https://web.nvd.nist.gov/view/vuln/search This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database. 2018-01-11T15:00:18Z en-us This material is not copywritten and may be freely used, however, attribution is requested. https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4337 The process_browse_data function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted packet data. 2014-06-22T21:55:03Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4338 cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses. 2014-06-22T21:55:03Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17558 The usb_destroy_configuration function in drivers/usb/core/config.c in the USB core subsystem in the Linux kernel through 4.14.5 does not consider the maximum number of configurations and interfaces before attempting to release resources, which allows local users to cause a denial of service (out-of-bounds write access) or possibly have unspecified other impact via a crafted USB device. 2017-12-12T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17562 Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked. This is a result of initializing the environment of forked CGI scripts using untrusted HTTP request parameters in the cgiHandler function in cgi.c. When combined with the glibc dynamic linker, this behaviour can be abused for remote code execution using special parameter names such as LD_PRELOAD. An attacker can POST their shared object payload in the body of the request, and reference it using /proc/self/fd/0. 2017-12-12T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-14589 It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags to occur. An attacker who has restricted administration rights to Bamboo or who hosts a website that a Bamboo administrator visits, is able to exploit this vulnerability to execute Java code of their choice on systems that run a vulnerable version of Bamboo. All versions of Bamboo before 6.1.6 (the fixed version for 6.1.x) and from 6.2.0 before 6.2.5 (the fixed version for 6.2.x) are affected by this vulnerability. 2017-12-13T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11305 A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data. 2017-12-13T21:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17759 Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web Connection HTTP service). 2017-12-19T07:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15048 Stack-based buffer overflow in the ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler. 2017-12-19T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15049 The ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 does not properly sanitize user input when constructing a shell command, which allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler. 2017-12-19T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16786 The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote authenticated users with certain privileges to read arbitrary files via (1) the ntpclientcounterlogfile parameter to cgi-bin/mainv2 or (2) vectors involving curl support of the "file" schema in the firmware update functionality. 2017-12-19T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17719 A cross-site scripting (XSS) vulnerability in the wp-concours plugin through 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the result_message parameter to includes/concours_page.php. 2017-12-19T20:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17744 A cross-site scripting (XSS) vulnerability in the custom-map plugin through 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map_id parameter to view/advancedsettings.php. 2017-12-19T20:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17780 The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-Factor Authentication - Clockwork SMS 1.0.2, Booking Calendar - Clockwork SMS 1.0.5, Contact Form 7 - Clockwork SMS 2.3.0, Fast Secure Contact Form - Clockwork SMS 2.1.2, Formidable - Clockwork SMS 1.0.2, Gravity Forms - Clockwork SMS 2.2, and WP e-Commerce - Clockwork SMS 2.0.5. 2017-12-20T03:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-4940 The ESXi Host Client in VMware ESXi (6.5 before ESXi650-201712103-SG, 5.5 before ESXi600-201711103-SG and 5.5 before ESXi550-201709102-SG) contains a vulnerability that may allow for stored cross-site scripting (XSS). An attacker can exploit this vulnerability by injecting Javascript, which might get executed when other users access the Host Client. 2017-12-20T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17752 Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the Read Mail screen (aka the /_readmail URI). This is fixed in version 4.2.4. 2017-12-20T16:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17746 Weak access control methods on the TP-Link TL-SG108E 1.0.0 allow any user on a NAT network with an authenticated administrator to access the device without entering user credentials. The authentication record is stored on the device; thus if an administrator authenticates from a NAT network, the authentication applies to the IP address of the NAT gateway, and any user behind that NAT gateway is also treated as authenticated. 2017-12-20T20:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2576 SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field. 2017-12-20T21:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5254 In version 3.5 and prior of Cambium Networks ePMP firmware, the non-administrative users 'installer' and 'home' have the capability of changing passwords for other accounts, including admin, after disabling a client-side protection mechanism. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5255 In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console allows any authenticated user (including the otherwise low-privilege readonly user) to inject shell meta-characters as part of a specially-crafted POST request to the get_chart function and run OS-level commands, effectively as root. