Skip to main content
CVE-2017-13067 CRITICAL POC THREAT Emergency

QNAP has patched a remote code execution vulnerability affecting the QTS Media Library in all versions prior to QTS 4.2.6 build 20170905 and QTS 4.3.3.0299 build 20170901. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 51.1%.

Qnap RCE Qts
NVD
CVSS 3.0
9.8
EPSS
51.1%
Threat
5.0
CVE-2017-1002000 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin mobile-friendly-app-builder-by-easytouch v3.0, The code in file ./mobile-friendly-app-builder-by-easytouch/server/images.php doesn't require authentication or check. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 64.3%.

WordPress PHP File Upload Mobile Friendly App Builder By Easytouch
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
64.3%
Threat
5.4
CVE-2017-1002002 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin webapp-builder v2.0, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com/. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 51.2%.

WordPress File Upload Webapp Builder
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
51.2%
Threat
5.0
CVE-2017-1002003 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin wp2android-turn-wp-site-into-android-app v1.1.4, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 47.7%.

WordPress Google File Upload Wp2Android Turn Wp Site Into Android App
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
47.7%
Threat
4.9
CVE-2017-1002001 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin mobile-app-builder-by-wappress v1.05, The plugin includes unlicensed vulnerable CMS software from http://www.invedion.com. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 44.5%.

WordPress File Upload Mobile App Builder By Wappress
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
44.5%
Threat
4.8
CVE-2017-1002008 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin membership-simplified-for-oap-members-only v1.58, The file download code located membership-simplified-for-oap-members-only/download.php does not check whether a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 40.0%.

WordPress PHP File Upload Membership Simplified
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
40.0%
Threat
4.7
CVE-2017-1002016 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin flickr-picture-backup v0.7, The code in flickr-picture-download.php doesn't check to see if the user is authenticated or that they have permission to upload files. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 14.6%.

WordPress PHP File Upload Flickr Picture Backup
NVD
CVSS 3.1
9.8
EPSS
14.6%
CVE-2017-1002022 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin surveys v1.01.8, The code in questions.php does not sanitize the survey variable before placing it inside of an SQL query. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.9%.

WordPress SQLi PHP Surveys
NVD
CVSS 3.0
9.8
EPSS
10.9%
CVE-2017-1002021 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin surveys v1.01.8, The code in individual_responses.php does not sanitize the survey_id variable before placing it inside of an SQL query. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.9%.

WordPress SQLi PHP Surveys
NVD
CVSS 3.0
9.8
EPSS
10.9%
CVE-2017-1002020 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin surveys v1.01.8, The code in survey_form.php does not sanitize the action variable before placing it inside of an SQL query. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.9%.

WordPress SQLi PHP Surveys
NVD
CVSS 3.0
9.8
EPSS
10.9%
CVE-2017-1002023 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin Easy Team Manager v1.3.2, The code does not sanitize id before making it part of an SQL statement in file ./easy-team-manager/inc/easy_team_manager_desc_edit.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.3%.

WordPress SQLi PHP Easy Team Manager
NVD
CVSS 3.0
9.8
EPSS
10.3%
CVE-2017-1002012 CRITICAL POC THREAT Emergency

Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, In image-gallery-with-slideshow/admin_setting.php the following snippet of code does not sanitize input via the gid variable. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 10.3%.

WordPress SQLi PHP Image Gallery With Slideshow
NVD
CVSS 3.0
9.8
EPSS
10.3%
CVE-2017-1002019 CRITICAL POC Act Now

Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and event_form.php code do not sanitize input, this allows for blind SQL injection via the event parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Eventr
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002018 CRITICAL POC Act Now

Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Eventr
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002015 CRITICAL POC Act Now

Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via selectMulGallery parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Image Gallery With Slideshow
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002014 CRITICAL POC Act Now

Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via gallery_name parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Image Gallery With Slideshow
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002013 CRITICAL POC Act Now

Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via imgid parameter in image-gallery-with-slideshow/admin_setting.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Image Gallery With Slideshow
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002010 CRITICAL POC Act Now

Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Membership Simplified
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2017-1002009 CRITICAL POC Act Now

Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Membership Simplified
NVD
CVSS 3.0
9.8
EPSS
6.0%
CVE-2013-7429 CRITICAL POC PATCH Act Now

The Googlemaps plugin before 3.1 for Joomla!. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection PHP Googlemaps
NVD
CVSS 3.0
9.8
EPSS
1.6%
CVE-2017-1002027 CRITICAL POC Act Now

Vulnerability in wordpress plugin rk-responsive-contact-form v1.0, The variable $delid isn't sanitized before being passed into an SQL query in file. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Rk Responsive Contact Form
NVD
CVSS 3.0
9.8
EPSS
1.1%
CVE-2017-1002028 CRITICAL POC Act Now

Vulnerability in wordpress plugin wordpress-gallery-transformation v1.0, SQL injection is in ./wordpress-gallery-transformation/gallery.php via $jpic parameter being unsanitized before being passed. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Gallery Transformation
NVD
CVSS 3.0
9.8
EPSS
0.6%
CVE-2017-13000 CRITICAL PATCH Act Now

The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
4.4%
CVE-2017-13050 CRITICAL PATCH Act Now

The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
2.6%
CVE-2017-13019 CRITICAL PATCH Act Now

The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
2.6%
CVE-2017-13725 CRITICAL PATCH Act Now

The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-13028 CRITICAL PATCH Act Now

The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-13024 CRITICAL PATCH Act Now

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-13020 CRITICAL PATCH Act Now

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-13004 CRITICAL PATCH Act Now

The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Juniper Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-12987 CRITICAL PATCH Act Now

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux Enterprise Linux Desktop +2
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-12902 CRITICAL PATCH Act Now

The Zephyr parser in tcpdump before 4.9.2 has a buffer over-read in print-zephyr.c, several functions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux Enterprise Linux Desktop +2
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-12899 CRITICAL PATCH Act Now

The DECnet parser in tcpdump before 4.9.2 has a buffer over-read in print-decnet.c:decnet_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux Enterprise Linux Desktop +2
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-12896 CRITICAL PATCH Act Now

The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:isakmp_rfc3948_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump Debian Linux Enterprise Linux Desktop +2
NVD GitHub
CVSS 3.1
9.8
EPSS
2.1%
CVE-2017-13009 CRITICAL PATCH Act Now

The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
2.0%
CVE-2017-13008 CRITICAL PATCH Act Now

The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
2.0%
CVE-2017-12986 CRITICAL PATCH Act Now

The IPv6 routing header parser in tcpdump before 4.9.2 has a buffer over-read in print-rt6.c:rt6_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
2.0%
CVE-2017-12985 CRITICAL PATCH Act Now

The IPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-ip6.c:ip6_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
2.0%
CVE-2017-13041 CRITICAL PATCH Act Now

The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2017-13040 CRITICAL PATCH Act Now

The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2017-13033 CRITICAL PATCH Act Now

The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
1.8%
CVE-2017-13038 CRITICAL PATCH Act Now

The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
CVE-2017-13011 CRITICAL PATCH Act Now

Several protocol parsers in tcpdump before 4.9.2 could cause a buffer overflow in util-print.c:bittok2str_internal(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Buffer Overflow Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
1.5%
CVE-2017-12997 CRITICAL PATCH Act Now

The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.5%
CVE-2017-13687 CRITICAL PATCH Act Now

The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Cisco Information Disclosure Tcpdump Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2017-13055 CRITICAL PATCH Act Now

The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2017-13052 CRITICAL PATCH Act Now

The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
1.4%
CVE-2017-13047 CRITICAL PATCH Act Now

The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2017-13045 CRITICAL PATCH Act Now

The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2017-13044 CRITICAL PATCH Act Now

The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print(). Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Information Disclosure Tcpdump
NVD GitHub
CVSS 3.0
9.8
EPSS
1.4%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy