Skip to main content
CVE-2017-7269 CRITICAL POC KEV PATCH THREAT Act Now

Remote code execution in Microsoft IIS 6.0 WebDAV service allows unauthenticated attackers to execute arbitrary code by sending a specially crafted PROPFIND request with a malicious 'If' header. Confirmed actively exploited (CISA KEV) since July-August 2016, predating public disclosure by 7+ months. EPSS score of 94.43% (100th percentile) reflects widespread exploitation against legacy Windows Server 2003 R2 systems still exposed to the internet. Multiple public exploits exist including Metasploit modules, and vendor patch has been available since March 2017.

Buffer Overflow Microsoft RCE
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
94.4%
Threat
9.8
CVE-2017-5850 HIGH POC PATCH THREAT Act Now

httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a series of requests for a large file using an HTTP Range header. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 49.6%.

Denial Of Service Openbsd
NVD GitHub Exploit-DB
CVSS 3.0
7.5
EPSS
49.6%
Threat
4.5
CVE-2017-7183 HIGH POC THREAT Act Now

The TFTP server in ExtraPuTTY 0.30 and earlier allows remote attackers to cause a denial of service (crash) via a large (1) read or (2) write TFTP protocol message. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 34.9%.

Denial Of Service Extraputty
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
34.9%
Threat
4.0
CVE-2017-6542 CRITICAL POC PATCH THREAT Act Now

The ssh_agent_channel_data function in PuTTY before 0.68 allows remote attackers to have unspecified impact via a large length value in an agent protocol message and leveraging the ability to connect. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 22.2%.

Buffer Overflow Putty Leap
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
22.2%
Threat
4.1
CVE-2016-10225 HIGH POC PATCH Act Now

The sunxi-debug driver in Allwinner 3.4 legacy kernel for H3, A83T and H8 devices allows local users to gain root privileges by sending "rootmydevice" to /proc/sunxi_debug/sunxi_debug. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Linux 3 4 Sunxi
NVD
CVSS 3.1
7.8
EPSS
6.1%
CVE-2017-6957 HIGH POC This Week

Stack-based buffer overflow in the firmware in Broadcom Wi-Fi HardMAC SoC chips, when the firmware supports CCKM Fast and Secure Roaming and the feature is enabled in RAM, allows remote attackers to. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Buffer Overflow Broadcom Cisco RCE Bcm4339 Soc Firmware
NVD
CVSS 3.0
8.1
EPSS
9.7%
CVE-2017-5330 HIGH POC PATCH This Week

ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

RCE Command Injection Fedora Ark
NVD
CVSS 3.0
7.8
EPSS
0.5%
CVE-2016-4912 HIGH POC This Week

The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a large number of crafted packets, which. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Openslp
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2017-5899 HIGH POC This Week

Directory traversal vulnerability in the setuid root helper binary in S-nail (later S-mailx) before 14.8.16 allows local users to write to arbitrary files and consequently gain root privileges via a. Rated high severity (CVSS 7.0). Public exploit code available and no vendor patch available.

Path Traversal S Nail
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
0.7%
CVE-2017-6458 HIGH PATCH Act Now

Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.6%.

Buffer Overflow Ntp Hpux Ntp Mac Os X Simatic Net Cp 443 1 Opc Ua Firmware
NVD
CVSS 3.1
8.8
EPSS
10.6%
CVE-2017-7191 CRITICAL PATCH Act Now

The netjoin processing in Irssi 1.x before 1.0.2 allows attackers to cause a denial of service (use-after-free) and possibly execute arbitrary code via unspecified vectors. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Denial Of Service Memory Corruption Use After Free RCE Irssi
NVD GitHub
CVSS 3.0
9.8
EPSS
2.6%
CVE-2017-6013 CRITICAL Act Now

Subrion CMS 4.0.5.10 has SQL injection in admin/database/ via the query parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Subrion Cms
NVD
CVSS 3.0
9.8
EPSS
0.6%
CVE-2015-8309 MEDIUM POC PATCH This Month

Directory traversal vulnerability in Cherry Music before 0.36.0 allows remote authenticated users to read arbitrary files via the "value" parameter to "download.". Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Path Traversal Cherrymusic
NVD GitHub Exploit-DB
CVSS 3.0
4.3
EPSS
6.6%
CVE-2017-6878 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in MetInfo 5.3.15 allows remote authenticated users to inject arbitrary web script or HTML via the name_2 parameter to admin/column/delete.php. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Metinfo
NVD
CVSS 3.0
5.4
EPSS
0.3%
CVE-2017-6460 HIGH PATCH This Week

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Buffer Overflow Ntp
NVD
CVSS 3.0
8.8
EPSS
2.0%
CVE-2017-1153 HIGH PATCH This Week

IBM TRIRIGA Report Manager 3.2 through 3.5 contains a vulnerability that could allow an authenticated user to execute actions that they do not have access to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

IBM Information Disclosure Tririga Application Platform
NVD
CVSS 3.0
8.8
EPSS
0.5%
CVE-2016-8960 HIGH PATCH This Week

IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-privilege user by intercepting the higher-privilege user's cookie. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

IBM Privilege Escalation Cognos Business Intelligence
NVD
CVSS 3.0
8.8
EPSS
0.5%
CVE-2017-5931 HIGH PATCH This Week

Integer overflow in hw/virtio/virtio-crypto.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (QEMU process crash) or possibly execute arbitrary code. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity.

Integer Overflow RCE Denial Of Service Buffer Overflow Qemu
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2017-6069 HIGH This Week

Subrion CMS 4.0.5 has CSRF in admin/blog/add/. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS CSRF Subrion Cms
NVD
CVSS 3.0
8.8
EPSS
0.2%
CVE-2017-6068 HIGH This Week

Subrion CMS 4.0.5 has CSRF in admin/blocks/add/. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS CSRF Subrion Cms
NVD
CVSS 3.0
8.8
EPSS
0.2%
CVE-2017-6066 HIGH This Week

Subrion CMS 4.0.5 has CSRF in admin/languages/edit/1/. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS CSRF Subrion Cms
NVD
CVSS 3.0
8.8
EPSS
0.2%
CVE-2017-6002 HIGH This Week

Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS CSRF Subrion Cms
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2015-8763 HIGH PATCH This Week

The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impact via a crafted (1) commit or (2) confirm message, which triggers an out-of-bounds read. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Buffer Overflow Information Disclosure Freeradius
NVD
CVSS 3.0
8.1
EPSS
0.5%
CVE-2015-8764 HIGH PATCH This Week

Off-by-one error in the EAP-PWD module in FreeRADIUS 3.0 through 3.0.8, which triggers a buffer overflow. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

Buffer Overflow Freeradius
NVD
CVSS 3.0
8.1
EPSS
0.5%
CVE-2015-8026 HIGH PATCH This Week

Heap-based buffer overflow in the verify_vbr_checksum function in exfatfsck in exfat-utils before 1.2.1 allows remote attackers to cause a denial of service (infinite loop) or possibly execute. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow RCE Denial Of Service Exfat
NVD GitHub
CVSS 3.1
7.8
EPSS
1.7%
CVE-2015-0864 HIGH This Week

Samsung Account (AKA com.osp.app.signin) before 1.6.0069 and 2.x before 2.1.0069 allows man-in-the-middle attackers to obtain sensitive information and execute arbitrary code. Rated high severity (CVSS 8.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Samsung Privilege Escalation RCE Galaxy App Samsung Account App
NVD
CVSS 3.0
8.0
EPSS
0.3%
CVE-2015-0863 HIGH This Week

GALAXY Apps (aka Samsung Apps, Samsung Updates, or com.sec.android.app.samsungapps) before 14120405.03.012 allows man-in-the-middle attackers to obtain sensitive information and execute arbitrary. Rated high severity (CVSS 8.0), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Samsung Google Privilege Escalation RCE Galaxy App +1
NVD
CVSS 3.0
8.0
EPSS
0.1%
CVE-2017-5237 HIGH This Week

Due to a lack of authentication, an unauthenticated user who knows the Eview EV-07S GPS Tracker's phone number can revert the device to a factory default configuration with an SMS command, "RESET!". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Ev 07S Gps Tracker Firmware
NVD
CVSS 3.0
7.5
EPSS
1.9%
CVE-2017-5932 HIGH PATCH This Week

The path autocompletion feature in Bash 4.4 allows local users to gain privileges via a crafted filename starting with a " (double quote) character and a command substitution metacharacter. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Bash
NVD
CVSS 3.0
7.8
EPSS
0.2%
CVE-2016-9243 HIGH PATCH This Week

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digest_size. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Cryptography Fedora Ubuntu Linux
NVD GitHub
CVSS 3.1
7.5
EPSS
1.7%
CVE-2017-6462 HIGH PATCH This Week

Buffer overflow in the legacy Datum Programmable Time Server (DPTS) refclock driver in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via a crafted. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Ntp
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-6451 HIGH PATCH This Week

The mx4200_send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption RCE Ntp
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-6452 HIGH PATCH This Week

Stack-based buffer overflow in the Windows installer for NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows local users to have unspecified impact via an application path on the command line. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Buffer Overflow Microsoft Ntp
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-9252 HIGH This Week

The Traffic Management Microkernel (TMM) in F5 BIG-IP before 11.5.4 HF3, 11.6.x before 11.6.1 HF2 and 12.x before 12.1.2 does not properly handle minimum path MTU options for IPv6, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Big Ip Local Traffic Manager Big Ip Application Acceleration Manager Big Ip Advanced Firewall Manager Big Ip Analytics +10
NVD
CVSS 3.0
7.5
EPSS
1.2%
CVE-2017-7272 HIGH PATCH This Week

PHP through 7.1.11 enables potential SSRF in applications that accept an fsockopen or pfsockopen hostname argument with an expectation that the port number is constrained. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Server-Side Request Forgery (SSRF) vulnerability could allow attackers to make the server perform requests to unintended internal or external resources.

SSRF PHP
NVD GitHub
CVSS 3.0
7.4
EPSS
1.1%
CVE-2017-5239 HIGH This Week

Due to a lack of standard encryption when transmitting sensitive information over the internet to a centralized monitoring service, the Eview EV-07S GPS Tracker discloses personally identifying. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Ev 07S Gps Tracker Firmware
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2017-6463 MEDIUM This Month

NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote authenticated users to cause a denial of service (daemon crash) via an invalid setting in a :config directive, related to the unpeer option. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Ntp
NVD
CVSS 3.0
6.5
EPSS
4.5%
CVE-2017-6464 MEDIUM PATCH This Month

NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote attackers to cause a denial of service (ntpd crash) via a malformed mode configuration directive. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Ntp
NVD
CVSS 3.0
6.5
EPSS
3.6%
CVE-2017-6455 HIGH PATCH This Week

NTP before 4.2.8p10 and 4.3.x before 4.3.94, when using PPSAPI, allows local users to gain privileges via a DLL in the PPSAPI_DLLS environment variable. Rated high severity (CVSS 7.0). This Code Injection vulnerability could allow attackers to inject and execute arbitrary code within the application.

RCE Code Injection Ntp
NVD
CVSS 3.0
7.0
EPSS
0.1%
CVE-2017-7273 MEDIUM PATCH This Month

The cp_report_fixup function in drivers/hid/hid-cypress.c in the Linux kernel 3.2 and 4.x before 4.9.4 allows physically proximate attackers to cause a denial of service (integer underflow) or. Rated medium severity (CVSS 6.6), this vulnerability is low attack complexity.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 3.0
6.6
EPSS
0.1%
CVE-2017-1142 MEDIUM This Month

IBM Kenexa LCMS Premier on Cloud 9.x and 10.0 could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for the session cookie in SSL mode. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Information Disclosure Kenexa Lcms Premier
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2015-8010 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga before 1.14 allows remote attackers to inject arbitrary web script or HTML via the. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Icinga Leap
NVD GitHub
CVSS 3.0
6.1
EPSS
0.4%
CVE-2017-7271 MEDIUM PATCH This Month

Reflected Cross-site scripting (XSS) vulnerability in Yii Framework before 2.0.11, when development mode is used, allows remote attackers to inject arbitrary web script or HTML via crafted request. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Yii
NVD GitHub
CVSS 3.0
6.1
EPSS
0.3%
CVE-2017-1120 MEDIUM PATCH This Month

IBM WebSphere Portal 8.5 and 9.0 is vulnerable to cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS IBM Websphere Portal
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2017-6067 MEDIUM This Month

Symphony 2.6.9 has XSS in publish/notes/edit/##/saved/ via the bottom form field. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Symphony
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-6003 MEDIUM This Month

dotCMS 3.7.0 has XSS reachable from ext/languages_manager/edit_language in portal/layout via the bottom two form fields. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Dotcms
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2015-8762 MEDIUM PATCH This Month

The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a zero-length EAP-PWD packet. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Null Pointer Dereference Denial Of Service Freeradius
NVD
CVSS 3.0
5.9
EPSS
0.5%
CVE-2017-7275 MEDIUM PATCH This Month

The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memory allocation and application crash) via a crafted file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Buffer Overflow Denial Of Service Imagemagick
NVD GitHub
CVSS 3.0
5.5
EPSS
0.4%
CVE-2017-7274 MEDIUM PATCH This Month

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service Radare2
NVD GitHub
CVSS 3.0
5.5
EPSS
0.2%
CVE-2016-7474 MEDIUM This Month

In some cases the MCPD binary cache in F5 BIG-IP devices may allow a user with Advanced Shell access, or privileges to generate a qkview, to temporarily obtain normally unrecoverable information. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Big Ip Local Traffic Manager Big Ip Application Acceleration Manager Big Ip Advanced Firewall Manager Big Ip Analytics +10
NVD
CVSS 3.0
5.5
EPSS
0.1%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy