Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-12-27	CVE-2017-17877	Unspecified vulnerability in Valvesoftware Steam Link Firmware An issue was discovered in Valve Steam Link build 643. network low complexity valvesoftware critical	9.8
2017-12-27	CVE-2017-17875	SQL Injection vulnerability in Jextn FAQ PRO 4.0.0 The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the id parameter in a view=category action. network low complexity jextn CWE-89 critical	9.8
2017-12-27	CVE-2017-17873	SQL Injection vulnerability in Vanguard Project Marketplace Digital products PHP 1.4.0 Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI. network low complexity vanguard-project CWE-89 critical	9.8
2017-12-27	CVE-2017-17872	SQL Injection vulnerability in Jextn Video Gallery 3.0.5 The JEXTN Video Gallery extension 3.0.5 for Joomla! has SQL Injection via the id parameter in a view=category action. network low complexity jextn CWE-89 critical	9.8
2017-12-27	CVE-2017-17871	SQL Injection vulnerability in Jextn Question and Answer 3.1.0 The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter. network low complexity jextn CWE-89 critical	9.8
2017-12-27	CVE-2017-17870	SQL Injection vulnerability in Jbuildozer 1.4.1 The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action. network low complexity jbuildozer CWE-89 critical	9.8
2017-12-27	CVE-2017-17849	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Getgosoft Getgo Download Manager A buffer overflow vulnerability in GetGo Download Manager 5.3.0.2712 and earlier could allow remote HTTP servers to execute arbitrary code on NAS devices via a long response. network low complexity getgosoft CWE-119 critical	9.8
2017-12-22	CVE-2017-16727	Weak Password Requirements vulnerability in Moxa Nport W2150A Firmware and Nport W2250A Firmware A Credentials Management issue was discovered in Moxa NPort W2150A versions prior to 1.11, and NPort W2250A versions prior to 1.11. network low complexity moxa CWE-521 critical	9.1
2017-12-21	CVE-2017-17033	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qnap QTS A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices. network low complexity qnap CWE-119 critical	9.8
2017-12-21	CVE-2017-17032	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qnap QTS A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices. network low complexity qnap CWE-119 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical