Vulnerabilities > Channel and Path Errors

DATE CVE VULNERABILITY TITLE RISK
2019-09-06 CVE-2019-9855 Channel and Path Errors vulnerability in multiple products
LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from.
network
low complexity
libreoffice opensuse CWE-417
critical
9.8
2019-07-30 CVE-2019-14318 Channel and Path Errors vulnerability in Cryptopp Crypto++
Crypto++ 8.3.0 and earlier contains a timing side channel in ECDSA signature generation.
network
cryptopp CWE-417
4.3
2018-08-30 CVE-2018-14900 Channel and Path Errors vulnerability in Epson Wf-2750 Firmware Jp02L2
On EPSON WF-2750 printers with firmware JP02I2, there is no filtering of print jobs.
network
low complexity
epson CWE-417
5.0
2018-08-10 CVE-2018-6556 Channel and Path Errors vulnerability in multiple products
lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path.
2.1
2018-07-06 CVE-2018-8929 Channel and Path Errors vulnerability in Synology SSL VPN Client
Improper restriction of communication channel to intended endpoints vulnerability in HTTP daemon in Synology SSL VPN Client before 1.2.4-0224 allows remote attackers to conduct man-in-the-middle attacks via a crafted payload.
network
synology CWE-417
6.8
2018-06-11 CVE-2017-7760 Channel and Path Errors vulnerability in Mozilla Firefox and Firefox ESR
The Mozilla Windows updater modifies some files to be updated by reading the original file and applying changes to it.
local
low complexity
mozilla microsoft CWE-417
4.6
2018-04-12 CVE-2018-5254 Channel and Path Errors vulnerability in Arista EOS
Arista EOS before 4.20.2F allows remote BGP peers to cause a denial of service (Rib agent restart) via a malformed path attribute in an UPDATE message.
network
low complexity
arista CWE-417
5.0
2018-04-04 CVE-2017-3969 Channel and Path Errors vulnerability in Mcafee Network Security Manager
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows man-in-the-middle attackers to decrypt messages via an inadequate implementation of SSL.
network
high complexity
mcafee CWE-417
5.9
2017-12-03 CVE-2017-8822 Channel and Path Errors vulnerability in multiple products
In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, relays (that have incompletely downloaded descriptors) can pick themselves in a circuit path, leading to a degradation of anonymity, aka TROVE-2017-012.
4.3
2017-11-22 CVE-2017-2712 Channel and Path Errors vulnerability in Huawei S3300 Firmware V100R006C05
S3300 V100R006C05 have an Ethernet in the First Mile (EFM) flapping vulnerability due to the lack of type-length-value (TLV) consistency check.
network
low complexity
huawei CWE-417
5.0