Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2017-05-23 CVE-2017-2783 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Marklogic 8.06
An exploitable heap corruption vulnerability exists in the FillRowFormat functionality of Antenna House DMC HTMLFilter that is shipped with MarkLogic 8.0-6.
local
low complexity
marklogic CWE-119
7.8
7.8
2017-05-23 CVE-2017-9212 Use of Externally-Controlled Format String vulnerability in Bavarian Motor Works Bluetooth Stack
The Bluetooth stack on the BMW 330i 2011 allows a remote crash of the CD/Multimedia software via %x or %c format string specifiers in a device name.
network
low complexity
bavarian-motor-works CWE-134
7.5
7.5
2017-05-23 CVE-2017-9190 Use After Free vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid free), related to the free_bitmap function in bitmap.c:24:5.
network
low complexity
autotrace-project CWE-416
7.5
7.5
2017-05-23 CVE-2017-9189 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and application crash), related to the GET_COLOR function in color.c:16:11.
network
low complexity
autotrace-project CWE-125
7.5
7.5
2017-05-23 CVE-2017-9182 Use After Free vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (use-after-free and invalid heap read), related to the GET_COLOR function in color.c:16:11.
network
low complexity
autotrace-project CWE-416
7.5
7.5
2017-05-23 CVE-2017-9181 Out-of-bounds Write vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c.
network
low complexity
autotrace-project CWE-787
7.5
7.5
2017-05-23 CVE-2017-9180 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:440:14.
network
low complexity
autotrace-project CWE-125
7.5
7.5
2017-05-23 CVE-2017-9179 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:425:14.
network
low complexity
autotrace-project CWE-125
7.5
7.5
2017-05-23 CVE-2017-9178 Out-of-bounds Write vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the ReadImage function in input-bmp.c:421:11.
network
low complexity
autotrace-project CWE-787
7.5
7.5
2017-05-23 CVE-2017-9177 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and SEGV), related to the ReadImage function in input-bmp.c:390:12.
network
low complexity
autotrace-project CWE-125
7.5
7.5