Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-22 | CVE-2017-2501 | Race Condition vulnerability in Apple products An issue was discovered in certain Apple products. | 7.0 |
| 2017-05-22 | CVE-2017-2499 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 7.8 |
| 2017-05-22 | CVE-2017-2498 | Improper Certificate Validation vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 7.5 |
| 2017-05-22 | CVE-2017-2496 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 8.8 |
| 2017-05-22 | CVE-2017-2494 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 7.8 |
| 2017-05-22 | CVE-2017-6653 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco Identity Services Engine 2.1(0.474) A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine (ISE) 2.1(0.474) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device where the ISE GUI may fail to respond to new or established connection requests. | 7.5 |
| 2017-05-22 | CVE-2017-6650 | Command Injection vulnerability in Cisco Nx-Os A vulnerability in the Telnet CLI command of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. | 7.8 |
| 2017-05-22 | CVE-2017-6649 | Command Injection vulnerability in Cisco Nx-Os A vulnerability in the CLI of Cisco NX-OS System Software 7.1 through 7.3 running on Cisco Nexus Series Switches could allow an authenticated, local attacker to perform a command injection attack. | 7.8 |
| 2017-05-22 | CVE-2017-6641 | Allocation of Resources Without Limits or Throttling vulnerability in Cisco Remote Expert Manager 11.0.0 A vulnerability in the TCP connection handling functionality of Cisco Remote Expert Manager Software 11.0.0 could allow an unauthenticated, remote attacker to disable TCP ports and cause a denial of service (DoS) condition on an affected system. | 7.5 |
| 2017-05-22 | CVE-2017-6634 | Cross-Site Request Forgery (CSRF) vulnerability in Cisco Industrial Ethernet 1000 Series Firmware 1.3Base A vulnerability in the Device Manager web interface of Cisco Industrial Ethernet 1000 Series Switches 1.3 could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against a user of an affected system. | 8.8 |