Vulnerabilities > 7PK - Security Features
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-27 | CVE-2017-2748 | 7PK - Security Features vulnerability in HP Isaac Mizrahi Smartwatch A potential security vulnerability caused by the use of insecure (http) transactions during login has been identified with early versions of the Isaac Mizrahi Smartwatch mobile app. | 5.0 |
| 2019-01-11 | CVE-2017-2411 | 7PK - Security Features vulnerability in Apple Iphone OS In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS. | 4.3 |
| 2019-01-11 | CVE-2016-4642 | 7PK - Security Features vulnerability in Apple TV, Iphone OS and mac OS In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. | 4.3 |
| 2018-12-31 | CVE-2018-6336 | 7PK - Security Features vulnerability in Linuxfoundation Osquery An issue was discovered in osquery. | 6.8 |
| 2018-10-24 | CVE-2018-17935 | 7PK - Security Features vulnerability in Telecrane products All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. | 4.8 |
| 2018-08-28 | CVE-2014-6050 | 7PK - Security Features vulnerability in PHPmyfaq phpMyFAQ before 2.8.13 allows remote attackers to bypass the CAPTCHA protection mechanism by replaying the request. | 5.0 |
| 2018-06-11 | CVE-2016-9900 | 7PK - Security Features vulnerability in multiple products External resources that should be blocked when loaded by SVG images can bypass security restrictions through the use of "data:" URLs. | 5.0 |
| 2018-06-11 | CVE-2016-9895 | 7PK - Security Features vulnerability in multiple products Event handlers on "marquee" elements were executed despite a strict Content Security Policy (CSP) that disallowed inline JavaScript. | 4.3 |
| 2018-06-11 | CVE-2016-9072 | 7PK - Security Features vulnerability in Mozilla Firefox When a new Firefox profile is created on 64-bit Windows installations, the sandbox for 64-bit NPAPI plugins is not enabled by default. | 5.0 |
| 2018-06-11 | CVE-2016-9071 | 7PK - Security Features vulnerability in Mozilla Firefox Content Security Policy combined with HTTP to HTTPS redirection can be used by malicious server to verify whether a known site is within a user's browser history. | 5.0 |