Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-06 | CVE-2017-0664 | Unspecified vulnerability in Google Android A elevation of privilege vulnerability in the Android framework. | 7.8 |
| 2017-07-06 | CVE-2017-9524 | Improper Input Validation vulnerability in multiple products The qemu-nbd server in QEMU (aka Quick Emulator), when built with the Network Block Device (NBD) Server support, allows remote attackers to cause a denial of service (segmentation fault and server crash) by leveraging failure to ensure that all initialization occurs before talking to a client in the nbd_negotiate function. | 7.5 |
| 2017-07-06 | CVE-2017-8290 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Teamspeak Client and Teamspeak Server A potential Buffer Overflow Vulnerability (from a BB Code handling issue) has been identified in TeamSpeak Server version 3.0.13.6 (08/11/2016 09:48:33), it enables the users to Crash any WINDOWS Client that clicked into a Vulnerable Channel of a TeamSpeak Server. | 7.5 |
| 2017-07-06 | CVE-2017-10976 | Out-of-bounds Read vulnerability in Swftools 0.9.2 When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c. | 7.5 |
| 2017-07-06 | CVE-2017-10971 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in X.Org Xorg-Server In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of X Events. | 8.8 |
| 2017-07-06 | CVE-2016-10396 | Algorithmic Complexity vulnerability in Ipsec-Tools 0.8.2 The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. | 7.5 |
| 2017-07-06 | CVE-2017-6712 | OS Command Injection vulnerability in Cisco Elastic Services Controller A vulnerability in certain commands of Cisco Elastic Services Controller could allow an authenticated, remote attacker to elevate privileges to root and run dangerous commands on the server. | 8.8 |
| 2017-07-06 | CVE-2017-6707 | OS Command Injection vulnerability in Cisco Staros A vulnerability in the CLI command-parsing code of the Cisco StarOS operating system for Cisco ASR 5000 Series 11.0 through 21.0, 5500 Series, and 5700 Series devices and Cisco Virtualized Packet Core (VPC) Software could allow an authenticated, local attacker to break from the StarOS CLI of an affected system and execute arbitrary shell commands as a Linux root user on the system, aka Command Injection. | 8.2 |
| 2017-07-05 | CVE-2017-9927 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b5fe." | 8.8 |
| 2017-07-05 | CVE-2017-9926 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Swftools 201304091007 In SWFTools 2013-04-09-1007 on Windows, png2swf allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted file, related to a "Read Access Violation starting at image00000000_00400000+0x000000000001b596." | 8.8 |