| Page(s) : 1 ... 1206 1207 1208 1209 1210 1211 1212 1213 1214 1215 [1216] 1217 1218 1219 1220 1221 1222 1223 1224 1225 1226 ... | Result(s) : 43698 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2018-03-02 | CVE-2017-7434 | cve | In the JDBC driver of NetIQ Identity Manager before 4.6 sending out incorrect XML configurations could result in passwords being logged into exception logfiles. |
| 9.8 | 2018-03-02 | CVE-2017-9278 | cve | The NetIQ Identity Manager Oracle EBS driver before 4.0.2.0 sent EBS logs containing the driver authentication password, potentially disclosing this to attackers able to read th... |
| 9.8 | 2018-03-02 | CVE-2017-9285 | cve | NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services. |
| 9.8 | 2018-03-01 | CVE-2017-12627 | cve | In Apache Xerces-C XML Parser library before 3.2.1, processing of external DTD paths can result in a null pointer dereference under certain conditions. |
| 9.8 | 2018-03-01 | CVE-2018-2368 | cve | SAP NetWeaver System Landscape Directory, LM-CORE 7.10, 7.20, 7.30, 7.31, 7.40, does not perform any authentication checks for functionalities that require user identity. |
| 9.8 | 2018-03-01 | CVE-2018-7561 | cve | Stack-based Buffer Overflow in httpd on Tenda AC9 devices V15.03.05.14_EN allows remote attackers to cause a denial of service or possibly have unspecified other impact. |
| 9.8 | 2018-03-01 | CVE-2018-7573 | cve | An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F' in conjunction with the FTP 220 response code to crash the applicati... |
| 9.8 | 2018-03-01 | CVE-2017-18210 | cve | In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not ... |
| 9.8 | 2018-03-01 | CVE-2017-18211 | cve | In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, r... |
| 9.8 | 2018-03-01 | CVE-2017-18212 | cve | An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the lit_read_code_unit_from_hex function in lit/lit-char-helpers.c via a RegExp("[\x0"); pa... |
| 9.1 | 2018-03-01 | CVE-2017-7426 | cve | The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denia... |
| 9.8 | 2018-03-01 | CVE-2017-9269 | cve | In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned, allowing malicious repository mirrors to silently downgrade to unsigned repositori... |
| 9.1 | 2018-03-01 | CVE-2017-9270 | cve | In cryptctl before version 2.0 a malicious server could send RPC requests that could overwrite files outside of the cryptctl key database. |
| 9.8 | 2018-03-01 | CVE-2018-7047 | cve | An issue was discovered in the MBeans Server in Wowza Streaming Engine before 4.7.1. The file system may be read and written to via JMX using the default JMX credentials (remote... |
| 9.8 | 2018-03-01 | CVE-2018-7584 | cve | In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_str... |
| 9.8 | 2018-02-28 | CVE-2018-6638 | cve | A stack-based buffer overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. This occurs in a function call in which the first argument is a corru... |
| 9.8 | 2018-02-28 | CVE-2018-6639 | cve | An out-of-bounds write (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. A size used by memmove is read from the input file. This is fixed in 6.9d. |
| 9.8 | 2018-02-28 | CVE-2018-6640 | cve | A Heap Overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can modify the next pointer of a linked list. This is fixed in 6.9d. |
| 9.8 | 2018-02-28 | CVE-2018-6641 | cve | An Arbitrary Free (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can overwrite a structure, leading to a function call with an inval... |
| 9.8 | 2018-02-28 | CVE-2018-7477 | cve | SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parent_module/parent_login.php. |
| Page(s) : 1 ... 1206 1207 1208 1209 1210 1211 1212 1213 1214 1215 [1216] 1217 1218 1219 1220 1221 1222 1223 1224 1225 1226 ... | Result(s) : 43698 |