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5256 In version 3.5 and prior of Cambium Networks ePMP firmware, all authenticated users have the ability to update the Device Name and System Description fields in the web administration console, and those fields are vulnerable to persistent cross-site scripting (XSS) injection. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5257 In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows (or guesses) the SNMP read/write (RW) community string can insert XSS strings in certain SNMP OIDs which will execute in the context of the currently-logged on user. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5258 In version 3.5 and prior of Cambium Networks ePMP firmware, an attacker who knows or can guess the RW community string can provide a URL for a configuration file over SNMP with XSS strings in certain SNMP OIDs, serve it via HTTP, and the affected device will perform a configuration restore using the attacker's supplied config file, including the inserted XSS strings. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5259 In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, an undocumented, root-privilege administration web shell is available using the HTTP path https://<device-ip-or-hostname>/adm/syscmd.asp. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5260 In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, although the option to access the configuration file is not available in the normal web administrative console for the 'user' account, the configuration file is accessible via direct object reference (DRO) at http://<device-ip-or-hostname>/goform/down_cfg_file by this otherwise low privilege 'user' account. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5261 In versions 4.3.2-R4 and prior of Cambium Networks cnPilot firmware, the 'ping' and 'traceroute' functions of the web administrative console expose a file path traversal vulnerability, accessible to all authenticated users. 2017-12-20T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-14387 The NFS service in EMC Isilon OneFS 8.1.0.0, 8.0.1.0 - 8.0.1.1, and 8.0.0.0 - 8.0.0.4 maintains default NFS export settings (including the NFS export security flavor for authentication) that can be leveraged by current and future NFS exports. This NFS service contained a flaw that did not properly propagate changes made to the default security flavor to all new and existing NFS exports that are configured to use default NFS export settings and that are mounted after those changes are made. This flaw may potentially allow NFS clients to access affected NFS exports using the default and potentially weaker security flavor even if a more secure one was selected to be used by the OneFS administrator, aka an "NFS Export Security Setting Fallback Vulnerability." 2017-12-20T23:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17805 The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AF_ALG-based skcipher interface (CONFIG_CRYPTO_USER_API_SKCIPHER) to cause a denial of service (uninitialized-memory free and kernel crash) or have unspecified other impact by executing a crafted sequence of system calls that use the blkcipher_walk API. Both the generic implementation (crypto/salsa20_generic.c) and x86 implementation (arch/x86/crypto/salsa20_glue.c) of Salsa20 were vulnerable. 2017-12-20T23:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17806 The HMAC implementation (crypto/hmac.c) in the Linux kernel before 4.14.8 does not validate that the underlying cryptographic hash algorithm is unkeyed, allowing a local attacker able to use the AF_ALG-based hash interface (CONFIG_CRYPTO_USER_API_HASH) and the SHA-3 hash algorithm (CONFIG_CRYPTO_SHA3) to cause a kernel stack buffer overflow by executing a crafted sequence of system calls that encounter a missing SHA-3 initialization. 2017-12-20T23:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17807 The KEYS subsystem in the Linux kernel before 4.14.6 omitted an access-control check when adding a key to the current task's "default request-key keyring" via the request_key() system call, allowing a local user to use a sequence of crafted system calls to add keys to a keyring with only Search permission (not Write permission) to that keyring, related to construct_get_dest_keyring() in security/keys/request_key.c. 2017-12-20T23:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17809 In Golden Frog VyprVPN before 2.15.0.5828 for macOS, the vyprvpnservice launch daemon has an unprotected XPC service that allows attackers to update the underlying OpenVPN configuration and the arguments passed to the OpenVPN binary when executed. An attacker can abuse this vulnerability by forcing the VyprVPN application to load a malicious dynamic library every time a new connection is made. 2017-12-20T23:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17821 WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because it calls the FastBitVectorWordOwner::resizeSlow function (in WTF/wtf/FastBitVector.cpp) for a purpose other than initializing a bitvector size, and resizeSlow mishandles cases where the old array length is greater than the new array length. 2017-12-21T03:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17831 GitHub Git LFS before 2.1.1 allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, located on a "url =" line in a .lfsconfig file within a repository. 2017-12-21T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17408 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within cevakrnl.xmd. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. An attacker can leverage this vulnerability to execute code under the context of SYSTEM. Was ZDI-CAN-5101. 2017-12-21T14:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17409 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within emulator 0x10A in cevakrnl.xmd. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code under the context of SYSTEM. Was ZDI-CAN-5102. 2017-12-21T14:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17410 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within emulator 0x102 in cevakrnl.xmd. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object. An attacker can leverage this vulnerability to execute code under the context of SYSTEM. Was ZDI-CAN-5116. 2017-12-21T14:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17411 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Linksys WVBR0 WVBR0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management portal. The issue lies in the lack of proper validation of user data before executing a system call. An attacker could leverage this vulnerability to execute code with root privileges. Was ZDI-CAN-4892. 2017-12-21T14:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-4100 Puppet Enterprise 3.7.x and 3.8.0 might allow remote authenticated users to manage certificates for arbitrary nodes by leveraging a client certificate trusted by the master, aka a "Certificate Authority Reverse Proxy Vulnerability." 2017-12-21T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7224 puppetlabs-mysql 3.1.0 through 3.6.0 allow remote attackers to bypass authentication by leveraging creation of a database account without a password when a 'mysql_user' user parameter contains a host with a netmask. 2017-12-21T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-0301 In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 and 12.1.2 BIG-IP APM portal access requests do not return the intended resources in some cases. This may allow access to internal BIG-IP APM resources, however the application resources and backend servers are unaffected. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-0304 A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live firewall rules in use are not affected. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6129 In F5 BIG-IP APM software version 13.0.0 and 12.1.2, in some circumstances, APM tunneled VPN flows can cause a VPN/PPP connflow to be prematurely freed or cause TMM to stop responding with a "flow not in use" assertion. An attacker may be able to disrupt traffic or cause the BIG-IP system to fail over to another device in the device group. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6133 In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6139 In F5 BIG-IP APM software version 13.0.0 and 12.1.2, under rare conditions, the BIG-IP APM system appends log details when responding to client requests. Details in the log file can vary; customers running debug mode logging with BIG-IP APM are at highest risk. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6140 On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800, and VIPRION 4450 blades, running version 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 or 12.1.2 of BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM or PEM, an undisclosed sequence of packets sent to Virtual Servers with client or server SSL profiles may cause disruption of data plane services. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6151 In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, undisclosed requests made to BIG-IP virtual servers which make use of the "HTTP/2 profile" may result in a disruption of service to TMM. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6164 In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, 12.0.0 - 12.1.2, 11.6.0 - 11.6.1 and 11.5.0 - 11.5.4, in some circumstances, Traffic Management Microkernel (TMM) does not properly handle certain malformed TLS1.2 records, which allows remote attackers to cause a denial-of-service (DoS) or possible remote command execution on the BIG-IP system. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-6167 In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, race conditions in iControl REST may lead to commands being executed with different privilege levels than expected. 2017-12-21T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17692 Samsung Internet Browser 5.4.02.3 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that redirects to a child tab and rewrites the innerHTML property. 2017-12-21T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16727 A Credentials Management issue was discovered in Moxa NPort W2150A versions prior to 1.11, and NPort W2250A versions prior to 1.11. The default password is empty on the device. An unauthorized user can access the device without a password. An unauthorized user has the ability to completely compromise the confidentiality and integrity of the wireless traffic. 2017-12-22T02:29:15Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-10907 Directory traversal vulnerability in OneThird CMS Show Off v1.85 and earlier. Show Off v1.85 en and earlier allows an attacker to read arbitrary files via unspecified vectors. 2017-12-22T14:29:12Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-10909 Untrusted search path vulnerability in Music Center for PC version 1.0.01 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. 2017-12-22T14:29:12Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16766 An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option. 2017-12-22T14:29:13Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15307 Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information. 2017-12-22T17:29:12Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15311 The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module. 2017-12-22T17:29:13Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-15322 Some Huawei smartphones with software of BGO-L03C158B003CUSTC158D001 and BGO-L03C331B009CUSTC331D001 have a DoS vulnerability due to insufficient input validation. An attacker could exploit this vulnerability by sending specially crafted NFC messages to the target device. Successful exploit could make a service crash. 