| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
151 |
CVE-2017-9069 |
434 |
|
Exec Code |
2017-05-18 |
2017-05-30 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
|
In MODX Revolution before 2.5.7, a user with file upload permissions is able to execute arbitrary code by uploading a file with the name .htaccess. |
|
152 |
CVE-2017-9068 |
79 |
|
XSS |
2017-05-18 |
2017-05-30 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In MODX Revolution before 2.5.7, an attacker is able to trigger Reflected XSS by injecting payloads into several fields on the setup page, as demonstrated by the database_type parameter. |
|
153 |
CVE-2017-9067 |
22 |
|
Dir. Trav. |
2017-05-18 |
2017-05-31 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
In MODX Revolution before 2.5.7, when PHP 5.3.3 is used, an attacker is able to include and execute arbitrary files on the web server due to insufficient validation of the action parameter to setup/index.php, aka directory traversal. |
|
154 |
CVE-2017-9066 |
918 |
|
|
2017-05-18 |
2019-03-15 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF. |
|
155 |
CVE-2017-9065 |
20 |
|
|
2017-05-18 |
2019-03-15 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API. |
|
156 |
CVE-2017-9064 |
352 |
|
CSRF |
2017-05-18 |
2019-03-15 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a nonce is not required for updating credentials. |
|
157 |
CVE-2017-9063 |
79 |
|
XSS |
2017-05-18 |
2019-03-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability related to the Customizer exists, involving an invalid customization session. |
|
158 |
CVE-2017-9062 |
352 |
|
|
2017-05-18 |
2019-10-03 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API. |
|
159 |
CVE-2017-9061 |
79 |
|
XSS |
2017-05-18 |
2019-03-15 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because the error message does not properly restrict presentation of the filename. |
|
160 |
CVE-2017-9059 |
404 |
|
DoS |
2017-05-18 |
2019-10-03 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
|
The NFSv4 implementation in the Linux kernel through 4.11.1 allows local users to cause a denial of service (resource consumption) by leveraging improper channel callback shutdown when unmounting an NFSv4 filesystem, aka a "module reference and kernel daemon" leak. |
|
161 |
CVE-2017-9058 |
125 |
|
|
2017-05-18 |
2019-10-03 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
In libytnef in ytnef through 1.9.2, there is a heap-based buffer over-read due to incorrect boundary checking in the SIZECHECK macro in lib/ytnef.c. |
|
162 |
CVE-2017-9055 |
125 |
|
|
2017-05-18 |
2022-03-01 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
An issue, also known as DW201703-001, was discovered in libdwarf 2017-03-21. In dwarf_formsdata() a few data types were not checked for being in bounds, leading to a heap-based buffer over-read. |
|
163 |
CVE-2017-9054 |
125 |
|
|
2017-05-18 |
2022-03-01 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
An issue, also known as DW201703-002, was discovered in libdwarf 2017-03-21. In _dwarf_decode_s_leb128_chk() a byte pointer was dereferenced just before it was checked for being in bounds, leading to a heap-based buffer over-read. |
|
164 |
CVE-2017-9053 |
125 |
|
|
2017-05-18 |
2022-03-01 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
None |
Partial |
|
An issue, also known as DW201703-005, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in _dwarf_read_loc_expr_op() is due to a failure to check a pointer for being in bounds (in a few places in this function). |
|
165 |
CVE-2017-9052 |
119 |
|
Overflow |
2017-05-18 |
2019-10-18 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
An issue, also known as DW201703-006, was discovered in libdwarf 2017-03-21. A heap-based buffer over-read in dwarf_formsdata() is due to a failure to check a pointer for being in bounds (in a few places in this function) and a failure in a check in dwarf_attr_list(). |
|
166 |
CVE-2017-9051 |
476 |
|
|
2017-05-18 |
2017-05-25 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in the nsv_read_chunk function in libavformat/nsvdec.c. |
|
167 |
CVE-2017-9050 |
125 |
|
|
2017-05-18 |
2021-06-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictAddString function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for CVE-2016-1839. |
|
168 |
CVE-2017-9049 |
125 |
|
|
2017-05-18 |
