Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-22 | CVE-2017-7225 | NULL Pointer Dereference vulnerability in GNU Binutils 2.28 The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash. | 7.5 |
| 2017-03-22 | CVE-2017-7223 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.28 GNU assembler in GNU Binutils 2.28 is vulnerable to a global buffer overflow (of size 1) while attempting to unget an EOF character from the input stream, potentially leading to a program crash. | 7.5 |
| 2017-03-22 | CVE-2017-6971 | Injection vulnerability in multiple products AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch a reverse shell, via vectors involving the PHP session ID and the NfSen PHP code, aka AlienVault ID ENG-104862. | 8.8 |
| 2017-03-22 | CVE-2017-6970 | OS Command Injection vulnerability in multiple products AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka AlienVault ID ENG-104863. | 8.4 |
| 2017-03-22 | CVE-2014-9839 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 6.8.99 magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access). | 7.5 |
| 2017-03-22 | CVE-2014-9835 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 6.8.99 Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file. | 7.8 |
| 2017-03-22 | CVE-2014-9834 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 6.8.99 Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file. | 7.8 |
| 2017-03-22 | CVE-2014-9833 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 6.8.99 Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file. | 7.8 |
| 2017-03-22 | CVE-2014-9832 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 6.8.99 Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file. | 7.8 |
| 2017-03-22 | CVE-2017-5874 | Cross-Site Request Forgery (CSRF) vulnerability in D-Link Dir-600M Firmware CSRF exists on D-Link DIR-600M Rev. | 8.8 |