2017-12-22T17:29:13Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-14022 An Improper Input Validation issue was discovered in Rockwell Automation FactoryTalk Alarms and Events, Version 2.90 and earlier. An unauthenticated attacker with remote access to a network with FactoryTalk Alarms and Events can send a specially crafted set of packets packet to Port 403/TCP (the history archiver service), causing the service to either stall or terminate. 2017-12-23T00:29:13Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1698 IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 could reveal sensitive information from an error message that could lead to further attacks against the system. IBM X-Force ID: 124390. 2017-12-27T17:08:17Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16995 The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension. 2017-12-27T17:08:17Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16996 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling. 2017-12-27T17:08:17Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17010 Untrusted search path vulnerability in Content Manager Assistant for PlayStation version 3.55.7671.0901 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. 2017-12-27T17:08:17Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17843 An issue was discovered in Enigmail before 1.9.9 that allows remote attackers to trigger use of an intended public key for encryption, because incorrect regular expressions are used for extraction of an e-mail address from a comma-separated list, as demonstrated by a modified Full Name field and a homograph attack, aka TBE-01-002. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17844 An issue was discovered in Enigmail before 1.9.9. A remote attacker can obtain cleartext content by sending an encrypted data block (that the attacker cannot directly decrypt) to a victim, and relying on the victim to automatically decrypt that block and then send it back to the attacker as quoted text, aka the TBE-01-005 "replay" issue. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17845 An issue was discovered in Enigmail before 1.9.9. Improper Random Secret Generation occurs because Math.Random() is used by pretty Easy privacy (pEp), aka TBE-01-001. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17846 An issue was discovered in Enigmail before 1.9.9. Regular expressions are exploitable for Denial of Service, because of attempts to match arbitrarily long strings, aka TBE-01-003. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17847 An issue was discovered in Enigmail before 1.9.9. Signature spoofing is possible because the UI does not properly distinguish between an attachment signature, and a signature that applies to the entire containing message, aka TBE-01-021. This is demonstrated by an e-mail message with an attachment that is a signed e-mail message in message/rfc822 format. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17848 An issue was discovered in Enigmail before 1.9.9. In a variant of CVE-2017-17847, signature spoofing is possible for multipart/related messages because a signed message part can be referenced with a cid: URI but not actually displayed. In other words, the entire containing message appears to be signed, but the recipient does not see any of the signed text. 2017-12-27T17:08:19Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17850 An issue was discovered in Asterisk 13.18.4 and older, 14.7.4 and older, 15.1.4 and older, and 13.18-cert1 and older. A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and the PJSIP channel driver was used, Asterisk would crash. The severity of this vulnerability is somewhat mitigated if authentication is enabled. If authentication is enabled, a user would have to first be authorized before reaching the crash point. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17852 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17853 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17854 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (integer overflow and memory corruption) or possibly have unspecified other impact by leveraging unrestricted integer values for pointer arithmetic. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17855 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17856 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the lack of stack-pointer alignment enforcement. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17857 The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of invalid variable stack read operations. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17862 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17863 kernel/bpf/verifier.c in the Linux kernel 4.9.x through 4.9.71 does not check the relationship between pointer values and the BPF stack, which allows local users to cause a denial of service (integer overflow or invalid memory access) or possibly have unspecified other impact. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17864 kernel/bpf/verifier.c in the Linux kernel through 4.14.8 mishandles states_equal comparisons between the pointer data type and the UNKNOWN_VALUE data type, which allows local users to obtain potentially sensitive address information, aka a "pointer leak." 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17868 In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter (p_r_p) value, as demonstrated by p_r_p_564233524_tag. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17869 The mgl-instagram-gallery plugin for WordPress has XSS via the single-gallery.php media parameter. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17873 Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI. 2017-12-27T17:08:20Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17876 Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17891 Readymade Video Sharing Script has CSRF via user-profile-edit.php. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17892 Readymade Video Sharing Script has SQL Injection via the viewsubs.php chnlid parameter or the search_video.php search parameter. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17893 Readymade Video Sharing Script has XSS via the search_video.php search parameter, the viewsubs.php chnlid parameter, or the user-profile-edit.php fname parameter. