install/installNewDB.php in TestLink through 1.9.16 allows remote attackers to conduct injection attacks by leveraging control over DB LOGIN NAMES data during installation to provide a long, crafted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. Public exploit code available.
The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.
KingView 7.5SP1 has an integer overflow during stgopenstorage API read operations. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.