| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2017-1000381 |
200 |
|
+Info |
2017-07-07 |
2017-07-17 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. |
|
2 |
CVE-2017-1000363 |
787 |
|
Overflow |
2017-07-17 |
2018-10-30 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloader vulns, e.g. Google Nexus 6's CVE-2016-10277, where due to a vulnerability the adversary has partial control over the command line) can overflow the parport_nr array in the following code, by appending many (>LP_NO) 'lp=none' arguments to the command line. |
|
3 |
CVE-2017-1000362 |
200 |
|
+Info |
2017-07-17 |
2017-07-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The re-key admin monitor was introduced in Jenkins 1.498 and re-encrypted all secrets in JENKINS_HOME with a new key. It also created a backup directory with all old secrets, and the key used to encrypt them. These backups were world-readable and not removed afterwards. Jenkins now deletes the backup directory, if present. Upgrading from before 1.498 will no longer create a backup directory. Administrators relying on file access permissions in their manually created backups are advised to check them for the directory $JENKINS_HOME/jenkins.security.RekeySecretAdminMonitor/backups, and delete it if present. |
|
4 |
CVE-2017-1000082 |
269 |
|
|
2017-07-07 |
2022-01-31 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
systemd v233 and earlier fails to safely parse usernames starting with a numeric digit (e.g. "0day"), running the service in question with root privileges rather than the user intended. |
|
5 |
CVE-2017-1000081 |
434 |
|
Exec Code |
2017-07-17 |
2020-12-07 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Linux foundation ONOS 1.9.0 is vulnerable to unauthenticated upload of applications (.oar) resulting in remote code execution. |
|
6 |
CVE-2017-1000080 |
|
|
|
2017-07-17 |
2020-12-07 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets. |
|
7 |
CVE-2017-1000079 |
|
|
|
2017-07-17 |
2020-12-07 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Linux foundation ONOS 1.9.0 is vulnerable to a DoS. |
|
8 |
CVE-2017-1000075 |
119 |
|
Overflow |
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the memcmp function |
|
9 |
CVE-2017-1000074 |
119 |
|
Overflow |
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Creolabs Gravity version 1.0 is vulnerable to a stack overflow in the string_repeat() function. |
|
10 |
CVE-2017-1000073 |
119 |
|
Exec Code Overflow |
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Creolabs Gravity version 1.0 is vulnerable to a heap overflow in an undisclosed component that can result in arbitrary code execution. |
|
11 |
CVE-2017-1000072 |
415 |
|
|
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Creolabs Gravity version 1.0 is vulnerable to a Double Free in gravity_value resulting potentially leading to modification of unexpected memory locations |
|
12 |
CVE-2017-1000071 |
287 |
|
Bypass |
2017-07-17 |
2019-10-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Jasig phpCAS version 1.3.4 is vulnerable to an authentication bypass in the validateCAS20 function when configured to authenticate against an old CAS server. |
|
13 |
CVE-2017-1000070 |
601 |
|
|
2017-07-17 |
2017-07-20 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
The Bitly oauth2_proxy in version 2.1 and earlier was affected by an open redirect vulnerability during the start and termination of the 2-legged OAuth flow. This issue was caused by improper input validation and a violation of RFC-6819 |
|
14 |
CVE-2017-1000069 |
352 |
|
CSRF |
2017-07-17 |
2017-07-20 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
CSRF in Bitly oauth2_proxy 2.1 during authentication flow |
|
15 |
CVE-2017-1000068 |
287 |
|
DoS |
2017-07-17 |
2020-08-05 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
TestTrack Server versions 1.0 and earlier are vulnerable to an authentication flaw in the split disablement feature resulting in the ability to disable arbitrary running splits and cause denial of service to clients in the field. |
|
16 |
CVE-2017-1000067 |
89 |
|
Sql |
2017-07-17 |
