Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-07-17 CVE-2017-11399 Out-of-bounds Read vulnerability in Ffmpeg
Integer overflow in the ape_decode_frame function in libavcodec/apedec.c in FFmpeg 2.4 through 3.3.2 allows remote attackers to cause a denial of service (out-of-array access and application crash) or possibly have unspecified other impact via a crafted APE file.
local
low complexity
ffmpeg CWE-125
7.8
2017-07-17 CVE-2017-11361 Improper Privilege Management vulnerability in Intenogroup Inteno Router Firmware
Inteno routers have a JUCI ACL misconfiguration that allows the "user" account to read files, write to files, and add root SSH keys via JSON commands to ubus.
network
low complexity
intenogroup CWE-269
8.8
2017-07-17 CVE-2017-10987 Out-of-bounds Read vulnerability in Freeradius
An FR-GV-304 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Buffer over-read in fr_dhcp_decode_suboptions()" and a denial of service.
network
low complexity
freeradius CWE-125
7.5
2017-07-17 CVE-2017-10986 Infinite Loop vulnerability in Freeradius
An FR-GV-303 issue in FreeRADIUS 3.x before 3.0.15 allows "DHCP - Infinite read in dhcp_attr2vp()" and a denial of service.
network
low complexity
freeradius CWE-835
7.5
2017-07-17 CVE-2017-10985 Infinite Loop vulnerability in Freeradius
An FR-GV-302 issue in FreeRADIUS 3.x before 3.0.15 allows "Infinite loop and memory exhaustion with 'concat' attributes" and a denial of service.
network
low complexity
freeradius CWE-835
7.5
2017-07-17 CVE-2017-10983 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freeradius
An FR-GV-206 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "DHCP - Read overflow when decoding option 63" and a denial of service.
network
low complexity
freeradius CWE-119
7.5
2017-07-17 CVE-2017-10982 Out-of-bounds Read vulnerability in Freeradius
An FR-GV-205 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Buffer over-read in fr_dhcp_decode_options()" and a denial of service.
network
low complexity
freeradius CWE-125
7.5
2017-07-17 CVE-2017-10981 Missing Release of Resource after Effective Lifetime vulnerability in Freeradius
An FR-GV-204 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in fr_dhcp_decode()" and a denial of service.
network
low complexity
freeradius CWE-772
7.5
2017-07-17 CVE-2017-10980 Missing Release of Resource after Effective Lifetime vulnerability in Freeradius
An FR-GV-203 issue in FreeRADIUS 2.x before 2.2.10 allows "DHCP - Memory leak in decode_tlv()" and a denial of service.
network
low complexity
freeradius CWE-772
7.5
2017-07-17 CVE-2017-10978 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An FR-GV-201 issue in FreeRADIUS 2.x before 2.2.10 and 3.x before 3.0.15 allows "Read / write overflow in make_secret()" and a denial of service.
network
low complexity
freeradius debian redhat CWE-119
7.5