Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-13 | CVE-2016-10120 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges. | 7.8 |
| 2017-04-13 | CVE-2016-10119 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges. | 7.8 |
| 2017-04-13 | CVE-2016-10117 | Permissions, Privileges, and Access Controls vulnerability in Firejail Project Firejail Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc. | 7.8 |
| 2017-04-13 | CVE-2015-8284 | Improper Access Control vulnerability in Seawell Networks Spectrum SDC 02.05.00 SeaWell Networks Spectrum SDC 02.05.00 allows remote viewer users to perform administrative functions. | 8.8 |
| 2017-04-13 | CVE-2015-8270 | NULL Pointer Dereference vulnerability in Rtmpdump Project Rtmpdump 2.4 The AMF3ReadString function in amf.c in RTMPDump 2.4 allows remote RTMP Media servers to cause a denial of service (invalid pointer dereference and process crash). | 7.5 |
| 2017-04-13 | CVE-2015-8107 | Use of Externally-Controlled Format String vulnerability in GNU A2Ps 4.14 Format string vulnerability in GNU a2ps 4.14 allows remote attackers to execute arbitrary code. | 7.8 |
| 2017-04-13 | CVE-2012-6697 | Resource Management Errors vulnerability in multiple products InspIRCd before 2.0.7 allows remote attackers to cause a denial of service (infinite loop). | 7.5 |
| 2017-04-12 | CVE-2017-7748 | Infinite Loop vulnerability in Wireshark In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. | 7.5 |
| 2017-04-12 | CVE-2017-7747 | Improper Input Validation vulnerability in multiple products In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. | 7.5 |
| 2017-04-12 | CVE-2017-7746 | Infinite Loop vulnerability in multiple products In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. | 7.5 |