Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-30 | CVE-2017-12704 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Advantech Webaccess A heap-based buffer overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 8.8 |
| 2017-08-30 | CVE-2017-12702 | Use of Externally-Controlled Format String vulnerability in Advantech Webaccess An Externally Controlled Format String issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. | 8.8 |
| 2017-08-30 | CVE-2017-13780 | Path Traversal vulnerability in Eyesofnetwork 5.10 The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows directory traversal attacks for reading arbitrary files via the module/admin_conf/download.php file parameter. | 7.5 |
| 2017-08-30 | CVE-2016-4462 | Improper Input Validation vulnerability in Apache Ofbiz By manipulating the URL parameter externalLoginKey, a malicious, logged in user could pass valid Freemarker directives to the Template Engine that are reflected on the webpage; a specially crafted Freemarker template could be used for remote code execution. | 8.8 |
| 2017-08-30 | CVE-2017-3163 | Path Traversal vulnerability in Apache Solr When using the Index Replication feature, Apache Solr nodes can pull index files from a master/leader node using an HTTP API which accepts a file name. | 7.5 |
| 2017-08-30 | CVE-2017-13774 | Information Exposure vulnerability in Hikvision Ivms-4200 2.6.2.6 Hikvision iVMS-4200 devices before v2.6.2.7 allow local users to generate password-recovery codes via unspecified vectors. | 7.8 |
| 2017-08-30 | CVE-2017-13767 | Infinite Loop vulnerability in Wireshark In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. | 7.5 |
| 2017-08-30 | CVE-2017-13766 | Out-of-bounds Write vulnerability in Wireshark In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. | 7.5 |
| 2017-08-30 | CVE-2017-13765 | Out-of-bounds Read vulnerability in multiple products In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the IrCOMM dissector has a buffer over-read and application crash. | 7.5 |
| 2017-08-30 | CVE-2017-13764 | NULL Pointer Dereference vulnerability in Wireshark 2.4.0 In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. | 7.5 |