2017-07-21 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
MODX Revolution version 2.x - 2.5.6 is vulnerable to blind SQL injection caused by improper sanitization by the escape method resulting in authenticated user accessing database and possibly escalating privileges. |
|
17 |
CVE-2017-1000066 |
|
|
|
2017-07-17 |
2019-10-03 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The entry details view function in KeePass version 1.32 inadvertently decrypts certain database entries into memory, which may result in the disclosure of sensitive information. |
|
18 |
CVE-2017-1000064 |
400 |
|
|
2017-07-17 |
2017-07-19 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
kittoframework kitto version 0.5.1 is vulnerable to memory exhaustion in the router resulting in DoS |
|
19 |
CVE-2017-1000062 |
22 |
|
Exec Code Dir. Trav. |
2017-07-17 |
2017-07-19 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
kittoframework kitto 0.5.1 is vulnerable to directory traversal in the router resulting in remote code execution |
|
20 |
CVE-2017-1000061 |
611 |
|
DoS |
2017-07-17 |
2021-06-14 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
None |
Partial |
|
xmlsec 1.2.23 and before is vulnerable to XML External Entity Expansion when parsing crafted input documents, resulting in possible information disclosure or denial of service |
|
21 |
CVE-2017-1000060 |
89 |
|
Sql |
2017-07-17 |
2021-02-25 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root |
|
22 |
CVE-2017-1000056 |
862 |
|
|
2017-07-17 |
2019-10-03 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Kubernetes version 1.5.0-1.5.4 is vulnerable to a privilege escalation in the PodSecurityPolicy admission plugin resulting in the ability to make use of any existing PodSecurityPolicy object. |
|
23 |
CVE-2017-1000053 |
502 |
|
Exec Code |
2017-07-17 |
2019-12-13 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to arbitrary code execution in the deserialization functions of Plug.Session. |
|
24 |
CVE-2017-1000050 |
476 |
|
|
2017-07-17 |
2021-02-22 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service. |
|
25 |
CVE-2017-1000048 |
20 |
|
|
2017-07-17 |
2017-12-31 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
the web framework using ljharb's qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash. |
|
26 |
CVE-2017-1000047 |
22 |
|
Exec Code Dir. Trav. |
2017-07-17 |
2020-07-01 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
rbenv (all current versions) is vulnerable to Directory Traversal in the specification of Ruby version resulting in arbitrary code execution |
|
27 |
CVE-2017-1000046 |
|
|
|
2017-07-17 |
2019-10-03 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
Mautic 2.6.1 and earlier fails to set flags on session cookies |
|
28 |
CVE-2017-1000045 |
352 |
|
Bypass CSRF |
2017-07-17 |
2017-07-26 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Mautic SSO/OAuth2 plugins are vulnerable to CSRF of the state parameter resulting in authentication bypass through clickjacking |
|
29 |
CVE-2017-1000044 |
119 |
|
Overflow Mem. Corr. |
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
gtk-vnc 0.4.2 and older doesn't check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering |
|
30 |
CVE-2017-1000039 |
20 |
|
Exec Code |
2017-07-17 |
2017-07-19 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Framadate version 1.0 is vulnerable to Formula Injection in the CSV Export resulting possible Information Disclosure and Code Execution |
|
31 |
CVE-2017-1000037 |
|
|
Exec Code |
2017-07-17 |
2019-10-03 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does "bundle install" on a Gemfile specified by .versions.conf in $PWD resulting in code execution |
|
32 |
CVE-2017-1000034 |
502 |
|
Exec Code |
2017-07-17 |
2017-08-04 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
|
Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem. |
|
33 |
CVE-2017-1000031 |
89 |
|
Exec Code Sql |
2017-07-17 |
2017-07-19 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id parameters. |
|
34 |
CVE-2017-1000030 |
287 |
|
|
2017-07-17 |
