Skip to main content
CVE-2017-1092 CRITICAL POC PATCH THREAT Act Now

IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 81.6%.

RCE Microsoft IBM Informix Open Admin Tool
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
81.6%
Threat
5.9
CVE-2017-2547 HIGH POC THREAT Act Now

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 56.1%.

Buffer Overflow RCE Apple Denial Of Service Safari +1
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
56.1%
Threat
4.9
CVE-2017-2524 CRITICAL POC THREAT Emergency

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.6%.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +3
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
17.6%
Threat
4.0
CVE-2017-4915 HIGH POC PATCH THREAT Act Now

VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration files. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and EPSS exploitation probability 11.6%.

VMware Authentication Bypass Workstation Player Workstation Pro
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
11.6%
CVE-2017-2523 CRITICAL POC THREAT Emergency

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 13.0%.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +3
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
13.0%
CVE-2017-2522 CRITICAL POC THREAT Emergency

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 13.0%.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +3
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
13.0%
CVE-2017-2527 CRITICAL POC Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Mac Os X
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
9.4%
CVE-2017-6984 HIGH POC THREAT Act Now

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.3%.

Denial Of Service Buffer Overflow RCE Microsoft Apple +4
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
10.3%
CVE-2017-2536 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +2
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
9.9%
CVE-2017-2518 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 23.3% and no vendor patch available.

Denial Of Service Use After Free Buffer Overflow RCE Memory Corruption +6
NVD
CVSS 3.0
9.8
EPSS
23.3%
CVE-2017-6980 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +2
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
6.3%
CVE-2017-2531 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +2
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
6.3%
CVE-2017-2521 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +3
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
5.7%
CVE-2017-2515 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
4.1%
CVE-2017-2514 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +1
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
3.5%
CVE-2017-9146 HIGH POC This Week

The TNEFFillMapi function in lib/ytnef.c in libytnef in ytnef through 1.9.2 does not ensure a nonzero count value before a certain memory allocation, which allows remote attackers to cause a denial. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Ytnef
NVD GitHub
CVSS 3.0
8.8
EPSS
0.6%
CVE-2017-4916 MEDIUM POC PATCH This Month

VMware Workstation Pro/Player contains a NULL pointer dereference vulnerability that exists in the vstor2 driver. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Microsoft VMware Workstation Player +1
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
9.5%
CVE-2017-6978 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Mac Os X
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
1.9%
CVE-2017-6989 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
1.5%
CVE-2017-6999 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-6998 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-6997 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-6996 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-6995 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-6994 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +2
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2017-2520 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 10.6% and no vendor patch available.

Denial Of Service Buffer Overflow RCE Memory Corruption Apple +5
NVD
CVSS 3.0
9.8
EPSS
10.6%
CVE-2017-2519 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +4
NVD
CVSS 3.0
9.8
EPSS
9.6%
CVE-2017-6979 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

RCE Race Condition Apple Iphone Os Mac Os X +2
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
2.3%
CVE-2017-2533 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

RCE Race Condition Apple Mac Os X
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
2.3%
CVE-2017-2501 HIGH POC This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

RCE Race Condition Apple Iphone Os Mac Os X +2
NVD Exploit-DB
CVSS 3.0
7.0
EPSS
2.1%
CVE-2017-9147 MEDIUM POC This Month

LibTIFF 4.0.7 has an invalid read in the _TIFFVGetField function in tif_dir.c, which might allow remote attackers to cause a denial of service (crash) via a crafted TIFF file. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Information Disclosure Libtiff
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
3.8%
CVE-2017-9140 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in Telerik.ReportViewer.WebForms.dll in Telerik Reporting for ASP.NET WebForms Report Viewer control before R1 2017 SP2 (11.0.17.406) allows remote attackers. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Telerik Reporting Sitefinity Cms
NVD
CVSS 3.0
6.1
EPSS
4.8%
CVE-2017-2528 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Safari Iphone Os
NVD Exploit-DB
CVSS 3.0
6.1
EPSS
1.3%
CVE-2017-2510 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Safari Iphone Os
NVD Exploit-DB
CVSS 3.0
6.1
EPSS
1.2%
CVE-2017-2508 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Safari Iphone Os
NVD Exploit-DB
CVSS 3.0
6.1
EPSS
1.0%
CVE-2017-2513 CRITICAL Act Now

An issue was discovered in certain Apple products. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Use After Free RCE Memory Corruption Apple +4
NVD
CVSS 3.0
9.8
EPSS
2.5%
CVE-2017-2504 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Apple Safari Iphone Os Tvos
NVD Exploit-DB
CVSS 3.0
6.1
EPSS
0.8%
CVE-2016-4905 CRITICAL PATCH Act Now

SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

SQLi Olivecart Olivecartpro
NVD
CVSS 3.0
9.8
EPSS
1.7%
CVE-2017-2509 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Apple Authentication Bypass Mac Os X
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
2.0%
CVE-2017-6982 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Denial Of Service Apple Iphone Os
NVD Exploit-DB
CVSS 3.0
5.5
EPSS
1.2%
CVE-2017-9150 MEDIUM POC PATCH This Month

The do_check function in kernel/bpf/verifier.c in the Linux kernel before 4.11.1 does not make the allow_ptr_leaks value available for restricting the output of the print_bpf_insn function, which. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available.

Linux Information Disclosure Linux Kernel
NVD GitHub Exploit-DB
CVSS 3.0
5.5
EPSS
0.5%
CVE-2017-2516 MEDIUM POC This Month

An issue was discovered in certain Apple products. Rated medium severity (CVSS 5.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Apple Authentication Bypass Mac Os X
NVD Exploit-DB
CVSS 3.0
5.0
EPSS
1.9%
CVE-2017-6891 HIGH PATCH This Week

Two errors in the "asn1_find_node()" function (lib/parser_aux.c) within GnuTLS libtasn1 version 4.10 can be exploited to cause a stacked-based buffer overflow by tricking a user into processing a. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow Memory Corruption Libtasn1 Debian Linux Bookkeeper
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2017-2505 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +2
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2017-2544 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +1
NVD
CVSS 3.0
8.8
EPSS
1.0%
CVE-2017-6991 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +1
NVD
CVSS 3.0
8.8
EPSS
0.9%
CVE-2017-2525 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +2
NVD
CVSS 3.0
8.8
EPSS
0.9%
CVE-2017-2506 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +1
NVD
CVSS 3.0
8.8
EPSS
0.8%
CVE-2017-2539 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Safari +1
NVD
CVSS 3.0
8.8
EPSS
0.8%
CVE-2017-2496 HIGH This Week

An issue was discovered in certain Apple products. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Apple Denial Of Service Iphone Os +1
NVD
CVSS 3.0
8.8
EPSS
0.8%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy