Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-16 | CVE-2017-7661 | Cross-Site Request Forgery (CSRF) vulnerability in Apache CXF Fediz Apache CXF Fediz ships with a number of container-specific plugins to enable WS-Federation for applications. | 8.8 |
| 2017-05-16 | CVE-2017-6658 | Out-of-bounds Read vulnerability in Cisco Sourcefire Snort 3.0 Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. | 7.5 |
| 2017-05-16 | CVE-2017-6657 | Unspecified vulnerability in Cisco Snort++ Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. | 7.5 |
| 2017-05-16 | CVE-2017-6651 | Information Exposure vulnerability in Cisco Webex Meetings Server A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attackers to gain information that could allow them to access scheduled customer meetings. | 7.5 |
| 2017-05-16 | CVE-2017-3876 | Unspecified vulnerability in Cisco IOS XR 6.1.0/6.1.1 A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. | 7.5 |
| 2017-05-16 | CVE-2017-3873 | Improper Input Validation vulnerability in Cisco Aironet Access Point Firmware 8.3102.0 A vulnerability in the Plug-and-Play (PnP) subsystem of the Cisco Aironet 1800, 2800, and 3800 Series Access Points running a Lightweight Access Point (AP) or Mobility Express image could allow an unauthenticated, adjacent attacker to execute arbitrary code with root privileges. | 7.5 |
| 2017-05-16 | CVE-2017-3825 | Improper Input Validation vulnerability in Cisco Telepresence CE and Telepresence TC A vulnerability in the ICMP ingress packet processing of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an unauthenticated, remote attacker to cause the TelePresence endpoint to reload unexpectedly, resulting in a denial of service (DoS) condition. | 7.5 |
| 2017-05-16 | CVE-2017-6887 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libraw A boundary error within the "parse_tiff_ifd()" function (internal/dcraw_common.cpp) in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. | 7.8 |
| 2017-05-16 | CVE-2016-10242 | Race Condition vulnerability in Google Android A time-of-check time-of-use race condition could potentially exist in the secure file system in all Android releases from CAF using the Linux kernel. | 7.0 |
| 2017-05-16 | CVE-2016-10239 | Integer Overflow or Wraparound vulnerability in Google Android In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability could potentially occur. | 7.8 |