Skip to main content
CVE-2017-2930 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability due to a concurrency error when manipulating a display list. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 82.0%.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
82.0%
Threat
5.7
CVE-2017-2935 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing the Flash Video container file format. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 69.1%.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
69.1%
Threat
5.3
CVE-2017-2934 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when parsing Adobe Texture Format files. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 69.1%.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
69.1%
Threat
5.3
CVE-2017-2933 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability related to texture compression. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 69.1%.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
69.1%
Threat
5.3
CVE-2017-2931 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to the parsing of SWF metadata. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 67.9%.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
67.9%
Threat
5.3
CVE-2017-2932 HIGH POC PATCH THREAT Act Now

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript MovieClip class. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 64.4%.

Memory Corruption RCE Denial Of Service Use After Free Adobe +1
NVD Exploit-DB
CVSS 3.1
8.8
EPSS
64.4%
Threat
5.2
CVE-2016-7478 HIGH POC THREAT Act Now

Zend/zend_exceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (infinite loop) via a crafted Exception object in serialized. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 18.9%.

Denial Of Service PHP
NVD
CVSS 3.0
7.5
EPSS
18.9%
CVE-2017-5340 CRITICAL POC PATCH Act Now

Zend/zend_hash.c in PHP before 7.0.15 and 7.1.x before 7.1.1 mishandles certain cases that require large array allocations, which allows remote attackers to execute arbitrary code or cause a denial. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Integer Overflow RCE PHP Denial Of Service Clustered Data Ontap
NVD GitHub
CVSS 3.1
9.8
EPSS
7.1%
CVE-2016-7480 CRITICAL POC PATCH Act Now

The SplObjectStorage unserialize implementation in ext/spl/spl_observer.c in PHP before 7.0.12 does not verify that a key is an object, which allows remote attackers to execute arbitrary code or. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Deserialization Denial Of Service PHP Buffer Overflow RCE +1
NVD GitHub
CVSS 3.1
9.8
EPSS
3.6%
CVE-2016-4808 HIGH POC PATCH This Week

Web2py versions 2.14.5 and below was affected by CSRF (Cross Site Request Forgery) vulnerability, which allows an attacker to trick a logged in user to perform some unwanted actions i.e An attacker. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Web2Py
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
0.2%
CVE-2016-4806 HIGH POC This Week

Web2py versions 2.14.5 and below was affected by Local File Inclusion vulnerability, which allows a malicious intended user to read/access web server sensitive files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Web2Py
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
6.7%
CVE-2017-2927 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable heap overflow vulnerability when processing Adobe Texture Format files. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD
CVSS 3.1
8.8
EPSS
5.8%
CVE-2017-2949 HIGH PATCH Act Now

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the XSLT engine. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Epss exploitation probability 10.2%.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
10.2%
CVE-2017-2928 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to setting visual mode effects. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD
CVSS 3.1
8.8
EPSS
3.3%
CVE-2017-2925 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability in the JPEG XR codec. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD
CVSS 3.1
8.8
EPSS
2.7%
CVE-2017-2936 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +1
NVD
CVSS 3.1
8.8
EPSS
2.7%
CVE-2017-2937 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable use after free vulnerability in the ActionScript FileReference class, when using class inheritance. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +1
NVD
CVSS 3.1
8.8
EPSS
2.0%
CVE-2017-5209 CRITICAL PATCH Act Now

The base64decode function in base64.c in libimobiledevice libplist through 1.12 allows attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read). Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Denial Of Service Information Disclosure Apple Buffer Overflow Libplist
NVD GitHub
CVSS 3.0
9.1
EPSS
0.4%
CVE-2017-2926 HIGH PATCH This Week

Adobe Flash Player versions 24.0.0.186 and earlier have an exploitable memory corruption vulnerability related to processing of atoms in MP4 files. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Adobe Memory Corruption Buffer Overflow RCE Flash Player
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2017-2958 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
6.6%
CVE-2017-2946 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability when parsing the segment for storing non-graphic. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
6.0%
CVE-2017-2962 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable type confusion vulnerability in the XSLT engine related to localization. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Adobe RCE Acrobat Acrobat Dc Acrobat Reader Dc +1
NVD
CVSS 3.0
7.8
EPSS
5.5%
CVE-2016-4807 MEDIUM POC This Month

Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allows an attacker to perform an XSS attack on logged in user (admin). Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Web2Py
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
0.4%
CVE-2017-2966 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the image conversion engine related to parsing. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
4.8%
CVE-2017-2957 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
3.9%
CVE-2017-2959 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability in the image conversion engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.9%
CVE-2017-2948 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable buffer overflow / underflow vulnerability in the XFA engine. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.9%
CVE-2017-2945 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability when parsing TIFF image files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.8%
CVE-2017-2942 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable heap overflow vulnerability when processing TIFF image data. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.8%
CVE-2017-2961 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the XFA engine, related to validation. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
3.8%
CVE-2017-2963 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.5%
CVE-2017-2960 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.4%
CVE-2017-2950 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the XFA engine, related to layout. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
3.3%
CVE-2017-2952 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable buffer overflow / underflow vulnerability in the image conversion module. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
3.2%
CVE-2017-2955 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
2.8%
CVE-2017-2951 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the XFA engine, related to sub-form. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
2.6%
CVE-2017-2956 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable use after free vulnerability in the JavaScript engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Memory Corruption RCE Denial Of Service Use After Free Adobe +4
NVD
CVSS 3.0
7.8
EPSS
2.5%
CVE-2017-2967 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the XFA engine related to a form's. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.3%
CVE-2017-2964 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.3%
CVE-2017-2941 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when processing Compact Font Format data. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.3%
CVE-2017-2965 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.2%
CVE-2017-2940 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when processing JPEG 2000 files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2017-2939 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when processing a malformed cross-reference. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2017-2954 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion module when handling. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2017-2953 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion module when. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2017-2944 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when parsing crafted TIFF image files. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2017-2943 HIGH PATCH This Week

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability when processing tags in TIFF images. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Adobe Buffer Overflow RCE Acrobat Acrobat Dc +2
NVD
CVSS 3.0
7.8
EPSS
2.1%
CVE-2016-6820 HIGH PATCH This Week

MetroCluster Tiebreaker for clustered Data ONTAP in versions before 1.2 discloses sensitive information in cleartext which may be viewed by an unauthenticated user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Metrocluster Tiebreaker
NVD
CVSS 3.0
7.5
EPSS
0.4%
CVE-2017-2938 MEDIUM PATCH This Month

Adobe Flash Player versions 24.0.0.186 and earlier have a security bypass vulnerability related to handling TCP connections. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Adobe Authentication Bypass Flash Player
NVD
CVSS 3.1
6.5
EPSS
2.0%
CVE-2017-2947 MEDIUM PATCH This Month

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have a security bypass vulnerability when manipulating Form Data Format (FDF). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Authentication Bypass Acrobat Acrobat Dc Acrobat Reader Dc +1
NVD
CVSS 3.0
5.5
EPSS
2.5%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy