Skip to main content
CVE-2017-17440 MEDIUM POC PATCH This Month

GNU Libextractor 1.6 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted GIF, IT (Impulse Tracker), NSFE, S3M (Scream Tracker 3), SID,. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Null Pointer Dereference Denial Of Service Libextractor
NVD
CVSS 3.0
6.5
EPSS
0.5%
CVE-2017-17446 MEDIUM This Month

The Mem_File_Reader::read_avail function in Data_Reader.cpp in the Game_Music_Emu library (aka game-music-emu) 0.6.1 does not ensure a non-negative size, which allows remote attackers to cause a. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Game Music Emu
NVD
CVSS 3.0
6.5
EPSS
0.7%
CVE-2017-13148 MEDIUM This Month

A denial of service vulnerability in the Android media framework (libmpeg2). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Google Android
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-0880 MEDIUM This Month

A denial of service vulnerability in the Android media framework (libskia). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Google Android
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-0874 MEDIUM This Month

A denial of service vulnerability in the Android media framework (libavc). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Google Android
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-0873 MEDIUM This Month

A denial of service vulnerability in the Android media framework (libmpeg2). Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Google Android
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-13165 MEDIUM PATCH This Month

An elevation of privilege vulnerability in the kernel file system. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Google Privilege Escalation
NVD VulDB
CVSS 3.1
5.3
EPSS
0.0%
CVE-2017-17383 MEDIUM PATCH This Month

Jenkins through 2.93 allows remote authenticated administrators to conduct XSS attacks via a crafted tool name in a job configuration form, as demonstrated by the JDK tool in Jenkins core and the Ant. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Jenkins
NVD
CVSS 3.0
4.7
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy