Vulnerabilities > Improper Handling of Exceptional Conditions
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-04-19 | CVE-2018-0272 | Improper Handling of Exceptional Conditions vulnerability in Cisco Firepower 6.2.1/6.2.2.1 A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. | 4.3 |
| 2018-03-28 | CVE-2018-0155 | Improper Handling of Exceptional Conditions vulnerability in Cisco IOS and IOS XE A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. | 7.8 |
| 2018-03-14 | CVE-2018-0934 | Improper Handling of Exceptional Conditions vulnerability in Microsoft Chakracore and Edge ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". | 7.6 |
| 2018-02-02 | CVE-2017-14178 | Improper Handling of Exceptional Conditions vulnerability in Snapcraft Snapd In snapd 2.27 through 2.29.2 the 'snap logs' command could be made to call journalctl without match arguments and therefore allow unprivileged, unauthenticated users to bypass systemd-journald's access restrictions. | 5.0 |
| 2018-01-12 | CVE-2017-13199 | Improper Handling of Exceptional Conditions vulnerability in Google Android 8.0/8.1 In Bitmap.ccp if Bitmap.nativeCreate fails an out of memory exception is not thrown leading to a java.io.IOException later on. | 7.8 |
| 2017-11-13 | CVE-2017-0904 | Improper Handling of Exceptional Conditions vulnerability in Private Address Check Project Private Address Check 0.1.0/0.2.0/0.3.0 The private_address_check ruby gem before 0.4.0 is vulnerable to a bypass due to use of Ruby's Resolv.getaddresses method, which is OS-dependent and should not be relied upon for security measures, such as when used to blacklist private network addresses to prevent server-side request forgery. | 6.8 |
| 2017-09-08 | CVE-2017-0762 | Improper Handling of Exceptional Conditions vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libhevc). | 9.3 |
| 2017-09-08 | CVE-2017-0760 | Improper Handling of Exceptional Conditions vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libstagefright). | 9.3 |
| 2017-09-08 | CVE-2017-0759 | Improper Handling of Exceptional Conditions vulnerability in Google Android A remote code execution vulnerability in the Android media framework (libstagefright). | 9.3 |
| 2017-07-20 | CVE-2017-11472 | Improper Handling of Exceptional Conditions vulnerability in Linux Kernel The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism (in the kernel through 4.9) via a crafted ACPI table. | 3.6 |