Latest CVE Feed
-
9.3
HIGHCVE-2017-10892
Untrusted search path vulnerability in Music Center for PC version 1.0.00 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.... Read more
- EPSS Score: %0.11
- Published: Dec. 01, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2017-10888
BOOK WALKER for Windows Ver.1.2.9 and earlier, BOOK WALKER for Mac Ver.1.2.5 and earlier allow an attacker to access local files via unspecified vectors.... Read more
- EPSS Score: %0.20
- Published: Nov. 17, 2017
- Modified: Apr. 20, 2025
-
3.5
LOWCVE-2017-10399
Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications (subcomponent: GangwayActivityWebApp). The supported version that is affected is 9.0.2.0. Difficult to exploit vulnerability allows low privileged... Read more
Affected Products : hospitality_cruise_fleet_management- EPSS Score: %0.30
- Published: Oct. 19, 2017
- Modified: Apr. 20, 2025
-
4.3
MEDIUMCVE-2017-10856
SEIL/X 4.60 to 5.72, SEIL/B1 4.60 to 5.72, SEIL/x86 3.20 to 5.72, SEIL/BPV4 5.00 to 5.72 allows remote attackers to cause a temporary failure of the device's encrypted communications via a specially crafted packet.... Read more
Affected Products : b1_firmware bpv_4_firmware x1_firmware x2_firmware x86_fuji_firmware b1 x1 x2 x86_fuji bpv_4- EPSS Score: %0.74
- Published: Sep. 15, 2017
- Modified: Apr. 20, 2025
-
8.8
HIGHCVE-2017-10835
"Dokodemo eye Smart HD" SCR02HD Firmware 1.0.3.1000 and earlier allows authenticated attackers to conduct code injection attacks via unspecified vectors.... Read more
- EPSS Score: %0.57
- Published: Aug. 29, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2017-10778
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x00000000002... Read more
- EPSS Score: %0.05
- Published: Jul. 05, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2017-10773
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at MSCTF!_CtfImeCreateT... Read more
- EPSS Score: %0.05
- Published: Jul. 05, 2017
- Modified: Apr. 20, 2025
-
9.3
HIGHCVE-2014-9934
A PKCS#1 v1.5 signature verification routine in all Android releases from CAF using the Linux kernel may not check padding.... Read more
Affected Products : android- EPSS Score: %0.03
- Published: May. 16, 2017
- Modified: Apr. 20, 2025
-
4.9
MEDIUMCVE-2017-10375
Vulnerability in the Oracle Hospitality Guest Access component of Oracle Hospitality Applications (subcomponent: Base). Supported versions that are affected are 4.2.0 and 4.2.1. Easily exploitable vulnerability allows low privileged attacker with network ... Read more
Affected Products : hospitality_guest_access- EPSS Score: %0.18
- Published: Oct. 19, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2017-10736
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .rle file, related to a "User Mode Write AV starting at msvcrt!_VEC_memzero+0x000000000000006a."... Read more
- EPSS Score: %0.06
- Published: Jul. 05, 2017
- Modified: Apr. 20, 2025
-
7.8
HIGHCVE-2017-10734
IrfanView version 4.44 (32bit) might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to an "Invalid Handle starting at wow64!Wow64NotifyDebugger+0x000000000000001d."... Read more
Affected Products : irfanview- EPSS Score: %0.11
- Published: Jul. 05, 2017
- Modified: Apr. 20, 2025
-
6.1
MEDIUMCVE-2017-10701
Cross site scripting (XSS) vulnerability in SAP Enterprise Portal 7.50 allows remote attackers to inject arbitrary web script or HTML, aka SAP Security Notes 2469860, 2471209, and 2488516.... Read more
Affected Products : enterprise_portal- EPSS Score: %0.51
- Published: Sep. 29, 2017
- Modified: Apr. 20, 2025
-
7.5
HIGHCVE-2017-10679
Piwigo through 2.9.1 allows remote attackers to obtain sensitive information about the descriptive name of a permalink by examining the redirect URL that is returned in a request for the permalink ID number of a private album. The permalink ID numbers are... Read more
Affected Products : piwigo- EPSS Score: %0.32
- Published: Jun. 29, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2017-10670
An XML External Entity (XXE) issue exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 (Java) and OSCI Transport Library 1.6 (.NET), exploitable by sending a crafted standard-conforming OSCI message from within the infrastructure.... Read more
Affected Products : osci_transport_library- EPSS Score: %0.37
- Published: Jun. 30, 2017
- Modified: Apr. 20, 2025
-
6.4
MEDIUMCVE-2017-10420
Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: Leisure). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerability allows low privileged attacker with network a... Read more
Affected Products : hospitality_suite8- EPSS Score: %0.29
- Published: Oct. 19, 2017
- Modified: Apr. 20, 2025
-
8.4
HIGHCVE-2017-10398
Vulnerability in the Oracle Hospitality Cruise Fleet Management component of Oracle Hospitality Applications (subcomponent: BaseMasterPage). The supported version that is affected is 9.0.2.0. Easily exploitable vulnerability allows low privileged attacker... Read more
Affected Products : hospitality_cruise_fleet_management- EPSS Score: %0.10
- Published: Oct. 19, 2017
- Modified: Apr. 20, 2025
-
9.3
HIGHCVE-2014-9960
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.... Read more
Affected Products : android- EPSS Score: %0.06
- Published: Jun. 13, 2017
- Modified: Apr. 20, 2025
-
9.3
HIGHCVE-2014-9950
In Core Kernel in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.... Read more
Affected Products : android- EPSS Score: %0.03
- Published: Jun. 06, 2017
- Modified: Apr. 20, 2025
-
9.3
HIGHCVE-2014-9945
In TrustZone in all Android releases from CAF using the Linux kernel, an Improper Authorization vulnerability could potentially exist.... Read more
Affected Products : android- EPSS Score: %0.03
- Published: Jun. 06, 2017
- Modified: Apr. 20, 2025
-
7.5
HIGHCVE-2017-10373
Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: Health Center). Supported versions that are affected are 8.55 and 8.56. Easily exploitable vulnerability allows unauthenticated attacker with ... Read more
Affected Products : peoplesoft_enterprise_peopletools- EPSS Score: %0.63
- Published: Oct. 19, 2017
- Modified: Apr. 20, 2025