2017-07-21 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Java Key Store Password Disclosure vulnerability, that makes it possible to provide an unauthenticated attacker plain text password of administrative user and grant access to the web-based administration interface. |
|
35 |
CVE-2017-1000029 |
200 |
|
+Info File Inclusion |
2017-07-17 |
2017-07-21 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Local File Inclusion vulnerability, that makes it possible to include arbitrary files on the server, this vulnerability can be exploited without any prior authentication. |
|
36 |
CVE-2017-1000028 |
22 |
|
Dir. Trav. |
2017-07-17 |
2019-05-03 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Oracle, GlassFish Server Open Source Edition 4.1 is vulnerable to both authenticated and unauthenticated Directory Traversal vulnerability, that can be exploited by issuing a specially crafted HTTP GET request. |
|
37 |
CVE-2017-1000027 |
601 |
|
|
2017-07-17 |
2017-07-21 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access. |
|
38 |
CVE-2017-1000026 |
22 |
|
Dir. Trav. |
2017-07-17 |
2021-04-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
Chef Software's mixlib-archive versions 0.3.0 and older are vulnerable to a directory traversal attack allowing attackers to overwrite arbitrary files by using ".." in tar archive entries |
|
39 |
CVE-2017-1000025 |
200 |
|
+Info |
2017-07-17 |
2017-08-04 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
GNOME Web (Epiphany) 3.23 before 3.23.5, 3.22 before 3.22.6, 3.20 before 3.20.7, 3.18 before 3.18.11, and prior versions, is vulnerable to a password manager sweep attack resulting in the remote exfiltration of stored passwords for a selected set of websites. |
|
40 |
CVE-2017-1000024 |
319 |
|
|
2017-07-17 |
2019-10-03 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission |
|
41 |
CVE-2017-1000022 |
732 |
|
|
2017-07-17 |
2019-10-03 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
LogicalDoc Community Edition 7.5.3 and prior contain an Incorrect access control which could leave to privilege escalation. |
|
42 |
CVE-2017-1000021 |
611 |
|
|
2017-07-17 |
2019-03-14 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents. |
|
43 |
CVE-2017-1000020 |
287 |
|
Bypass |
2017-07-17 |
2017-08-15 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
SYN Flood or FIN Flood attack in ECos 1 and other versions embedded devices results in web Authentication Bypass. "eCos Embedded Web Servers used by Multiple Routers and Home devices, while sending SYN Flood or FIN Flood packets fails to validate and handle the packets and does not ask for any sign of authentication resulting in Authentication Bypass. An attacker can take complete advantage of this bug and take over the device remotely or locally. The bug has been successfully tested and reproduced in some versions of SOHO Routers manufactured by TOTOLINK, GREATEK and others." |
|
44 |
CVE-2017-1000018 |
20 |
|
|
2017-07-17 |
2019-03-20 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
phpMyAdmin 4.0, 4.4., and 4.6 are vulnerable to a DOS attack in the replication status by using a specially crafted table name |
|
45 |
CVE-2017-1000017 |
918 |
|
|
2017-07-17 |
2019-03-25 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
phpMyAdmin 4.0, 4.4 and 4.6 are vulnerable to a weakness where a user with appropriate permissions is able to connect to an arbitrary MySQL server |
|
46 |
CVE-2017-1000016 |
20 |
|
|
2017-07-17 |
2017-07-26 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
A weakness was discovered where an attacker can inject arbitrary values in to the browser cookies. This is a re-issue of an incomplete fix from PMASA-2016-18. |
|
47 |
CVE-2017-1000014 |
20 |
|
|
2017-07-17 |
2019-03-19 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality |
|
48 |
CVE-2017-1000013 |
601 |
|
|
2017-07-17 |
2019-03-19 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness |
|
49 |
CVE-2017-1000010 |
427 |
|
Exec Code |
2017-07-17 |
2020-08-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution. |
|
50 |
CVE-2017-1000009 |
78 |
|
|
2017-07-17 |
2020-08-05 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell injection in the mass edition, resulting in remote execution. |
