Vulnerabilities > Debian > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2017-3463 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges).
network
low complexity
oracle debian
4.9
4.9
2017-04-24 CVE-2017-3462 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges).
network
low complexity
oracle debian
4.9
4.9
2017-04-24 CVE-2017-3461 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges).
network
low complexity
oracle debian
4.9
4.9
2017-04-24 CVE-2017-3456 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
network
low complexity
oracle debian mariadb redhat
4.9
4.9
2017-04-24 CVE-2017-3453 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle debian mariadb redhat
6.5
6.5
2017-04-24 CVE-2017-3305 Cleartext Transmission of Sensitive Information vulnerability in multiple products
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: C API).
network
high complexity
oracle debian CWE-319
5.3
5.3
2017-04-20 CVE-2017-7718 Out-of-bounds Read vulnerability in multiple products
hw/display/cirrus_vga_rop.h in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (out-of-bounds read and QEMU process crash) via vectors related to copying VGA data via the cirrus_bitblt_rop_fwd_transp_ and cirrus_bitblt_rop_fwd_ functions.
local
low complexity
qemu debian CWE-125
5.5
5.5
2017-04-18 CVE-2017-7943 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
6.5
2017-04-18 CVE-2017-7941 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
network
low complexity
imagemagick debian CWE-772
6.5
6.5
2017-04-13 CVE-2015-8345 Resource Management Errors vulnerability in multiple products
The eepro100 emulator in QEMU qemu-kvm blank allows local guest users to cause a denial of service (application crash and infinite loop) via vectors involving the command block list.
local
low complexity
qemu debian CWE-399
6.5
6.5