Vulnerabilities > Microsoft > Windows > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-22 | CVE-2017-6270 | Divide By Zero vulnerability in Nvidia GPU Driver NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where untrusted user input is used as a divisor without validation during a calculation which may lead to a potential divide by zero and denial of service. | 4.9 |
| 2017-09-22 | CVE-2017-6267 | Infinite Loop vulnerability in Nvidia GPU Driver NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service. | 4.9 |
| 2017-09-22 | CVE-2017-6266 | Unspecified vulnerability in Nvidia GPU Driver NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service. | 4.9 |
| 2017-09-18 | CVE-2017-14580 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.41 XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000000000870f." | 4.6 |
| 2017-09-18 | CVE-2017-14541 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.40 XnView Classic for Windows Version 2.40 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .svg file, related to "Data from Faulting Address controls Branch Selection starting at CADImage+0x000000000001f23e." | 4.6 |
| 2017-09-18 | CVE-2017-14538 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.40 XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to "Data from Faulting Address controls subsequent Write Address starting at jbig2dec+0x0000000000008823." | 4.6 |
| 2017-09-12 | CVE-2017-1520 | Improper Authentication vulnerability in IBM DB2 and DB2 Connect IBM DB2 9.7, 10,1, 10.5, and 11.1 is vulnerable to an unauthorized command that allows the database to be activated when authentication type is CLIENT. | 4.3 |
| 2017-09-12 | CVE-2017-1519 | Improper Input Validation vulnerability in IBM DB2 and DB2 Connect IBM DB2 10.5 and 11.1 contains a denial of service vulnerability. | 4.3 |
| 2017-09-11 | CVE-2017-14285 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.40 XnView Classic for Windows Version 2.40 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77400000!RtlInterlockedPopEntrySList+0x000000000000039b." | 4.6 |
| 2017-09-11 | CVE-2017-14284 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xnview 2.40 XnView Classic for Windows Version 2.40 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .jb2 file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77400000!RtlGetCurrentDirectory_U+0x000000000000016c." | 4.6 |