CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In September 2017

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
301 CVE-2017-14410 125 DoS 2017-09-13 2017-09-18
4.3
None Remote Medium Not required None None Partial
A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
302 CVE-2017-14409 787 DoS Exec Code Overflow 2017-09-13 2017-09-18
6.8
None Remote Medium Not required Partial Partial Partial
A buffer overflow was discovered in III_dequantize_sample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of service or possibly code execution.
303 CVE-2017-14408 125 DoS 2017-09-13 2017-09-18
4.3
None Remote Medium Not required None None Partial
A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
304 CVE-2017-14407 125 DoS 2017-09-13 2017-09-18
4.3
None Remote Medium Not required None None Partial
A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
305 CVE-2017-14406 476 DoS 2017-09-13 2017-09-18
4.3
None Remote Medium Not required None None Partial
A NULL pointer dereference was discovered in sync_buffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which leads to remote denial of service.
306 CVE-2017-14405 78 Exec Code 2017-09-13 2021-02-23
6.5
None Remote Low ??? Partial Partial Partial
The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote command execution via shell metacharacters in a hosts_cacti array parameter to module/admin_device/index.php.
307 CVE-2017-14404 200 +Info File Inclusion 2017-09-13 2021-02-23
5.0
None Remote Low Not required Partial None None
The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows local file inclusion via the tool_list parameter (aka the url_tool variable) to module/tool_all/select_tool.php, as demonstrated by a tool_list=php://filter/ substring.
308 CVE-2017-14403 89 Sql 2017-09-13 2021-02-23
7.5
None Remote Low Not required Partial Partial Partial
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to module/admin_group/search.php.
309 CVE-2017-14402 89 Sql 2017-09-13 2021-02-23
7.5
None Remote Low Not required Partial Partial Partial
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter to module/admin_user/add_modify_user.php in the "ACCOUNT CREATION" section, related to lack of input validation in include/function.php.
310 CVE-2017-14401 89 Sql 2017-09-13 2021-02-23
7.5
None Remote Low Not required Partial Partial Partial
The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter to module/admin_user/add_modify_user.php in the "ACCOUNT UPDATE" section.
311 CVE-2017-14400 476 DoS 2017-09-12 2020-09-08
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.0.7-1 Q16, the PersistPixelCache function in magick/cache.c mishandles the pixel cache nexus, which allows remote attackers to cause a denial of service (NULL pointer dereference in the function GetVirtualPixels in MagickCore/cache.c) via a crafted file.
312 CVE-2017-14399 434 2017-09-12 2017-09-19
6.5
None Remote Low ??? Partial Partial Partial
In BlackCat CMS 1.2.2, unrestricted file upload is possible in backend\media\ajax_rename.php via the extension parameter, as demonstrated by changing the extension from .jpg to .php.
313 CVE-2017-14398 119 Overflow +Priv 2017-09-13 2020-05-20
4.6
None Local Low Not required Partial Partial Partial
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection.
314 CVE-2017-14397 74 2017-09-12 2017-09-19
7.5
None Remote Low Not required Partial Partial Partial
AnyDesk before 3.6.1 on Windows has a DLL injection vulnerability.
315 CVE-2017-14396 89 Sql 2017-09-12 2017-09-21
7.5
None Remote Low Not required Partial Partial Partial
In osTicket before 1.10.1, SQL injection is possible by constructing an array via use of square brackets at the end of a parameter name, as demonstrated by the key parameter to file.php.
316 CVE-2017-14352 79 XSS 2017-09-30 2017-10-07
4.3
None Remote Medium Not required None Partial None
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow cross-site scripting.
317 CVE-2017-14351 Exec Code 2017-09-30 2017-11-11
7.5
None Remote Low Not required Partial Partial Partial
A potential security vulnerability has been identified in HP UCMDB Configuration Manager versions 10.10, 10.11, 10.20, 10.21, 10.22, 10.23. These vulnerabilities could be remotely exploited to allow code execution.
318 CVE-2017-14350 306 Exec Code 2017-09-30 2017-10-05
10.0
None Remote Low Not required Complete Complete Complete
A potential security vulnerability has been identified in HPE Application Performance Management (BSM) Platform versions 9.26, 9.30, 9.40. The vulnerability could be remotely exploited to allow code execution.
319 CVE-2017-14349 269 2017-09-30 2019-10-03
7.5
None Remote Low Not required Partial Partial Partial
An authentication vulnerability in HPE SiteScope product versions 11.2x and 11.3x, allows read-only accounts to view all SiteScope interfaces and monitors, potentially exposing sensitive data.
320 CVE-2017-14348 119 Overflow 2017-09-12 2017-09-20
6.8
None Remote Medium Not required Partial Partial Partial
LibRaw before 0.18.4 has a heap-based Buffer Overflow in the processCanonCameraInfo function via a crafted file.
321 CVE-2017-14347 79 XSS 2017-09-12 2017-09-16
4.3
None Remote Medium Not required None Partial None
NexusPHP 1.5.beta5.20120707 has XSS in the returnto parameter to fun.php in a delete action.
322 CVE-2017-14346 434 Exec Code 2017-09-12 2017-09-26
7.5
None Remote Low Not required Partial Partial Partial
upload.php in tianchoy/blog through 2017-09-12 allows unrestricted file upload and PHP code execution by using the image/jpeg, image/pjpeg, image/png, or image/gif content type for a .php file.
323 CVE-2017-14345 89 Sql 2017-09-12 2017-09-21
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in tianchoy/blog through 2017-09-12 via the id parameter to view.php.
324 CVE-2017-14344 20 Exec Code Overflow 2017-09-12 2018-10-17
7.2
None Local Low Not required Complete Complete Complete
This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x95382673 by the windrvr1240 kernel driver. The issue lies in the failure to properly validate user-supplied data which can result in a kernel pool overflow. An attacker can leverage this vulnerability to execute arbitrary code under the context of kernel.
325 CVE-2017-14343 772 2017-09-12 2019-10-03
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in coders/xcf.c via a crafted xcf image file.
326 CVE-2017-14342 400 2017-09-12 2019-04-17
4.3
None Remote Medium Not required None None Partial
ImageMagick 7.0.6-6 has a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c via a crafted wpg image file.
327 CVE-2017-14341 400 2017-09-12 2020-10-15
7.1
None Remote Medium Not required None None Complete
ImageMagick 7.0.6-6 has a large loop vulnerability in ReadWPGImage in coders/wpg.c, causing CPU exhaustion via a crafted wpg image file.
328 CVE-2017-14340 476 DoS 2017-09-15 2017-12-07
4.9
None Local Low Not required None None Complete
The XFS_IS_REALTIME_INODE macro in fs/xfs/xfs_linux.h in the Linux kernel before 4.13.2 does not verify that a filesystem has a realtime device, which allows local users to cause a denial of service (NULL pointer dereference and OOPS) via vectors related to setting an RHINHERIT flag on a directory.
329 CVE-2017-14339 835 2017-09-20 2019-10-03
7.8
None Remote Low Not required None None Complete
The DNS packet parser in YADIFA before 2.2.6 does not check for the presence of infinite pointer loops, and thus it is possible to force it to enter an infinite loop. This can cause high CPU usage and makes the server unresponsive.
330 CVE-2017-14337 287 2017-09-12 2017-09-29
6.8
None Remote Medium Not required Partial Partial Partial
When MISP before 2.4.80 is configured with X.509 certificate authentication (CertAuth) in conjunction with a non-MISP external user management ReST API, if an external user provides X.509 certificate authentication and this API returns an empty value, the unauthenticated user can be granted access as an arbitrary user.
331 CVE-2017-14335 20 2017-09-12 2017-09-28
5.0
None Remote Low Not required None Partial None
On Beijing Hanbang Hanbanggaoke devices, because user-controlled input is not sufficiently sanitized, sending a PUT request to /ISAPI/Security/users/1 allows an admin password change.
332 CVE-2017-14333 190 DoS Overflow 2017-09-12 2018-01-09
4.3
None Remote Medium Not required None None Partial
The process_version_sections function in readelf.c in GNU Binutils 2.29 allows attackers to cause a denial of service (Integer Overflow, and hang because of a time-consuming loop) or possibly have unspecified other impact via a crafted binary file with invalid values of ent.vn_next, during "readelf -a" execution.
333 CVE-2017-14326 772 DoS 2017-09-12 2019-10-03
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.
334 CVE-2017-14325 772 DoS 2017-09-12 2019-10-03
7.1
None Remote Medium Not required None None Complete
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadMPCImage in coders/mpc.c) via a crafted file.
335 CVE-2017-14324 772 DoS 2017-09-12 2019-10-03
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service via a crafted file.
336 CVE-2017-14321 79 XSS 2017-09-21 2017-10-04
3.5
None Remote Medium ??? None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in the administrative interface in Mirasvit Helpdesk MX before 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the (1) customer name or (2) subject in a ticket.
