Total
11965 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-7768 | 1 Konicaminolta | 1 Ftp Utility | 2017-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in Konica Minolta FTP Utility 1.0 allows remote attackers to execute arbitrary code via a long CWD command. | |||||
| CVE-2015-8636 | 5 Adobe, Apple, Google and 2 more | 9 Air, Air Sdk, Air Sdk \& Compiler and 6 more | 2017-09-10 | 9.3 HIGH | 8.8 HIGH |
| Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe AIR SDK & Compiler before 20.0.0.233 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-8459, CVE-2015-8460, and CVE-2015-8645. | |||||
| CVE-2016-1716 | 1 Apple | 1 Mac Os X | 2017-09-10 | 7.2 HIGH | 7.8 HIGH |
| AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors. | |||||
| CVE-2016-0951 | 3 Adobe, Apple, Microsoft | 4 Bridge Cc, Photoshop Cc, Mac Os X and 1 more | 2017-09-10 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0952 and CVE-2016-0953. | |||||
| CVE-2016-0952 | 3 Adobe, Apple, Microsoft | 4 Bridge Cc, Photoshop Cc, Mac Os X and 1 more | 2017-09-10 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0951 and CVE-2016-0953. | |||||
| CVE-2016-1503 | 2 Dhcpcd Project, Google | 2 Dhcpcd, Android | 2017-09-10 | 10.0 HIGH | 9.8 CRITICAL |
| dhcpcd before 6.10.0, as used in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 and other products, mismanages option lengths, which allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a malformed DHCP response, aka internal bug 26461634. | |||||
| CVE-2016-1504 | 1 Dhcpcd Project | 1 Dhcpcd | 2017-09-10 | 5.0 MEDIUM | 7.5 HIGH |
| dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length. | |||||
| CVE-2017-6983 | 1 Apple | 2 Iphone Os, Mac Os X | 2017-09-09 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. | |||||
| CVE-2017-12840 | 1 Deslock | 1 Deslock\+ | 2017-09-08 | 7.2 HIGH | 7.8 HIGH |
| A kernel driver, namely DLMFENC.sys, bundled with the DESLock+ client application 4.8.16 and earlier contains a locally exploitable heap based buffer overflow in the handling of an IOCTL message of type 0x0FA4204. The vulnerability is present due to the kernel driver failing to allocate sufficient memory on the kernel heap to contain a user supplied string as such the string is copied into a buffer of constant size (0x1000-bytes) and thus an overflow condition results. Access to the kernel driver is permitted through an obfuscated interface whereby bytes of user supplied message are "authenticated" via an obfuscation routine employing a linear equation. | |||||
| CVE-2014-100014 | 1 Solidworks | 1 Product Data Management | 2017-09-08 | 7.5 HIGH | N/A |
| Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM 2014 SP2 allow remote attackers to execute arbitrary code via a long string in a (1) 2001, (2) 2002, or (3) 2003 opcode to port 3000. | |||||
| CVE-2014-10031 | 1 Qualcomm | 1 Eudora Worldmail | 2017-09-08 | 7.5 HIGH | N/A |
| Buffer overflow in the IMAPd service in Qualcomm Eudora WorldMail 9.0.333.0 allows remote attackers to execute arbitrary code via a long string in a UID command. | |||||
| CVE-2016-1744 | 1 Apple | 1 Mac Os X | 2017-09-08 | 9.3 HIGH | 7.8 HIGH |
| The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1743. | |||||
| CVE-2014-8830 | 1 Apple | 1 Mac Os X | 2017-09-08 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in SceneKit in Apple OS X before 10.10.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted accessor element in a Collada file. | |||||
| CVE-2016-1768 | 1 Apple | 1 Mac Os X | 2017-09-08 | 6.8 MEDIUM | 7.8 HIGH |
| QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix image, a different vulnerability than CVE-2016-1767. | |||||
| CVE-2016-1743 | 1 Apple | 1 Mac Os X | 2017-09-08 | 9.3 HIGH | 7.8 HIGH |
| The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1744. | |||||
| CVE-2015-0323 | 4 Adobe, Apple, Linux and 1 more | 4 Flash Player, Mac Os X, Linux Kernel and 1 more | 2017-09-08 | 10.0 HIGH | N/A |
| Heap-based buffer overflow in Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-0327. | |||||
| CVE-2016-0954 | 1 Adobe | 1 Digital Editions | 2017-09-08 | 10.0 HIGH | 9.8 CRITICAL |
| Adobe Digital Editions before 4.5.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. | |||||
| CVE-2014-8829 | 1 Apple | 1 Mac Os X | 2017-09-08 | 7.5 HIGH | N/A |
| SceneKit in Apple OS X before 10.10.2 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app. | |||||
| CVE-2016-1749 | 1 Apple | 1 Mac Os X | 2017-09-08 | 9.3 HIGH | 7.8 HIGH |
| IOUSBFamily in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. | |||||
| CVE-2014-9112 | 2 Debian, Gnu | 2 Debian Linux, Cpio | 2017-09-08 | 5.0 MEDIUM | N/A |
| Heap-based buffer overflow in the process_copy_in function in GNU Cpio 2.11 allows remote attackers to cause a denial of service via a large block value in a cpio archive. | |||||