Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-21 | CVE-2017-9134 | Information Exposure vulnerability in Mimosa Backhaul Radios and Client Radios An information-leakage issue was discovered on Mimosa Client Radios before 2.2.3 and Mimosa Backhaul Radios before 2.2.3. | 7.5 |
| 2017-05-21 | CVE-2017-9133 | Injection vulnerability in Mimosa Backhaul Radios and Client Radios An issue was discovered on Mimosa Client Radios before 2.2.3 and Mimosa Backhaul Radios before 2.2.3. | 8.8 |
| 2017-05-21 | CVE-2017-9132 | Use of Hard-coded Credentials vulnerability in Mimosa Backhaul Radios and Client Radios A hard-coded credentials issue was discovered on Mimosa Client Radios before 2.2.3, Mimosa Backhaul Radios before 2.2.3, and Mimosa Access Points before 2.2.3. | 7.5 |
| 2017-05-21 | CVE-2017-9131 | Improper Input Validation vulnerability in Mimosa Backhaul Radios and Client Radios An issue was discovered on Mimosa Client Radios before 2.2.3 and Mimosa Backhaul Radios before 2.2.3. | 7.5 |
| 2017-05-21 | CVE-2017-9115 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 2 in the = operator function in half.h could cause the application to crash or execute arbitrary code. | 8.8 |
| 2017-05-21 | CVE-2017-9113 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code. | 8.8 |
| 2017-05-21 | CVE-2017-9111 | Unspecified vulnerability in Openexr 2.2.0 In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code. | 8.8 |
| 2017-05-21 | CVE-2014-9970 | Information Exposure vulnerability in Jasypt Project Jasypt jasypt before 1.9.2 allows a timing attack against the password hash comparison. | 7.5 |
| 2017-05-21 | CVE-2017-9046 | Improper Input Validation vulnerability in Pmail Pegasus 4.72 winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. | 7.3 |
| 2017-05-21 | CVE-2017-9024 | Path Traversal vulnerability in Secure-Bytes Secure Cisco Auditor 3.0 Secure Bytes Cisco Configuration Manager, as bundled in Secure Bytes Secure Cisco Auditor (SCA) 3.0, has a Directory Traversal issue in its TFTP Server, allowing attackers to read arbitrary files via ../ sequences in a pathname. | 7.5 |