Latest CVE Feed
-
5.5
MEDIUMCVE-2017-17819
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are not validated.... Read more
- Published: Dec. 21, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2021-21614
Jenkins Bumblebee HP ALM Plugin 4.1.5 and earlier stores credentials unencrypted in its global configuration file on the Jenkins controller where they can be viewed by users with access to the Jenkins controller file system.... Read more
Affected Products : bumblebee_hp_alm- Published: Jan. 13, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17669
There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunk_int.cpp in Exiv2 0.26. A crafted PNG file will lead to a remote denial of service attack.... Read more
- Published: Dec. 13, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2017-17816
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_getline in asm/preproc.c that will cause a remote denial of service attack.... Read more
- Published: Dec. 21, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2025-49658
Out-of-bounds read in Windows TDX.sys allows an authorized attacker to disclose information locally.... Read more
Affected Products : windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 +9 more products- Published: Jul. 08, 2025
- Modified: Jul. 15, 2025
- Vuln Type: Information Disclosure
-
5.5
MEDIUMCVE-2025-47105
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of... Read more
- Published: Jun. 10, 2025
- Modified: Jun. 16, 2025
- Vuln Type: Information Disclosure
-
5.5
MEDIUMCVE-2017-17554
A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.... Read more
Affected Products : aubio- Published: Dec. 12, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2025-43185
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sequoia 15.6. An app may be able to access protected user data.... Read more
Affected Products : macos- Published: Jul. 30, 2025
- Modified: Jul. 31, 2025
- Vuln Type: Authentication
-
5.5
MEDIUMCVE-2017-17327
Huawei smartphones with software of MHA-AL00AC00B125 have an improper resource management vulnerability. The software does not properly manage the resource when do device register operation. An attacker tricks the user who has root privilege to install a ... Read more
- Published: Mar. 09, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17307
Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability. Due to the lack string terminator of string, an attacker tricks a user into installing a malicious application, and the application can exploit the vulne... Read more
- Published: Mar. 20, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2025-29829
Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally.... Read more
Affected Products : windows_server_2016 windows_server_2019 windows_10_1607 windows_10_1809 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_22h2 windows_10_1507 windows_11_23h2 +4 more products- Published: May. 13, 2025
- Modified: May. 19, 2025
- Vuln Type: Information Disclosure
-
5.5
MEDIUMCVE-2017-17163
Huawei Secospace USG6600 V500R001C30SPC100 has an Out-of-Bounds memory access vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by executing some commands. The attacker can exploit this vulnerability... Read more
- Published: Feb. 15, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17186
Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a DoS vulnerability. Due to insufficient in... Read more
Affected Products : dp300_firmware te60_firmware rp200_firmware te30_firmware te40_firmware te50_firmware te30 te40 te50 te60 +2 more products- Published: Feb. 15, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17201
Some huawei smartphones with software BTV-DL09C233B350, Berlin-L21HNC432B360, Berlin-L22HNC636B360, Berlin-L24HNC567B360, Berlin-L21C10B130, Berlin-L21C185B132, Berlin-L21C464B130, Berlin-L22C346B140, Berlin-L22C636B160, Berlin-L23C605B131, Berlin-L23DOMC... Read more
Affected Products : berlin-l21_firmware berlin-l22_firmware berlin-l23_firmware mha-al00a_firmware btv-emui5.0_firmware berlin-emui5.0_firmware berlin-l21 berlin-l22 berlin-l23 btv-emui5.0 +2 more products- Published: Feb. 15, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17137
PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R00... Read more
Affected Products : secospace_usg6600_firmware usg9500_firmware dp300_firmware te60_firmware tp3106_firmware viewpoint_9030_firmware s12700_firmware s1700_firmware s2700_firmware s5700_firmware +38 more products- Published: Mar. 05, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17136
PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R00... Read more
Affected Products : secospace_usg6600_firmware usg9500_firmware dp300_firmware te60_firmware tp3106_firmware viewpoint_9030_firmware s12700_firmware s1700_firmware s2700_firmware s5700_firmware +38 more products- Published: Mar. 05, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17138
PEM module of DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V... Read more
Affected Products : secospace_usg6600_firmware usg9500_firmware dp300_firmware te60_firmware tp3106_firmware viewpoint_9030_firmware s12700_firmware s1700_firmware s2700_firmware s5700_firmware +38 more products- Published: Mar. 05, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17135
PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R00... Read more
Affected Products : secospace_usg6600_firmware usg9500_firmware dp300_firmware te60_firmware tp3106_firmware viewpoint_9030_firmware s12700_firmware s1700_firmware s2700_firmware s5700_firmware +38 more products- Published: Mar. 05, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17132
Huawei VP9660 V500R002C10 has a uncontrolled format string vulnerability when the license module output the log information. An authenticated local attacker could exploit this vulnerability to cause a denial of service.... Read more
- Published: Mar. 05, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2017-17162
Huawei Secospace USG6600 V500R001C30SPC100, Secospace USG6600 V500R001C30SPC200, Secospace USG6600 V500R001C30SPC300, USG9500 V500R001C30SPC100, USG9500 V500R001C30SPC200, USG9500 V500R001C30SPC300 have a memory leak vulnerability due to memory don't be r... Read more
- Published: Feb. 15, 2018
- Modified: Nov. 21, 2024