Skip to main content
CVE-2017-8663 HIGH PATCH Act Now

Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a remote code execution vulnerability due to the way. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Epss exploitation probability 18.2%.

Buffer Overflow RCE Microsoft Outlook
NVD
CVSS 3.0
7.8
EPSS
18.2%
CVE-2017-8571 HIGH PATCH Act Now

Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a security feature bypass vulnerability due to the way. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Epss exploitation probability 14.4%.

Microsoft Authentication Bypass Outlook
NVD
CVSS 3.0
7.8
EPSS
14.4%
CVE-2017-4921 HIGH PATCH This Week

VMware vCenter Server (6.5 prior to 6.5 U1) contains an insecure library loading issue that occurs due to the use of LD_LIBRARY_PATH variable in an unsafe manner. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

VMware Privilege Escalation Vcenter Server
NVD
CVSS 3.0
8.8
EPSS
0.8%
CVE-2017-11130 HIGH This Week

An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Google Information Disclosure Heinekingmedia
NVD
CVSS 3.0
8.1
EPSS
0.2%
CVE-2017-12064 HIGH PATCH This Week

The csv_log_html function in library/edihistory/edih_csv_inc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass PHP Openemr
NVD GitHub
CVSS 3.0
7.5
EPSS
0.6%
CVE-2017-12067 HIGH This Week

Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Potrace
NVD GitHub
CVSS 3.0
7.5
EPSS
0.3%
CVE-2017-11135 HIGH This Week

An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Google Authentication Bypass Heinekingmedia
NVD
CVSS 3.0
7.5
EPSS
0.3%
CVE-2017-11379 HIGH PATCH This Week

Configuration and database backup archives are not signed or validated in Trend Micro Deep Discovery Director 1.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Trend Micro Information Disclosure Deep Discovery Director
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2017-11133 HIGH This Week

An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android, through 0.0.80w for Web, and through 0.0.86 for Desktop. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google Information Disclosure Heinekingmedia
NVD
CVSS 3.0
7.5
EPSS
0.1%
CVE-2017-11132 HIGH This Week

An issue was discovered in heinekingmedia StashCat before 1.5.18 for Android. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Google Information Disclosure Stashcat
NVD
CVSS 3.1
7.5
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy