Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-30 | CVE-2017-1440 | Code Injection vulnerability in IBM Emptoris Services Procurement IBM Emptoris Services Procurement 10.0.0.5 could allow a remote attacker to include arbitrary files. | 8.8 |
| 2017-08-30 | CVE-2017-14032 | Improper Authentication vulnerability in ARM Mbed TLS ARM mbed TLS before 1.3.21 and 2.x before 2.1.9, if optional authentication is configured, allows remote attackers to bypass peer authentication via an X.509 certificate chain with many intermediates. | 8.1 |
| 2017-08-30 | CVE-2017-11157 | Untrusted Search Path vulnerability in Synology Cloud Station Backup Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Backup before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory. | 7.8 |
| 2017-08-30 | CVE-2017-12735 | Unspecified vulnerability in Siemens Logo! 8 BM Firmware A vulnerability has been identified in LOGO! 8 BM (incl. | 7.4 |
| 2017-08-30 | CVE-2017-12734 | Unspecified vulnerability in Siemens Logo!8 BM Fs-05 Firmware 1.81.1 A vulnerability has been identified in LOGO! 8 BM (incl. | 7.5 |
| 2017-08-30 | CVE-2017-12069 | XXE vulnerability in multiple products An XXE vulnerability has been identified in OPC Foundation UA .NET Sample Code before 2017-03-21 and Local Discovery Server (LDS) before 1.03.367. | 8.2 |
| 2017-08-30 | CVE-2017-12717 | Uncontrolled Search Path Element vulnerability in Advantech Webaccess An Uncontrolled Search Path Element issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 7.8 |
| 2017-08-30 | CVE-2017-12713 | Incorrect Permission Assignment for Critical Resource vulnerability in Advantech Webaccess An Incorrect Permission Assignment for Critical Resource issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 7.8 |
| 2017-08-30 | CVE-2017-12711 | Unspecified vulnerability in Advantech Webaccess An Incorrect Privilege Assignment issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 7.8 |
| 2017-08-30 | CVE-2017-12710 | SQL Injection vulnerability in Advantech Webaccess A SQL Injection issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 7.5 |