802 6.1 MEDIUM EPSS 0.01

The Javascript method Sling.evalString() in Apache Sling Servlets Post before 2.3.22 uses the javascript 'eval' function to parse input strings, which allows for XSS attacks by passing specially crafted input strings.

CWE-79 Aug 14, 2017

CVE-2015-3615 5.4 MEDIUM EPSS 0.00

Cross-site scripting (XSS) vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving unspecified parameters and a privilege escalation attack.

CWE-79 Aug 11, 2017