Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-04 | CVE-2017-12430 | Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61 In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service. | 7.5 |
| 2017-08-04 | CVE-2017-12429 | Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.61 In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service. | 7.5 |
| 2017-08-04 | CVE-2017-12428 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.61 In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c. | 7.5 |
| 2017-08-04 | CVE-2017-12425 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in Varnish HTTP Cache 4.0.1 through 4.0.4, 4.1.0 through 4.1.7, 5.0.0, and 5.1.0 through 5.1.2. | 7.5 |
| 2017-08-04 | CVE-2017-12418 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.65 ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c. | 7.5 |
| 2017-08-03 | CVE-2017-11392 | Command Injection vulnerability in Trendmicro Interscan Messaging Security Virtual Appliance 9.0/9.1 Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. | 8.8 |
| 2017-08-03 | CVE-2017-11391 | Command Injection vulnerability in Trendmicro Interscan Messaging Security Virtual Appliance 9.0/9.1 Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote attackers to execute arbitrary code on vulnerable installations. | 8.8 |
| 2017-08-03 | CVE-2017-11382 | Exposure of Resource to Wrong Sphere vulnerability in Trendmicro Deep Discovery Email Inspector 2.5.1 Denial of Service vulnerability in Trend Micro Deep Discovery Email Inspector 2.5.1 allows remote attackers to delete arbitrary files on vulnerable installations, thus disabling the service. | 7.5 |
| 2017-08-03 | CVE-2017-7442 | Path Traversal vulnerability in Gonitro Nitro PRO 11.0.3.173 Nitro Pro 11.0.3.173 allows remote attackers to execute arbitrary code via saveAs and launchURL calls with directory traversal sequences. | 8.8 |
| 2017-08-02 | CVE-2017-11390 | XXE vulnerability in Trendmicro Control Manager 6.0 XML external entity (XXE) processing vulnerability in Trend Micro Control Manager 6.0, if exploited, could lead to information disclosure. | 7.5 |