Skip to main content
CVE-2017-9798 HIGH POC PATCH THREAT Act Now

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 93.8%.

Apache Memory Corruption Use After Free Information Disclosure Http Server +2
NVD GitHub Exploit-DB
CVSS 3.1
7.5
EPSS
93.8%
Threat
5.8
CVE-2017-14530 HIGH POC This Week

WP_Admin_UI in the Crony Cronjob Manager plugin before 0.4.7 for WordPress has CSRF via the name parameter in an action=manage&do=create operation, as demonstrated by inserting XSS sequences. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS WordPress CSRF Crony Cronjob Manager
NVD GitHub
CVSS 3.1
8.0
EPSS
0.1%
CVE-2017-14528 MEDIUM POC This Month

The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect expectations about whether LibTIFF TIFFGetField return values imply that data validation has occurred, which allows. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Memory Corruption Use After Free Imagemagick Debian Linux
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2017-14534 MEDIUM POC This Month

Cross Site Scripting (XSS) exists in NexusPHP 1.5.beta5.20120707 via the PATH_INFO to location.php, related to PHP_SELF. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Nexusphp
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-14532 CRITICAL PATCH Act Now

ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service Imagemagick Ubuntu Linux
NVD GitHub
CVSS 3.0
9.8
EPSS
1.5%
CVE-2016-10511 MEDIUM POC This Month

The Twitter iOS client versions 6.62 and 6.62.1 fail to validate Twitter's server certificates for the /1.1/help/settings.json configuration endpoint, permitting man-in-the-middle attackers the. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apple Information Disclosure Twitter
NVD
CVSS 3.0
5.9
EPSS
0.3%
CVE-2017-9333 HIGH PATCH This Week

OpenWebif 1.2.5 allows remote code execution via a URL to the CallOPKG function in the IpkgController class in plugin/controllers/ipkg.py, when the URL refers to an attacker-controlled web site with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Openwebif
NVD GitHub
CVSS 3.0
8.8
EPSS
0.9%
CVE-2014-6106 HIGH PATCH This Week

Cross-site request forgery (CSRF) vulnerability in IBM Security Identity Manager 5.1, 6.0, and 7.0 allows remote attackers to hijack the authentication of users for requests that can cause cross-site. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS CSRF IBM Security Identity Manager
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2017-14578 HIGH This Week

IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Irfanview
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14540 HIGH This Week

IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file, related to "Data from Faulting Address controls Branch. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Irfanview
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14539 HIGH This Week

IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file, related to "Data from Faulting Address controls Branch. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Irfanview
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14572 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV starting at Unknown Symbol @ 0x000000000479049b. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14580 HIGH This Week

XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Microsoft Denial Of Service Xnview
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14579 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "Read Access Violation on Control Flow starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14577 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Control Flow starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14575 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14574 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV starting at Unknown Symbol @ 0x0000000004940490.". Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14573 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14571 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14570 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV near NULL starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14568 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14567 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14566 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV starting at Unknown Symbol @ 0x00000000039d76c4. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14563 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Block Data Move starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14561 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to an "Illegal Instruction Violation starting at Unknown Symbol @. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14559 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "Read Access Violation on Block Data Move starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14558 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14557 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14556 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14553 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14552 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14549 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "Heap Corruption starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14548 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .djvu file, related to a "User Mode Write AV starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14542 HIGH This Week

STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .epub file, related to a "Read Access Violation on Block Data Move starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14538 HIGH This Week

XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Microsoft Denial Of Service Xnview
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14576 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Possible Stack Corruption starting at Unknown Symbol. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14569 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Read Access Violation starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14565 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to a "Possible Stack Corruption starting at Unknown Symbol. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14564 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14562 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to an "Error Code (0xe06d7363) starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14560 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14555 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to "Data from Faulting Address is used as one or more. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14554 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to a "Possible Stack Corruption starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14551 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to "Data from Faulting Address controls Branch Selection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14550 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to a "Possible Stack Corruption starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14547 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .mobi file, related to a "Read Access Violation starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14546 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file, related to an "Error Code (0xe06d7363) starting at. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14545 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file, related to "Data from Faulting Address controls Branch Selection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14544 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file, related to "Data from Faulting Address is used as one or more. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
CVE-2017-14543 HIGH This Week

STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .epub file, related to "Data from Faulting Address controls Branch Selection. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Stdu Viewer
NVD GitHub
CVSS 3.0
7.8
EPSS
0.1%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy