Skip to main content
CVE-2017-2479 MEDIUM POC THREAT This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 24.7%.

Microsoft Apple Information Disclosure Safari Iphone Os +3
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
24.7%
CVE-2017-2480 MEDIUM POC THREAT This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 19.1%.

Microsoft Apple Information Disclosure Icloud Itunes +2
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
19.1%
CVE-2017-2442 MEDIUM POC THREAT This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 12.4%.

Apple Information Disclosure Safari Iphone Os
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
12.4%
CVE-2017-2367 MEDIUM POC THREAT This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 12.4%.

Apple Information Disclosure Safari Iphone Os Tvos
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
12.4%
CVE-2016-8769 MEDIUM POC This Month

Huawei UTPS earlier than UTPS-V200R003B015D16SPC00C983 has an unquoted service path vulnerability which can lead to the truncation of UTPS service query paths. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Huawei Privilege Escalation Utps Firmware
NVD Exploit-DB
CVSS 3.1
6.7
EPSS
0.4%
CVE-2017-2388 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Apple Mac Os X
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
4.2%
CVE-2017-2445 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Safari Iphone Os Tvos
NVD Exploit-DB
CVSS 3.0
6.1
EPSS
1.1%
CVE-2017-2489 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Intel Apple Information Disclosure Mac Os X
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
1.7%
CVE-2016-7585 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
6.8
EPSS
0.1%
CVE-2016-8775 MEDIUM This Month

Touch Panel (TP) driver in Huawei NEM phones with software Versions before NEM-AL10C00B130, Versions before NEM-UL10C17B160, Versions before NEM-UL10C00B160, Versions before NEM-TL00C01B160 allows. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Huawei Nem Al10 Firmware Nem L51 Firmware +2
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2016-8774 MEDIUM This Month

The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Huawei Mate 8 Firmware Mate S Firmware +2
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2016-8793 MEDIUM This Month

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software. Rated medium severity (CVSS 6.7). No vendor patch available.

Huawei Authentication Bypass Mate S Firmware Mate 8 Firmware P8 Firmware
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2017-2386 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os Tvos
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2424 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2453 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-2486 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Safari Iphone Os
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-8780 MEDIUM This Month

Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 V100R006C00, CloudEngine 8800 V100R006C00, and CloudEngine 12800 V100R006C00 allow remote attackers with specific permission to store massive. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Huawei Cloudengine 6800 Firmware Cloudengine 7800 Firmware Cloudengine 8800 Firmware +1
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8275 MEDIUM This Month

Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Anyoffice
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8802 MEDIUM This Month

The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow Huawei Secospace Usg6300 Firmware Secospace Usg6500 Firmware Secospace Usg6600 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-6177 MEDIUM This Month

The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Integer Overflow Huawei Buffer Overflow Oceanstor 5800 V3 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-8781 MEDIUM This Month

Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600 with software V500R001C20 and V500R001C20SPC200PWE allow. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Secospace Usg6300 Firmware Secospace Usg6500 Firmware Secospace Usg6600 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2015-8670 MEDIUM This Month

Huawei LogCenter V100R001C10 could allow an authenticated attacker to add abnormal device information to the log collection module, causing denial of service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Huawei Logcenter
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2014-9691 MEDIUM This Month

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Tecal Rh1288 V2 Firmware Tecal Rh2265 V2 Firmware Tecal Rh2285 V2 Firmware +29
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2016-8779 MEDIUM This Month

Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Huawei Information Disclosure Fusionaccess
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-2418 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2016-8764 MEDIUM This Month

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150. Rated medium severity (CVSS 6.4). No vendor patch available.

Huawei Information Disclosure P9 Firmware P9 Lite Firmware P8 Lite Firmware
NVD
CVSS 3.0
6.4
EPSS
0.0%
CVE-2017-2475 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apple Safari Iphone Os Tvos
NVD
CVSS 3.0
6.1
EPSS
0.6%
CVE-2017-2393 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apple Iphone Os
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-8789 MEDIUM This Month

Huawei eSpace Integrated Access Device (IAD) with software V300R001C03, V300R001C04, V300R001C06, V300R001C20, and V300R001C07 allows an attacker to trick a user into clicking a URL containing. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Huawei Espace Integrated Access Device Firmware
NVD
CVSS 3.0
6.1
EPSS
0.1%
CVE-2017-2448 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Apple Information Disclosure Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
5.9
EPSS
0.7%
CVE-2016-8795 MEDIUM This Month

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00,. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Integer Overflow Huawei Buffer Overflow Cloudengine 5800 Firmware Cloudengine 6800 Firmware +4
NVD
CVSS 3.0
5.9
EPSS
0.2%
CVE-2017-2412 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
5.9
EPSS
0.1%
CVE-2016-8790 MEDIUM This Month

Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with software before V200R001C00SPC700, CloudEngine 8800 with. Rated medium severity (CVSS 5.7), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Huawei Cloudengine 5800 Firmware Cloudengine 6800 Firmware Cloudengine 7800 Firmware +2
NVD
CVSS 3.0
5.7
EPSS
0.0%
CVE-2017-2417 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Apple Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
5.5
EPSS
0.6%
CVE-2017-6974 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 3.0
5.5
EPSS
0.2%
CVE-2017-2390 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Iphone Os Mac Os X Tvos +1
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2017-2385 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Safari
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-8758 MEDIUM This Month

ION memory management module in Huawei Mate8 phones with software NXT-AL10C00B561 and earlier versions, NXT-CL10C00B561 and earlier versions, NXT-DL10C00B561 and earlier versions, NXT-TL10C00B561 and. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei Mate 8 Firmware
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-8756 MEDIUM This Month

ION memory management module in Huawei Mate 8 phones with software NXT-AL10C00B197 and earlier versions, NXT-DL10C00B197 and earlier versions, NXT-TL10C00B197 and earlier versions, NXT-CL10C00B197. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei Mate 8 Firmware
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2015-7847 MEDIUM This Month

Huawei MBB (Mobile Broadband) product E3272s with software versions earlier than E3272s-153TCPU-V200R002B491D09SP00C00 has a Denial of Service (DoS) vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Huawei E3272S Firmware
NVD
CVSS 3.0
5.5
EPSS
0.0%
CVE-2017-2414 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
5.3
EPSS
0.3%
CVE-2017-2400 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
5.3
EPSS
0.2%
CVE-2017-2391 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Authentication Bypass Keynote Numbers Pages
NVD
CVSS 3.0
5.3
EPSS
0.1%
CVE-2016-8271 MEDIUM This Month

Huawei eSpace IAD V300R002C01SPC100 and earlier versions have an information leak vulnerability; an attacker can check and download the fault information by accessing a special URL. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Espace Iad Firmware
NVD
CVSS 3.0
5.3
EPSS
0.1%
CVE-2014-8570 MEDIUM This Month

Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure S9300 Firmware S9303 Firmware S9306 Firmware +23
NVD
CVSS 3.0
5.3
EPSS
0.1%
CVE-2016-8272 MEDIUM This Month

Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite
NVD
CVSS 3.0
5.3
EPSS
0.0%
CVE-2016-8762 MEDIUM This Month

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure P9 Firmware P9 Lite Firmware P8 Lite Firmware
NVD
CVSS 3.0
5.0
EPSS
0.0%
CVE-2017-2452 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
4.6
EPSS
0.1%
CVE-2016-8776 MEDIUM This Month

Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Huawei Google Authentication Bypass P9 Firmware P9 Lite Firmware
NVD
CVSS 3.0
4.6
EPSS
0.0%
CVE-2017-2399 MEDIUM This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure Iphone Os
NVD
CVSS 3.0
4.6
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy