Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2017-11345 Buffer Overflow in asuswrt-merlin-project (CVE-2017-11345)
vulnerability in asuswrt-merlin-project (CVE-2017-11345). Successful exploitation can lead to full system takeover.
CVE-2017-1000064 Vulnerability in dos (CVE-2017-1000064)
vulnerability in dos (CVE-2017-1000064). Risk of unauthorized operations or information disclosure.
CVE-2017-1000066 Vulnerability in keepass (CVE-2017-1000066)
vulnerability in keepass (CVE-2017-1000066). Confidential information can be exposed externally.
CVE-2017-1000067 SQL Injection in sqli (CVE-2017-1000067)
SQL injection in sqli (CVE-2017-1000067). Successful exploitation can lead to full system takeover.
CVE-2017-1000068 Authentication Bypass in dos (CVE-2017-1000068)
authentication bypass in dos (CVE-2017-1000068). Risk of unauthorized operations or information disclosure.
CVE-2017-1000069 CSRF in Bitly oauth2_proxy 2.1 during authentication flow
CSRF in Bitly oauth2_proxy 2.1 during authentication flow
CVE-2017-1000071 Authentication Bypass in apereo (CVE-2017-1000071)
authentication bypass in apereo (CVE-2017-1000071). Successful exploitation can lead to full system takeover.
CVE-2017-1000079 Linux foundation ONOS 1.9.0 is vulnerable to a DoS.
Linux foundation ONOS 1.9.0 is vulnerable to a DoS.
CVE-2017-1000080 Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets.
Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets.
CVE-2017-1000363 Out-of-Bounds Write in c (CVE-2017-1000363)
out-of-bounds write in c (CVE-2017-1000363). Successful exploitation can lead to full system takeover.
CVE-2017-10602 Buffer Overflow in juniper (CVE-2017-10602)
vulnerability in juniper (CVE-2017-10602). Successful exploitation can lead to full system takeover.
CVE-2017-10603 Vulnerability in juniper (CVE-2017-10603)
vulnerability in juniper (CVE-2017-10603). Successful exploitation can lead to full system takeover.
CVE-2017-10605 Vulnerability in dos (CVE-2017-10605)
vulnerability in dos (CVE-2017-10605). Risk of unauthorized operations or information disclosure.
CVE-2017-1000034 Unsafe Deserialization in deserialization (CVE-2017-1000034)
vulnerability in deserialization (CVE-2017-1000034). Successful exploitation can lead to full system takeover.
CVE-2017-1000046 Mautic 2.6.1 and earlier fails to set flags on session cookies
Mautic 2.6.1 and earlier fails to set flags on session cookies
CVE-2017-1000048 Vulnerability in dos (CVE-2017-1000048)
vulnerability in dos (CVE-2017-1000048). Risk of unauthorized operations or information disclosure.
CVE-2017-1000050 Vulnerability in jasper-project (CVE-2017-1000050)
vulnerability in jasper-project (CVE-2017-1000050). Risk of unauthorized operations or information disclosure.
CVE-2017-1000052 Vulnerability in plug-project (CVE-2017-1000052)
vulnerability in plug-project (CVE-2017-1000052). Successful exploitation can lead to full system takeover.
CVE-2017-1000053 Unsafe Deserialization in deserialization (CVE-2017-1000053)
vulnerability in deserialization (CVE-2017-1000053). Successful exploitation can lead to full system takeover.
CVE-2017-1000061 XXE (XML External Entity) in dos (CVE-2017-1000061)
vulnerability in dos (CVE-2017-1000061). Confidential information can be exposed externally.
CVE-2017-1000062 Path Traversal in path-traversal (CVE-2017-1000062)
path traversal in path-traversal (CVE-2017-1000062). Confidential information can be exposed externally.
CVE-2017-1000008 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-1000008)
vulnerability in csrf (CVE-2017-1000008). Successful exploitation can lead to full system takeover.
CVE-2017-1000010 Vulnerability in audacityteam (CVE-2017-1000010)
vulnerability in audacityteam (CVE-2017-1000010). Successful exploitation can lead to full system takeover.
CVE-2017-1000014 phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
CVE-2017-1000016 Vulnerability in phpmyadmin (CVE-2017-1000016)
vulnerability in phpmyadmin (CVE-2017-1000016). Data can be tampered with by attackers.
