Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-09-21 | CVE-2017-14630 | Integer Overflow or Wraparound vulnerability in Sam2P Project Sam2P 0.49.3 In sam2p 0.49.3, an integer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp, leading to an invalid write operation. | 7.5 |
| 2017-09-21 | CVE-2017-14628 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Sam2P Project Sam2P 0.49.3 In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file in_pcx.cpp. | 7.5 |
| 2017-09-21 | CVE-2017-14626 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c. | 7.5 |
| 2017-09-21 | CVE-2017-14625 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c. | 7.5 |
| 2017-09-21 | CVE-2017-14624 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c. | 7.5 |
| 2017-09-21 | CVE-2017-12255 | Improper Input Validation vulnerability in Cisco Unified Computing System 1.5(1C) A vulnerability in the CLI of Cisco UCS Central Software could allow an authenticated, local attacker to gain shell access. | 7.2 |
| 2017-09-21 | CVE-2017-12219 | Unspecified vulnerability in Cisco products A vulnerability in the handling of IP fragments for the Cisco Small Business SPA300, SPA500, and SPA51x Series IP Phones could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. | 7.8 |
| 2017-09-21 | CVE-2017-12215 | Improper Input Validation vulnerability in Cisco Asyncos A vulnerability in the email message filtering feature of Cisco AsyncOS Software for the Cisco Email Security Appliance could allow an unauthenticated, remote attacker to cause an affected device to run out of memory and stop scanning and forwarding email messages. | 7.8 |
| 2017-09-20 | CVE-2017-14623 | Improper Authentication vulnerability in Go-Ldap Project Ldap 2.5.0 In the ldap.v2 (aka go-ldap) package through 2.5.0 for Go, an attacker may be able to login with an empty password. | 8.1 |
| 2017-09-20 | CVE-2017-14616 | Resource Exhaustion vulnerability in Watchguard Fireware An FBX-5312 issue was discovered in WatchGuard Fireware before 12.0. | 7.8 |