Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-02 | CVE-2017-2376 | Unspecified vulnerability in Apple Safari An issue was discovered in certain Apple products. | 7.5 |
| 2017-04-01 | CVE-2017-7396 | Missing Release of Resource after Effective Lifetime vulnerability in Tigervnc 1.7.1 In TigerVNC 1.7.1 (CConnection.cxx CConnection::CConnection), an unauthenticated client can cause a small memory leak in the server. | 7.5 |
| 2017-04-01 | CVE-2017-7394 | Improper Input Validation vulnerability in Tigervnc 1.7.1 In TigerVNC 1.7.1 (SSecurityPlain.cxx SSecurityPlain::processMsg), unauthenticated users can crash the server by sending long usernames. | 7.5 |
| 2017-04-01 | CVE-2017-7393 | Double Free vulnerability in Tigervnc 1.7.1 In TigerVNC 1.7.1 (VNCSConnectionST.cxx VNCSConnectionST::fence), an authenticated client can cause a double free, leading to denial of service or potentially code execution. | 8.8 |
| 2017-04-01 | CVE-2017-7392 | Missing Release of Resource after Effective Lifetime vulnerability in Tigervnc 1.7.1 In TigerVNC 1.7.1 (SSecurityVeNCrypt.cxx SSecurityVeNCrypt::SSecurityVeNCrypt), an unauthenticated client can cause a small memory leak in the server. | 7.5 |
| 2017-03-31 | CVE-2016-8032 | Improper Access Control vulnerability in Mcafee Anti-Malware Scan Engine Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local attackers to bypass local security protection via a crafted input file. | 7.3 |
| 2017-03-31 | CVE-2017-7374 | Use After Free vulnerability in Linux Kernel Use-after-free vulnerability in fs/crypto/ in the Linux kernel before 4.10.7 allows local users to cause a denial of service (NULL pointer dereference) or possibly gain privileges by revoking keyring keys being used for ext4, f2fs, or ubifs encryption, causing cryptographic transform objects to be freed prematurely. | 7.8 |
| 2017-03-31 | CVE-2016-6561 | NULL Pointer Dereference vulnerability in Illumos illumos smbsrv NULL pointer dereference allows system crash. | 7.5 |
| 2017-03-31 | CVE-2016-6560 | Improper Input Validation vulnerability in Illumos illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned comparisons allowing a system crash. | 8.6 |
| 2017-03-31 | CVE-2017-2775 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in NI Labview 16.0.0.49152 An exploitable memory corruption vulnerability exists in the LvVariantUnflatten functionality in 64-bit versions of LabVIEW before 2015 SP1 f7 Patch and 2016 before f2 Patch. | 7.8 |