Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-06-21 CVE-2016-7508 SQL Injection vulnerability in Glpi-Project Glpi 0.90.4
Multiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authenticated remote attacker to execute arbitrary SQL commands by using a certain character when the database is configured to use Big5 Asian encoding.
network
high complexity
glpi-project CWE-89
7.5
2017-06-21 CVE-2017-7922 Improper Privilege Management vulnerability in Cambium Networks products
An Improper Privilege Management issue was discovered in Cambium Networks ePMP.
network
low complexity
cambium-networks CWE-269
7.6
2017-06-21 CVE-2017-6045 Information Exposure vulnerability in Trihedral Vtscada
An Information Exposure issue was discovered in Trihedral VTScada Versions prior to 11.2.26.
network
low complexity
trihedral CWE-200
7.5
2017-06-21 CVE-2017-6043 Resource Exhaustion vulnerability in Trihedral Vtscada
A Resource Consumption issue was discovered in Trihedral VTScada Versions prior to 11.2.26.
network
low complexity
trihedral CWE-400
7.5
2017-06-21 CVE-2017-2813 Integer Overflow or Wraparound vulnerability in Irfanview 4.44
An exploitable integer overflow vulnerability exists in the JPEG 2000 parser functionality of IrfanView 4.44.
local
low complexity
irfanview CWE-190
7.8
2017-06-21 CVE-2017-9774 Code Injection vulnerability in Horde Image API
Remote Code Execution was found in Horde_Image 2.x before 2.5.0 via a crafted GET request.
network
low complexity
horde CWE-94
8.8
2017-06-21 CVE-2017-9780 Incorrect Permission Assignment for Critical Resource vulnerability in multiple products
In Flatpak before 0.8.7, a third-party app repository could include malicious apps that contain files with inappropriate permissions, for example setuid or world-writable.
local
low complexity
flatpak debian CWE-732
7.8
2017-06-21 CVE-2017-2831 Classic Buffer Overflow vulnerability in Foscam C1 Indoor HD Camera Firmware 2.52.2.37
An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37.
network
low complexity
foscam CWE-120
7.5
2017-06-21 CVE-2017-2830 Classic Buffer Overflow vulnerability in Foscam C1 Indoor HD Camera Firmware 2.52.2.37
An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37.
network
low complexity
foscam CWE-120
7.5
2017-06-21 CVE-2017-2828 OS Command Injection vulnerability in Foscam C1 Indoor HD Camera Firmware 2.52.2.37
An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37.
network
low complexity
foscam CWE-78
8.8