Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
  • 8.8

    HIGH
    CVE-2017-12107

    An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .PCX file to trigg... Read more

    Affected Products : photoline
    • EPSS Score: %0.39
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12105

    An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c applies a particular object modifier to a Mesh. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can ... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %1.23
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12104

    An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c draws a Particle object. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code executio... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %1.23
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12103

    An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts text rendered as a font into a curve. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can a... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %1.23
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12102

    An exploitable integer overflow exists in the way that the Blender open-source 3d creation suite v2.78c converts curves to polygons. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code exec... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %0.97
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12101

    An exploitable integer overflow exists in the 'modifier_mdef_compact_influences' functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allo... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %0.97
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12100

    An exploitable integer overflow exists in the 'multires_load_old_dm' functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code e... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %1.23
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12099

    An exploitable integer overflow exists in the upgrade of the legacy Mesh attribute 'tface' of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow fo... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %1.23
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 6.1

    MEDIUM
    CVE-2017-12098

    An exploitable cross site scripting (XSS) vulnerability exists in the add filter functionality of the rails_admin rails gem version 1.2.0. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on... Read more

    Affected Products : rails_admin
    • EPSS Score: %0.40
    • Published: Jan. 19, 2018
    • Modified: Nov. 21, 2024
  • 6.1

    MEDIUM
    CVE-2017-12097

    An exploitable cross site scripting (XSS) vulnerability exists in the filter functionality of the delayed_job_web rails gem version 1.4. A specially crafted URL can cause an XSS flaw resulting in an attacker being able to execute arbitrary javascript on t... Read more

    Affected Products : delayed_job_web
    • EPSS Score: %0.40
    • Published: Jan. 19, 2018
    • Modified: Nov. 21, 2024
  • 6.5

    MEDIUM
    CVE-2017-12095

    An exploitable vulnerability exists in the WiFi Access Point feature of Circle with Disney running firmware 2.0.1. A series of WiFi packets can force Circle to setup an Access Point with default credentials. An attacker needs to send a series of spoofed "... Read more

    Affected Products : circle_with_disney_firmware
    • EPSS Score: %0.10
    • Published: Apr. 05, 2018
    • Modified: Nov. 21, 2024
  • 5.3

    MEDIUM
    CVE-2017-12093

    An exploitable insufficient resource pool vulnerability exists in the session communication functionality of Allen Bradley Micrologix 1400 Series B Firmware 21.2 and before. A specially crafted stream of packets can cause a flood of the session resource p... Read more

    • EPSS Score: %3.24
    • Published: Apr. 05, 2018
    • Modified: Nov. 21, 2024
  • 7.5

    HIGH
    CVE-2017-12092

    An exploitable file write vulnerability exists in the memory module functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a file write resulting in a new program being written to the memory modul... Read more

    • EPSS Score: %0.08
    • Published: Jun. 04, 2018
    • Modified: Nov. 21, 2024
  • 7.8

    HIGH
    CVE-2017-12090

    An exploitable denial of service vulnerability exists in the processing of snmp-set commands of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted snmp-set request, when sent without associated firmware flashing snmp-set co... Read more

    • EPSS Score: %0.02
    • Published: Apr. 05, 2018
    • Modified: Nov. 21, 2024
  • 8.6

    HIGH
    CVE-2017-12089

    An exploitable denial of service vulnerability exists in the program download functionality of Allen Bradley Micrologix 1400 Series B FRN 21.2 and before. A specially crafted packet can cause a device fault resulting in halted operations. An attacker can ... Read more

    • EPSS Score: %0.09
    • Published: Apr. 05, 2018
    • Modified: Nov. 21, 2024
  • 8.6

    HIGH
    CVE-2017-12088

    An exploitable denial of service vulnerability exists in the Ethernet functionality of the Allen Bradley Micrologix 1400 Series B FRN 21.2 and below. A specially crafted packet can cause a device power cycle resulting in a fault state and deletion of ladd... Read more

    • EPSS Score: %0.09
    • Published: Apr. 05, 2018
    • Modified: Nov. 21, 2024
  • 10.0

    CRITICAL
    CVE-2017-12087

    An exploitable heap overflow vulnerability exists in the tinysvcmdns library version 2016-07-18. A specially crafted packet can make the library overwrite an arbitrary amount of data on the heap with attacker controlled values. An attacker needs send a dn... Read more

    Affected Products : tinysvcmdns
    • EPSS Score: %1.78
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12086

    An exploitable integer overflow exists in the 'BKE_mesh_calc_normals_tessface' functionality of the Blender open-source 3d creation suite. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for cod... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %0.79
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12082

    An exploitable integer overflow exists in the 'CustomData' Mesh loading functionality of the Blender open-source 3d creation suite. A .blend file with a specially crafted external data file can cause an integer overflow resulting in a buffer overflow whic... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %0.79
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
  • 8.8

    HIGH
    CVE-2017-12081

    An exploitable integer overflow exists in the upgrade of a legacy Mesh attribute of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code exe... Read more

    Affected Products : debian_linux blender
    • EPSS Score: %0.79
    • Published: Apr. 24, 2018
    • Modified: Nov. 21, 2024
Showing 20 of 291562 Results