Total
967 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-17532 | 1 Kiwi Project | 1 Kiwi | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
examples/framework/news/news3.py in Kiwi 1.9.22 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. | |||||
CVE-2017-1000493 | 1 Rocket.chat | 1 Rocket.chat | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
Rocket.Chat Server version 0.59 and prior is vulnerable to a NoSQL injection leading to administrator account takeover | |||||
CVE-2017-17790 | 1 Ruby-lang | 1 Ruby | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
The lazy_initialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernel#open, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a '|' character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input may be highly unlikely. | |||||
CVE-2017-5636 | 1 Apache | 1 Nifi | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In Apache NiFi before 0.7.2 and 1.x before 1.1.2 in a cluster environment, the proxy chain serialization/deserialization is vulnerable to an injection attack where a carefully crafted username could impersonate another user and gain their permissions on a replicated request to another node. | |||||
CVE-2017-14397 | 2 Anydesk, Microsoft | 2 Anydesk, Windows | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
AnyDesk before 3.6.1 on Windows has a DLL injection vulnerability. | |||||
CVE-2017-17511 | 2 Debian, Kildclient | 2 Debian Linux, Kildclient | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
KildClient 3.1.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, related to prefs.c and worldgui.c. | |||||
CVE-2017-17517 | 1 Sylpheed Project | 1 Sylpheed | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
libsylph/utils.c in Sylpheed through 3.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. | |||||
CVE-2017-15714 | 1 Apache | 1 Ofbiz | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
The BIRT plugin in Apache OFBiz 16.11.01 to 16.11.03 does not escape user input property passed. This allows for code injection by passing that code through the URL. For example by appending this code "__format=%27;alert(%27xss%27)" to the URL an alert window would execute. | |||||
CVE-2017-15708 | 2 Apache, Oracle | 3 Synapse, Financial Services Market Risk Measurement And Management, Peoplesoft Enterprise Peopletools | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
In Apache Synapse, by default no authentication is required for Java Remote Method Invocation (RMI). So Apache Synapse 3.0.1 or all previous releases (3.0.0, 2.1.0, 2.0.0, 1.2, 1.1.2, 1.1.1) allows remote code execution attacks that can be performed by injecting specially crafted serialized objects. And the presence of Apache Commons Collections 3.2.1 (commons-collections-3.2.1.jar) or previous versions in Synapse distribution makes this exploitable. To mitigate the issue, we need to limit RMI access to trusted users only. Further upgrading to 3.0.1 version will eliminate the risk of having said Commons Collection version. In Synapse 3.0.1, Commons Collection has been updated to 3.2.2 version. | |||||
CVE-2017-17521 | 1 Fontforge | 1 Fontforge | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
uiutil.c in FontForge through 20170731 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL, a different vulnerability than CVE-2017-17534. | |||||
CVE-2017-17531 | 1 Gnu | 1 Global | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
gozilla.c in GNU GLOBAL 4.8.6 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. | |||||
CVE-2013-4578 | 1 Oracle | 2 Jdk, Jre | 2023-12-10 | 5.0 MEDIUM | 5.3 MEDIUM |
jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation. | |||||
CVE-2016-2980 | 1 Ibm | 1 Sametime | 2023-12-10 | 6.8 MEDIUM | 6.3 MEDIUM |
The Sametime WebPlayer 8.5.2 and 9.0 is vulnerable to a script injection where a malicious site can inject their own script by exploiting a vulnerability in the way that the WebPlayer works. IBM X-Force ID: 113993. | |||||
CVE-2017-16766 | 1 Synology | 1 Diskstation Manager | 2023-12-10 | 6.4 MEDIUM | 6.5 MEDIUM |
An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option. | |||||
CVE-2017-1000453 | 1 Cmsmadesimple | 1 Cms Made Simple | 2023-12-10 | 7.5 HIGH | 9.8 CRITICAL |
CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution. | |||||
CVE-2016-3695 | 2 Linux, Redhat | 2 Linux Kernel, Enterprise Linux | 2023-12-10 | 2.1 LOW | 5.5 MEDIUM |
The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set. | |||||
CVE-2014-7952 | 1 Google | 1 Android | 2023-12-10 | 4.6 MEDIUM | 7.8 HIGH |
The backup mechanism in the adb tool in Android might allow attackers to inject additional applications (APKs) and execute arbitrary code by leveraging failure to filter application data streams. | |||||
CVE-2017-7459 | 1 Ntop | 1 Ntopng | 2023-12-10 | 5.0 MEDIUM | 7.5 HIGH |
ntopng before 3.0 allows HTTP Response Splitting. | |||||
CVE-2017-17528 | 1 Scummvm | 1 Scummvm | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
backends/platform/sdl/posix/posix.cpp in ScummVM 1.9.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. | |||||
CVE-2017-17512 | 1 Sensible-utils Project | 1 Sensible-utils | 2023-12-10 | 6.8 MEDIUM | 8.8 HIGH |
sensible-browser in sensible-utils before 0.0.11 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by a --proxy-pac-file argument. |