2021-06-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a heap-based buffer over-read in the xmlDictComputeFastKey function in dict.c. This vulnerability causes programs that use libxml2, such as PHP, to crash. This vulnerability exists because of an incomplete fix for libxml2 Bug 759398. |
|
169 |
CVE-2017-9048 |
119 |
|
Overflow |
2017-05-18 |
2021-06-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
libxml2 20904-GITv2.9.4-16-g0741801 is vulnerable to a stack-based buffer overflow. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. At the end of the routine, the function may strcat two more characters without checking whether the current strlen(buf) + 2 < size. This vulnerability causes programs that use libxml2, such as PHP, to crash. |
|
170 |
CVE-2017-9047 |
119 |
|
Overflow |
2017-05-18 |
2021-06-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char buffer 'buf' of size 'size'. The variable len is assigned strlen(buf). If the content->type is XML_ELEMENT_CONTENT_ELEMENT, then (i) the content->prefix is appended to buf (if it actually fits) whereupon (ii) content->name is written to the buffer. However, the check for whether the content->name actually fits also uses 'len' rather than the updated buffer length strlen(buf). This allows us to write about "size" many bytes beyond the allocated memory. This vulnerability causes programs that use libxml2, such as PHP, to crash. |
|
171 |
CVE-2017-9046 |
20 |
|
Exec Code |
2017-05-21 |
2017-06-02 |
4.4 |
None |
Local |
Medium |
Not required |
Partial |
Partial |
Partial |
|
winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack. |
|
172 |
CVE-2017-9045 |
311 |
|
|
2017-05-18 |
2019-10-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof Feed and Schedule data by creating a modified blocks_v4.json file. |
|
173 |
CVE-2017-9044 |
125 |
|
DoS |
2017-05-18 |
2017-05-25 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
The print_symbol_for_build_attribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted ELF file. |
|
174 |
CVE-2017-9043 |
20 |
|
DoS |
2017-05-18 |
2017-05-25 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file. |
|
175 |
CVE-2017-9042 |
704 |
|
DoS |
2017-05-18 |
2017-09-19 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted ELF file. |
|
176 |
CVE-2017-9041 |
125 |
|
DoS |
2017-05-18 |
2017-09-19 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_specific function in readelf.c. |
|
177 |
CVE-2017-9040 |
476 |
|
DoS |
2017-05-18 |
2017-09-19 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafted ELF file that triggers a large memory-allocation attempt. |
|
178 |
CVE-2017-9039 |
770 |
|
DoS |
2017-05-18 |
2019-10-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c. |
|
179 |
CVE-2017-9038 |
125 |
|
DoS |
2017-05-18 |
2017-09-19 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in elfcomm.c, the get_unwind_section_word function in readelf.c, and ARM unwind information that contains invalid word offsets. |
|
180 |
CVE-2017-9037 |
79 |
|
XSS |
2017-05-26 |
2021-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allow remote attackers to inject arbitrary web script or HTML via the (1) S44, (2) S5, (3) S_action_fail, (4) S_ptn_update, (5) T113, (6) T114, (7) T115, (8) T117117, (9) T118, (10) T_action_fail, (11) T_ptn_update, (12) textarea, (13) textfield5, or (14) tmLastConfigFileModifiedDate parameter to notification.cgi. |
|
181 |
CVE-2017-9036 |
862 |
|
+Priv |
2017-05-26 |
2021-09-09 |
7.2 |
None |
Local |
Low |
Not required |
Complete |
Complete |
Complete |
|
Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows local users to gain privileges by leveraging an unrestricted quarantine directory. |
|
182 |
CVE-2017-9035 |
319 |
|
|
2017-05-26 |
2021-09-09 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows attackers to eavesdrop and tamper with updates by leveraging unencrypted communications with update servers. |
|
183 |
CVE-2017-9034 |
20 |
|
Exec Code |
2017-05-26 |
2021-09-09 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
|
Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows attackers to write to arbitrary files and consequently execute arbitrary code with root privileges by leveraging failure to validate software updates. |
|
184 |
CVE-2017-9033 |
352 |
|
CSRF |
2017-05-26 |