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17894 Readymade Job Site Script has CSRF via the /job URI. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17895 Readymade Job Site Script has SQL Injection via the location_name array parameter to the /job URI. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17896 Readymade Job Site Script has XSS via the keyword parameter to the /job URI. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17897 SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17898 Dolibarr ERP/CRM version 6.0.4 does not block direct requests to *.tpl.php files, which allows remote attackers to obtain sensitive information. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17899 SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter. 2017-12-27T17:08:21Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17900 SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the socid parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17903 FS Lynda Clone has CSRF via user/edit_profile, as demonstrated by adding content to the user panel. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17904 FS Lynda Clone has XSS via the keywords parameter to tutorial/ or the edit_profile_first_name parameter to user/edit_profile. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17905 PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17906 PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17907 PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17908 PHP Scripts Mall Responsive Realestate Script has CSRF via admin/general. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17909 PHP Scripts Mall Responsive Realestate Script has XSS via the admin/general.php gplus parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17911 packages/core/contact.php in Archon 3.21 rev-1 has XSS in the referer parameter in an index.php?p=core/contact request, aka Open Bug Bounty ID OBB-278503. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17924 PHP Scripts Mall Professional Service Script allows remote attackers to obtain sensitive full-path information via the id parameter to admin/review_userwise.php. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17925 PHP Scripts Mall Professional Service Script has XSS via the admin/general_settingupd.php website_title parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17926 PHP Scripts Mall Professional Service Script has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17927 PHP Scripts Mall Professional Service Script allows remote attackers to obtain sensitive full-path information via a crafted PATH_INFO to service-list/category/. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17928 PHP Scripts Mall Professional Service Script has SQL injection via the admin/review.php id parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17929 PHP Scripts Mall Professional Service Script has XSS via the admin/bannerview.php view parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17930 PHP Scripts Mall Professional Service Script has CSRF via admin/general_settingupd.php, as demonstrated by modifying a setting in the user panel. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17931 PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17935 The File_read_line function in epan/wslua/wslua_file.c in Wireshark through 2.2.11 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet that triggers the attempted processing of an empty line. 2017-12-27T17:08:22Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6914 Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file. 2017-12-27T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-13056 The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file. 2017-12-27T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16768 Cross-site scripting (XSS) vulnerability in User Policy editor in Synology MailPlus Server before 1.4.0-0415 allows remote authenticated users to inject arbitrary HTML via the name parameter. 2017-12-27T17:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-7668 Cross-site scripting (XSS) vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map_id parameter. 2017-12-27T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11695 Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file. 2017-12-27T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11696 Heap-based buffer overflow in the __hash_open function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file. 2017-12-27T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11697 The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context-dependent attackers to cause a denial of service (floating point exception and crash) via a crafted cert8.db file. 2017-12-27T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11698 Heap-based buffer overflow in the __get_page function in lib/dbm/src/h_page.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file. 2017-12-27T19:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-10910 MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition. 2017-12-28T02:29:03Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17932 A buffer overflow vulnerability exists in MediaServer.exe in ALLPlayer ALLMediaServer 0.95 and earlier that could allow remote attackers to execute arbitrary code and/or cause denial of service on the victim machine/computer via a long string to TCP port 888. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17936 Vanguard Marketplace Digital Products PHP has CSRF via /search. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17937 Vanguard Marketplace Digital Products PHP has XSS via the phps_query parameter to /search. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17938 PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17939 PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17940 PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17941 PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17942 In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c. 2017-12-28T06:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-7400 The Direct Mail (direct_mail) extension before 3.1.2 for TYPO3 allows remote attackers to obtain sensitive information by leveraging improper checking of authentication codes. 2017-12-29T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3695 The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set. 2017-12-29T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16876 Cross-site scripting (XSS) vulnerability in the _keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the "key" argument. 2017-12-29T15:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17916 ** DISPUTED ** SQL injection vulnerability in the 'find_by' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for use with untrusted input. 2017-12-29T16:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17917 ** DISPUTED ** SQL injection vulnerability in the 'where' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'id' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for use with untrusted input. 2017-12-29T16:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17919 ** DISPUTED ** SQL injection vulnerability in the 'order' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'id desc' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for use with untrusted input. 2017-12-29T16:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17920 ** DISPUTED ** SQL injection vulnerability in the 'reorder' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for use with untrusted input. 2017-12-29T16:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17760 OpenCV 3.3.1 has a Buffer Overflow in the cv::PxMDecoder::readData function in grfmt_pxm.cpp, because an incorrect size value is used. 2017-12-29T18:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17973 In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. 2017-12-29T21:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0120 Cross-site request forgery (CSRF) vulnerability in the admin terminal in Hawt.io allows remote attackers to hijack the authentication of arbitrary users for requests that run commands on the Karaf server, as demonstrated by running "shutdown -f." 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0121 The admin terminal in Hawt.io does not require authentication, which allows remote attackers to execute arbitrary commands via the k parameter. 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3630 XML external entity (XXE) vulnerability in the Java XML processing functionality in Play before 2.2.6 and 2.3.x before 2.3.5 might allow remote attackers to read arbitrary files, cause a denial of service, or have unspecified other impact via crafted XML data. 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4978 The rs_filter_graph function in librawstudio/rs-filter.c in rawstudio might allow local users to truncate arbitrary files via a symlink attack on (1) /tmp/rs-filter-graph.png or (2) /tmp/rs-filter-graph. 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8119 The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions. 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-9515 Dozer improperly uses a reflection-based approach to type conversion, which might allow remote attackers to execute arbitrary code via a crafted serialized object. 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3302 The TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress before 1.3.9.3 allows remote attackers to obtain sensitive order detail information by leveraging a "broken authentication mechanism." 2017-12-29T22:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17975 Use-after-free in the usbtv_probe function in drivers/media/usb/usbtv/usbtv-core.c in the Linux kernel through 4.14.10 allows attackers to cause a denial of service (system crash) or possibly have unspecified other impact by triggering failure of audio registration, because a kfree of the usbtv data structure occurs during a usbtv_video_free call, but the usbtv_video_fail label's code attempts to both access and free this data structure. 2017-12-30T01:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17981 PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/slider_edit.php edit_id parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17982 PHP Scripts Mall Muslim Matrimonial Script has CSRF via admin/subadmin_edit.php. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17983 PHP Scripts Mall Muslim Matrimonial Script has SQL injection via the view-profile.php mem_id parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17984 PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/event_edit.php edit_id parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17985 PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/state_view.php cou_id parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17986 PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/caste_view.php comm_id parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17987 PHP Scripts Mall Muslim Matrimonial Script allows arbitrary file upload via admin/mydetails_edit.php. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17988 PHP Scripts Mall Muslim Matrimonial Script has XSS via the admin/event_add.php event_title parameter. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17989 Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17990 Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17991 Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17992 Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17993 Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17994 Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17995 Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request. 2017-12-30T04:29:00Z https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-5753 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. 2018-01-04T13:29:00Z