Latest CVE Feed
-
8.8
HIGHCVE-2017-12107
An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .PCX file to trigg... Read more
Affected Products : photoline- EPSS Score: %0.39
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12105
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can ... Read more
- EPSS Score: %1.23
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12104
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code executio... Read more
- EPSS Score: %1.23
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12103
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts text rendered as a font into a curve. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can a... Read more
- EPSS Score: %1.23
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12102
An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code exec... Read more
- EPSS Score: %0.97
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12101
An exploitable integer overflow exists in the 'modifier_mdef_compact_influences' functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allo... Read more
- EPSS Score: %0.97
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12100
An exploitable integer overflow exists in the 'multires_load_old_dm' functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code e... Read more
- EPSS Score: %1.23
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12099
An exploitable integer overflow exists in the upgrade of the legacy Mesh attribute 'tface' of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow fo... Read more
- EPSS Score: %1.23
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2017-12098
An exploitable cross site scripting (XSS) vulnerability exists in the add filter functionality of the rails_admin rails gem version 1.2.0. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on... Read more
Affected Products : rails_admin- EPSS Score: %0.40
- Published: Jan. 19, 2018
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2017-12097
An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on t... Read more
Affected Products : delayed_job_web- EPSS Score: %0.40
- Published: Jan. 19, 2018
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2017-12095
An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default credentials. An attacker needs to send a series of spoofed "... Read more
Affected Products : circle_with_disney_firmware- EPSS Score: %0.10
- Published: Apr. 05, 2018
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2017-12093
An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted stream of packets can cause a flood of the session resource p... Read more
- EPSS Score: %3.24
- Published: Apr. 05, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2017-12092
An exploitable file write vulnerability exists in the memory module functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a file write resulting in a new program being written to the memory modul... Read more
- EPSS Score: %0.08
- Published: Jun. 04, 2018
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2017-12090
An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, when sent without associated firmware flashing snmp-set co... Read more
- EPSS Score: %0.02
- Published: Apr. 05, 2018
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2017-12089
An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can ... Read more
- EPSS Score: %0.09
- Published: Apr. 05, 2018
- Modified: Nov. 21, 2024
-
8.6
HIGHCVE-2017-12088
An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladd... Read more
- EPSS Score: %0.09
- Published: Apr. 05, 2018
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2017-12087
An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dn... Read more
Affected Products : tinysvcmdns- EPSS Score: %1.78
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12086
An exploitable integer overflow exists in the 'BKE_mesh_calc_normals_tessface' functionality of the Blender open-source 3d creation suite. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for cod... Read more
- EPSS Score: %0.79
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12082
An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause an integer overflow resulting in a buffer overflow whic... Read more
- EPSS Score: %0.79
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2017-12081
An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code exe... Read more
- EPSS Score: %0.79
- Published: Apr. 24, 2018
- Modified: Nov. 21, 2024