2021-09-09 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Cross-site request forgery (CSRF) vulnerability in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allows remote attackers to hijack the authentication of users for requests to start an update from an arbitrary source via a crafted request to SProtectLinux/scanoption_set.cgi, related to the lack of anti-CSRF tokens. |
|
185 |
CVE-2017-9032 |
79 |
|
XSS |
2017-05-26 |
2021-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro ServerProtect for Linux 3.0 before CP 1531 allow remote attackers to inject arbitrary web script or HTML via the (1) T1 or (2) tmLastConfigFileModifiedDate parameter to log_management.cgi. |
|
186 |
CVE-2017-9031 |
22 |
|
Dir. Trav. |
2017-05-17 |
2017-11-04 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
The WebUI component in Deluge before 1.3.15 contains a directory traversal vulnerability involving a request in which the name of the render file is not associated with any template file. |
|
187 |
CVE-2017-9030 |
22 |
|
Dir. Trav. Bypass |
2017-05-17 |
2017-05-26 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The Codextrous B2J Contact (aka b2j_contact) extension before 2.1.13 for Joomla! allows a directory traversal attack that bypasses a uniqid protection mechanism, and makes it easier to read arbitrary uploaded files. |
|
188 |
CVE-2017-9026 |
119 |
|
Overflow |
2017-05-17 |
2017-05-24 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
|
Stack buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 6 (TM6) firmware 2.000.030 and earlier allows remote unauthenticated attackers to control the program counter via a specially crafted fname parameter of a GET request. |
|
189 |
CVE-2017-9025 |
119 |
|
Overflow |
2017-05-17 |
2017-05-24 |
6.4 |
None |
Remote |
Low |
Not required |
None |
Partial |
Partial |
|
Heap buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 6 (TM6) firmware 2.000.030 and earlier allows remote unauthenticated attackers to control the program counter via a specially crafted HTTP Cookie header. |
|
190 |
CVE-2017-9024 |
22 |
|
Dir. Trav. |
2017-05-21 |
2021-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing attackers to read arbitrary files via ../ sequences in a pathname. |
|
191 |
CVE-2017-9021 |
|
|
DoS |
2017-05-26 |
2017-05-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
The vrend_clear dispatch function in vrend_renderer.c in virglrenderer before 0.6.0 allows local guest OS users to cause a denial of service (NULL pointer dereference) via a crafted value in "buffers." |
|
192 |
CVE-2017-8943 |
295 |
|
+Info |
2017-05-15 |
2021-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The PUMA PUMATRAC app 3.0.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
193 |
CVE-2017-8942 |
295 |
|
+Info |
2017-05-15 |
2017-05-25 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The YottaMark ShopWell - Healthy Diet & Grocery Food Scanner app 5.3.7 through 5.4.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
194 |
CVE-2017-8941 |
295 |
|
+Info |
2017-05-15 |
2017-05-25 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Interval International app 3.3 through 3.5.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
195 |
CVE-2017-8940 |
295 |
|
+Info |
2017-05-15 |
2017-05-25 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Zipongo - Healthy Recipes and Grocery Deals app before 6.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
196 |
CVE-2017-8939 |
295 |
|
+Info |
2017-05-15 |
2021-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Warner Bros. ellentube app 3.1.1 through 3.1.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
197 |
CVE-2017-8938 |
295 |
|
+Info |
2017-05-15 |
2021-05-18 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Radio Javan app 9.3.4 through 9.6.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
198 |
CVE-2017-8937 |
295 |
|
+Info |
2017-05-15 |
2017-05-24 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Life Before Us Yo app 2.5.8 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
199 |
CVE-2017-8936 |
295 |
|
+Info |
2017-05-15 |
2021-07-15 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The MoboTap Dolphin Web Browser - Fast Private Internet Search app 9.23.0 through 9.23.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
|
200 |
CVE-2017-8935 |
295 |
|
+Info |
2017-05-15 |
2021-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
|
The Quest Information Systems Indiana Voters app 1.1.24 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |
