Exploit Intelligence Platform

CVE-2017-8940 5.9 MEDIUM EPSS 0.00

The Zipongo - Healthy Recipes and Grocery Deals app before 6.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-8939 5.9 MEDIUM EPSS 0.00

The Warner Bros. ellentube app 3.1.1 through 3.1.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-8938 5.9 MEDIUM EPSS 0.00

The Radio Javan app 9.3.4 through 9.6.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-8937 5.9 MEDIUM EPSS 0.00

The Life Before Us Yo app 2.5.8 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-8936 5.9 MEDIUM EPSS 0.00

The MoboTap Dolphin Web Browser - Fast Private Internet Search app 9.23.0 through 9.23.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-8935 5.9 MEDIUM EPSS 0.00

The Quest Information Systems Indiana Voters app 1.1.24 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CWE-295 May 15, 2017

CVE-2017-7495 5.5 MEDIUM 1 Writeup EPSS 0.00

fs/ext4/inode.c in the Linux kernel before 4.6.2, when ext4 data=ordered mode is used, mishandles a needs-flushing-before-commit list, which allows local users to obtain sensitive information from other users' files in opportunistic circumstances by waiting for a hardware reset, creating a new file, making write system calls, and reading this file.

CWE-200 May 15, 2017

CVE-2017-7479 6.5 MEDIUM EPSS 0.00

OpenVPN versions before 2.3.15 and before 2.4.2 are vulnerable to reachable assertion when packet-ID counter rolls over resulting into Denial of Service of server by authenticated attacker.

CWE-617 May 15, 2017

CVE-2017-8934 5.5 MEDIUM EPSS 0.00

PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (application unavailability).

CWE-20 May 15, 2017

CVE-2017-7491 4.3 MEDIUM EPSS 0.00

In Moodle 2.x and 3.x, a CSRF attack is possible that allows attackers to change the "number of courses displayed in the course overview block" configuration setting.

CWE-352 May 15, 2017

CVE-2017-7490 5.3 MEDIUM EPSS 0.00

In Moodle 2.x and 3.x, searching of arbitrary blogs is possible because a capability check is missing.

CWE-668 May 15, 2017

CVE-2017-7489 6.3 MEDIUM EPSS 0.00

In Moodle 2.x and 3.x, remote authenticated users can take ownership of arbitrary blogs by editing an external blog link.

CWE-269 May 15, 2017

CVE-2017-5655 6.5 MEDIUM EPSS 0.00

In Ambari 2.2.2 through 2.4.2 and Ambari 2.5.0, sensitive data may be stored on disk in temporary files on the Ambari Server host. The temporary files are readable by any user authenticated on the host.

CWE-200 May 15, 2017

CVE-2017-8925 5.5 MEDIUM 1 Writeup EPSS 0.00

The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling.

CWE-404 May 12, 2017

CVE-2017-8924 4.6 MEDIUM 1 Writeup EPSS 0.00

The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uninitialized kernel memory by using a crafted USB device (posing as an io_ti USB serial device) to trigger an integer underflow.

CWE-191 May 12, 2017

CVE-2017-7485 5.9 MEDIUM EPSS 0.01

In PostgreSQL 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3, it was found that the PGREQUIRESSL environment variable was no longer enforcing a SSL/TLS connection to a PostgreSQL server. An active Man-in-the-Middle attacker could use this flaw to strip the SSL/TLS protection from a connection between a client and a server.

CWE-390 May 12, 2017

CVE-2017-2164 6.1 MEDIUM EPSS 0.00

Cross-site scripting vulnerability in SOY CMS with installer 1.8.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CWE-79 May 12, 2017

CVE-2017-2122 5.4 MEDIUM EPSS 0.00

Cross-site scripting vulnerability in Nessus versions 6.8.0, 6.8.1, 6.9.0, 6.9.1 and 6.9.2 allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

CWE-79 May 12, 2017

CVE-2016-4883 5.4 MEDIUM EPSS 0.00

Cross-site scripting vulnerability in baserCMS version 3.0.10 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CWE-79 May 12, 2017

CVE-2016-4880 5.4 MEDIUM EPSS 0.00

Cross-site scripting vulnerability in baserCMS plugin Blog version 3.0.10 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.

CWE-79 May 12, 2017