Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-20 | CVE-2017-14963 | Improper Input Validation vulnerability in Ikarussecurity Anti.Virus 2.16.15/2.16.7 In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x83000058. | 7.8 |
| 2017-12-20 | CVE-2017-14962 | Out-of-bounds Write vulnerability in Ikarussecurity Anti.Virus 2.16.15/2.16.7 In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Out of Bounds Write vulnerability because of not validating input values from IOCtl 0x83000058, a related issue to CVE-2017-17112. | 7.8 |
| 2017-12-20 | CVE-2017-17476 | Information Exposure vulnerability in multiple products Open Ticket Request System (OTRS) 4.0.x before 4.0.28, 5.0.x before 5.0.26, and 6.0.x before 6.0.3, when cookie support is disabled, might allow remote attackers to hijack web sessions and consequently gain privileges via a crafted email. | 8.8 |
| 2017-12-20 | CVE-2017-4943 | Out-of-bounds Write vulnerability in VMWare Vcenter Server 6.5 VMware vCenter Server Appliance (vCSA) (6.5 before 6.5 U1d) contains a local privilege escalation vulnerability via the 'showlog' plugin. | 7.8 |
| 2017-12-20 | CVE-2017-4941 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in VMWare Esxi, Fusion and Workstation VMware ESXi (6.0 before ESXi600-201711101-SG, 5.5 ESXi550-201709101-SG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a stack overflow via a specific set of VNC packets. | 8.8 |
| 2017-12-20 | CVE-2017-4933 | Out-of-bounds Write vulnerability in VMWare Esxi, Fusion and Workstation PRO VMware ESXi (6.5 before ESXi650-201710401-BG), Workstation (12.x before 12.5.8), and Fusion (8.x before 8.5.9) contain a vulnerability that could allow an authenticated VNC session to cause a heap overflow via a specific set of VNC packets resulting in heap corruption. | 8.8 |
| 2017-12-20 | CVE-2017-16587 | Use After Free vulnerability in Foxitsoftware Foxit Reader 8.3.2.25013 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. | 8.8 |
| 2017-12-20 | CVE-2017-16586 | Use After Free vulnerability in Foxitsoftware Foxit Reader 8.3.2.25013 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. | 8.8 |
| 2017-12-20 | CVE-2017-16585 | Use After Free vulnerability in Foxitsoftware Foxit Reader 8.3.2.25013 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. | 8.8 |
| 2017-12-20 | CVE-2017-16583 | Use After Free vulnerability in Foxitsoftware Foxit Reader 8.3.2.25013 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. | 8.8 |