CVE-2017-1000017 SSRF (Server-Side Request Forgery) in phpmyadmin (CVE-2017-1000017)
SSRF in phpmyadmin (CVE-2017-1000017). Successful exploitation can lead to full system takeover.
CVE-2017-1000018 Vulnerability in dos (CVE-2017-1000018)
vulnerability in dos (CVE-2017-1000018). Risk of unauthorized operations or information disclosure.
CVE-2017-1000021 LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents.
LogicalDoc Community Edition 7.5.3 and prior is vulnerable to XXE when indexing XML documents.
CVE-2017-1000022 Vulnerability in privilege-escalation (CVE-2017-1000022)
vulnerability in privilege-escalation (CVE-2017-1000022). Successful exploitation can lead to full system takeover.
CVE-2017-1000024 Vulnerability in gnome (CVE-2017-1000024)
vulnerability in gnome (CVE-2017-1000024). Confidential information can be exposed externally.
CVE-2017-1000025 Information Disclosure in gnome (CVE-2017-1000025)
vulnerability in gnome (CVE-2017-1000025). Confidential information can be exposed externally.
CVE-2017-1000026 Path Traversal in path-traversal (CVE-2017-1000026)
path traversal in path-traversal (CVE-2017-1000026). Data can be tampered with by attackers.
CVE-2017-1000028 Path Traversal in path-traversal (CVE-2017-1000028)
path traversal in path-traversal (CVE-2017-1000028). Confidential information can be exposed externally.
CVE-2017-1000029 Information Disclosure in c (CVE-2017-1000029)
vulnerability in c (CVE-2017-1000029). Confidential information can be exposed externally.
CVE-2017-1000031 SQL Injection in sqli (CVE-2017-1000031)
SQL injection in sqli (CVE-2017-1000031). Successful exploitation can lead to full system takeover.
CVE-2017-1000001 Vulnerability in fedoraproject (CVE-2017-1000001)
vulnerability in fedoraproject (CVE-2017-1000001). Data can be tampered with by attackers.
CVE-2017-0152 Buffer Overflow in microsoft (CVE-2017-0152)
vulnerability in microsoft (CVE-2017-0152). Successful exploitation can lead to full system takeover.
CVE-2016-4996 Vulnerability in redhat (CVE-2016-4996)
vulnerability in redhat (CVE-2016-4996). Successful exploitation can lead to full system takeover.
CVE-2015-5152 Information Disclosure in theforeman (CVE-2015-5152)
vulnerability in theforeman (CVE-2015-5152). Successful exploitation can lead to full system takeover.
CVE-2015-0249 Code Injection in apache (CVE-2015-0249)
code injection in apache (CVE-2015-0249). Successful exploitation can lead to full system takeover.
CVE-2017-11310 Vulnerability in c (CVE-2017-11310)
vulnerability in c (CVE-2017-11310). Successful exploitation can lead to full system takeover.
CVE-2017-6249 Vulnerability in google (CVE-2017-6249)
vulnerability in google (CVE-2017-6249). Successful exploitation can lead to full system takeover.
CVE-2017-9789 Use-After-Free in apache (CVE-2017-9789)
vulnerability in apache (CVE-2017-9789). Risk of unauthorized operations or information disclosure.
CVE-2016-8951 Authentication Bypass in dos (CVE-2016-8951)
authentication bypass in dos (CVE-2016-8951). Risk of unauthorized operations or information disclosure.
CVE-2017-9787 Vulnerability in apache (CVE-2017-9787)
vulnerability in apache (CVE-2017-9787). Risk of unauthorized operations or information disclosure.
CVE-2017-11103 Vulnerability in heimdal-project (CVE-2017-11103)
vulnerability in heimdal-project (CVE-2017-11103). Successful exploitation can lead to full system takeover.
CVE-2017-7529 Vulnerability in nginx (CVE-2017-7529)
vulnerability in nginx (CVE-2017-7529). Confidential information can be exposed externally.
CVE-2017-11173 Vulnerability in csharp (CVE-2017-11173)
vulnerability in csharp (CVE-2017-11173). Successful exploitation can lead to full system takeover.
CVE-2017-11200 SQL Injection in sqli (CVE-2017-11200)
SQL injection in sqli (CVE-2017-11200). Successful exploitation can lead to full system takeover.
CVE-2017-11193 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11193)
vulnerability in csrf (CVE-2017-11193). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →