Skip to main content
CVE-2017-8342 HIGH POC PATCH This Week

Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Race Condition Information Disclosure Radicale
NVD GitHub
CVSS 3.0
8.1
EPSS
0.7%
CVE-2017-8364 HIGH POC This Week

The read_buf function in stream.c in rzip 2.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Rzip
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2017-8367 HIGH POC This Week

Buffer overflow in Ether Software Easy MOV Converter 1.4.24, Easy DVD Creator, Easy MPEG/AVI/DIVX/WMV/RM to DVD, Easy Avi/Divx/Xvid to DVD Burner, Easy MPEG to DVD Burner, Easy WMV/ASF/ASX to DVD. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Easy Avi Divx Xvid To Dvd Burner Easy Avi Divx Converter Easy Cd Dvd Copy +15
NVD GitHub Exploit-DB
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-8361 HIGH PATCH This Week

The flac_buffer_copy function in flac.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Denial Of Service Libsndfile Debian Linux
NVD
CVSS 3.0
8.8
EPSS
1.5%
CVE-2017-8081 HIGH This Week

Poor cryptographic salt initialization in admin/inc/template_functions.php in GetSimple CMS 3.3.13 allows a network attacker to escalate privileges to an arbitrary user or conduct CSRF attacks via. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF PHP Getsimple Cms
NVD GitHub
CVSS 3.0
8.8
EPSS
0.4%
CVE-2017-7721 HIGH This Week

IrfanView version 4.44 (32bit) with FPX Plugin before 4.45 has an Access Violation and crash in processing a FlashPix (.FPX) file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Irfanview Fpx
NVD GitHub
CVSS 3.0
7.8
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy