Skip to main content
CVE-2017-6953 HIGH POC This Week

Gemalto SmartDiag Diagnosis Tool v2.5 has a stack-based Buffer Overflow with SEH Overwrite via long "Register a new card" input fields. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Smartdiag Diagnosis Tool
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.2%
CVE-2016-8202 HIGH This Week

A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Fabric Operating System
NVD
CVSS 3.0
8.8
EPSS
1.7%
CVE-2017-8844 HIGH PATCH This Week

The read_1g function in stream.c in liblrzip.so in lrzip 0.631 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow Denial Of Service Long Range Zip Debian Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2017-8829 HIGH This Week

Deserialization vulnerability in lintian through 2.5.50.3 allows attackers to trigger code execution by requesting a review of a source package with a crafted YAML file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Lintian
NVD
CVSS 3.0
7.8
EPSS
0.3%
CVE-2016-10369 HIGH PATCH This Week

unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Denial Of Service Authentication Bypass Lxterminal
NVD
CVSS 3.0
7.8
EPSS
0.0%
CVE-2017-8825 HIGH PATCH This Week

A null dereference vulnerability has been found in the MIME handling component of LibEtPan before 1.8, as used in MailCore and MailCore 2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This NULL Pointer Dereference vulnerability could allow attackers to crash the application by dereferencing a null pointer.

Null Pointer Dereference Denial Of Service Libetpan
NVD GitHub
CVSS 3.0
7.5
EPSS
0.5%
CVE-2016-8209 HIGH This Week

Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Netiron Mlx Series Firmware Netiron Cer Series Firmware Netiron Ces Series Firmware Netiron Xmr Series Firmware
NVD
CVSS 3.0
7.5
EPSS
0.5%
CVE-2017-6051 HIGH This Week

An Uncontrolled Search Path Element issue was discovered in BLF-Tech LLC VisualView HMI Version 9.9.14.0 and prior. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. No vendor patch available.

RCE Visualview Hmi
NVD
CVSS 3.0
7.0
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy