Vulnerabilities (CVE)

Filtered by CWE-20
Total 10073 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-9022 3 Canonical, Debian, Strongswan 3 Ubuntu Linux, Debian Linux, Strongswan 2024-11-21 5.0 MEDIUM 7.5 HIGH
The gmp plugin in strongSwan before 5.5.3 does not properly validate RSA public keys before calling mpz_powm_sec, which allows remote peers to cause a denial of service (floating point exception and process crash) via a crafted certificate.
CVE-2017-8994 1 Hp 1 Operations Orchestration 2024-11-21 7.5 HIGH 9.8 CRITICAL
A input validation vulnerability in HPE Operations Orchestration product all versions prior to 10.80, allows for the execution of code remotely.
CVE-2017-8983 1 Hp 1 Intelligent Management Center 2024-11-21 9.0 HIGH 8.8 HIGH
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P4 was found.
CVE-2017-8981 1 Hp 1 Intelligent Management Center 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0506 was found.
CVE-2017-8977 1 Hp 1 Moonshot Provisioning Manager Appliance 2024-11-21 8.5 HIGH 9.1 CRITICAL
A Remote Denial of Service vulnerability in Hewlett Packard Enterprise Moonshot Provisioning Manager Appliance version v1.20 was found.
CVE-2017-8976 1 Hp 1 Moonshot Provisioning Manager Appliance 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in Hewlett Packard Enterprise Moonshot Provisioning Manager Appliance version v1.20 was found.
CVE-2017-8975 1 Hp 1 Moonshot Provisioning Manager Appliance 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in Hewlett Packard Enterprise Moonshot Provisioning Manager Appliance version v1.20 was found.
CVE-2017-8973 1 Hp 1 Matrix Operating Environment 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
An improper input validation vulnerability in HPE Matrix Operating Environment version 7.6 LR1 was found.
CVE-2017-8972 1 Hp 1 Matrix Operating Environment 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
A clickjacking vulnerability in HPE Matrix Operating Environment version 7.6 LR1 was found.
CVE-2017-8971 1 Hp 1 Matrix Operating Environment 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
A clickjacking vulnerability in HPE Matrix Operating Environment version 7.6 LR1 was found.
CVE-2017-8969 1 Hp 1 Insight Control 2024-11-21 3.5 LOW 5.7 MEDIUM
An improper input validation vulnerability in HPE Insight Control version 7.6 LR1 was found.
CVE-2017-8957 1 Hp 1 Intelligent Management Center 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2 was found.
CVE-2017-8956 1 Hp 1 Intelligent Management Center 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
CVE-2017-8955 1 Hp 1 Intelligent Management Center 2024-11-21 7.8 HIGH 7.5 HIGH
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2 was found.
CVE-2017-8954 1 Hp 1 Intelligent Management Center 2024-11-21 10.0 HIGH 9.8 CRITICAL
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.2 was found.
CVE-2017-8934 1 Pcmanfm Project 1 Pcmanfm 2024-11-21 2.1 LOW 5.5 MEDIUM
PCManFM 1.2.5 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (application unavailability).
CVE-2017-8933 1 Libmenu-cache Project 1 Libmenu-cache 2024-11-21 2.1 LOW 3.3 LOW
Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (menu unavailability).
CVE-2017-8849 2 Debian, Smb4k Project 2 Debian Linux, Smb4k 2024-11-21 7.2 HIGH 7.8 HIGH
smb4k before 2.0.1 allows local users to gain root privileges by leveraging failure to verify arguments to the mount helper DBUS service.
CVE-2017-8815 2 Debian, Mediawiki 2 Debian Linux, Mediawiki 2024-11-21 5.0 MEDIUM 7.5 HIGH
The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attribute injection attacks via glossary rules.
CVE-2017-8814 2 Debian, Mediawiki 2 Debian Linux, Mediawiki 2024-11-21 5.0 MEDIUM 7.5 HIGH
The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attackers to replace text inside tags via a rule definition followed by "a lot of junk."