337 CVE-2017-14320 20 Exec Code 2017-09-21 2017-10-04
6.0
None Remote Medium ??? Partial Partial Partial
Mirasvit Helpdesk MX before 1.5.3 might allow remote attackers to execute arbitrary code by leveraging failure to filter uploaded files.
338 CVE-2017-14319 2017-09-12 2019-10-03
7.2
None Local Low Not required Complete Complete Complete
A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to make sure page table entries remain in sync with other accounting done. Although the identity of the page frame was validated correctly, neither the presence of the mapping nor page writability were taken into account.
339 CVE-2017-14318 476 2017-09-12 2017-11-30
4.9
None Local Low Not required None None Complete
An issue was discovered in Xen 4.5.x through 4.9.x. The function `__gnttab_cache_flush` handles GNTTABOP_cache_flush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mapping to the calling domain exists for the page in question. However, the function does not check to see if the owning domain actually has a grant table or not. Some special domains, such as `DOMID_XEN`, `DOMID_IO` and `DOMID_COW` are created without grant tables. Hence, if __gnttab_cache_flush operates on a page owned by these special domains, it will attempt to dereference a NULL pointer in the domain struct.
340 CVE-2017-14317 362 2017-09-12 2018-10-19
4.7
None Local Medium Not required None None Complete
A domain cleanup issue was discovered in the C xenstore daemon (aka cxenstored) in Xen through 4.9.x. When shutting down a VM with a stubdomain, a race in cxenstored may cause a double-free. The xenstored daemon may crash, resulting in a DoS of any parts of the system relying on it (including domain creation / destruction, ballooning, device changes, etc.).
341 CVE-2017-14316 125 2017-09-12 2018-10-19
7.2
None Local Low Not required Complete Complete Complete
A parameter verification issue was discovered in Xen through 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.
342 CVE-2017-14315 119 Overflow +Priv Bypass 2017-09-12 2019-05-14
7.9
None Local Network Medium Not required Complete Complete Complete
In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with attacker-controlled data. Since the audio commands sent via LEAP are not properly validated, an attacker can use this overflow to gain full control of the device through the relatively high privileges of the Bluetooth stack in iOS. The attack bypasses Bluetooth access control; however, the default "Bluetooth On" value must be present in Settings.
343 CVE-2017-14314 125 DoS 2017-09-12 2020-01-08
4.3
None Remote Medium Not required None None Partial
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (DrawDashPolygon heap-based buffer over-read and application crash) via a crafted file.
344 CVE-2017-14313 79 XSS 2017-09-12 2017-11-04
4.3
None Remote Medium Not required None Partial None
The shibboleth_login_form function in shibboleth.php in the Shibboleth plugin before 1.8 for WordPress is prone to an XSS vulnerability due to improper use of add_query_arg().
345 CVE-2017-14312 269 +Priv 2017-09-11 2019-10-03
7.2
None Local Low Not required Complete Complete Complete
Nagios Core through 4.3.4 initially executes /usr/sbin/nagios as root but supports configuration options in which this file is owned by a non-root account (and similarly can have nagios.cfg owned by a non-root account), which allows local users to gain privileges by leveraging access to this non-root account.
346 CVE-2017-14311 +Priv 2017-09-19 2019-10-03
4.6
None Local Low Not required Partial Partial Partial
The Winring0x32.sys driver in NetMechanica NetDecision 5.8.2 allows local users to gain privileges via a crafted 0x9C402088 IOCTL call.
347 CVE-2017-14310 119 DoS Overflow 2017-09-11 2017-09-18
4.6
None Local Low Not required Partial Partial Partial
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to a "Read Access Violation starting at STDUJBIG2File!DllUnregisterServer+0x0000000000001869."
348 CVE-2017-14309 119 DoS Overflow 2017-09-11 2017-09-13
4.6
None Local Low Not required Partial Partial Partial
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to a "Read Access Violation starting at STDUJBIG2File!DllUnregisterServer+0x0000000000006ec8."
349 CVE-2017-14308 119 DoS Overflow 2017-09-11 2017-09-13
4.6
None Local Low Not required Partial Partial Partial
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to a "Read Access Violation starting at STDUJBIG2File!DllUnregisterServer+0x0000000000006ddd."
350 CVE-2017-14307 119 DoS Overflow 2017-09-11 2017-09-13
4.6
None Local Low Not required Partial Partial Partial
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77400000!TpAllocCleanupGroup+0x0000000000000402."
Total number of vulnerabilities : 1228   Page : 1 2 3 4 5 6 7 (This Page)8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.