Skip to main content
CVE-2017-10872 MEDIUM This Month

H2O version 2.2.3 and earlier allows remote attackers to cause a denial of service in the server via unspecified vectors. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service H2O
NVD GitHub
CVSS 3.0
6.5
EPSS
0.7%
CVE-2017-16766 MEDIUM This Month

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Synology Authentication Bypass Diskstation Manager
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2017-15310 MEDIUM This Month

Huawei iReader app before 8.0.2.301 has an arbitrary file deletion vulnerability due to the lack of input validation. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Ireader
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-15322 MEDIUM This Month

Some Huawei smartphones with software of BGO-L03C158B003CUSTC158D001 and BGO-L03C331B009CUSTC331D001 have a DoS vulnerability due to insufficient input validation. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Huawei Baggio L03A Firmware
NVD
CVSS 3.0
6.5
EPSS
0.1%
CVE-2017-15312 MEDIUM This Month

Huawei SmartCare V200R003C10 has a stored XSS (cross-site scripting) vulnerability in the dashboard module. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Huawei Smartcare
NVD
CVSS 3.0
5.4
EPSS
0.1%
CVE-2017-10907 MEDIUM This Month

Directory traversal vulnerability in OneThird CMS Show Off v1.85 and earlier. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Onethird Cms Show Off
NVD
CVSS 3.0
4.3
EPSS
3.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy