Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-27 | CVE-2017-5330 | OS Command Injection vulnerability in multiple products ark before 16.12.1 might allow remote attackers to execute arbitrary code via an executable in an archive, related to associated applications. | 7.8 |
| 2017-03-27 | CVE-2015-8026 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Exfat Project Exfat Heap-based buffer overflow in the verify_vbr_checksum function in exfatfsck in exfat-utils before 1.2.1 allows remote attackers to cause a denial of service (infinite loop) or possibly execute arbitrary code via a crafted filesystem. | 7.8 |
| 2017-03-27 | CVE-2017-6957 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Broadcom Bcm4339 SOC Firmware 6.37.34.40 Stack-based buffer overflow in the firmware in Broadcom Wi-Fi HardMAC SoC chips, when the firmware supports CCKM Fast and Secure Roaming and the feature is enabled in RAM, allows remote attackers to execute arbitrary code via a crafted reassociation response frame with a Cisco IE (156). | 8.1 |
| 2017-03-27 | CVE-2017-6069 | Cross-Site Request Forgery (CSRF) vulnerability in Intelliants Subrion CMS 4.0.5 Subrion CMS 4.0.5 has CSRF in admin/blog/add/. | 8.8 |
| 2017-03-27 | CVE-2017-6068 | Cross-Site Request Forgery (CSRF) vulnerability in Intelliants Subrion CMS 4.0.5 Subrion CMS 4.0.5 has CSRF in admin/blocks/add/. | 8.8 |
| 2017-03-27 | CVE-2017-6066 | Cross-Site Request Forgery (CSRF) vulnerability in Intelliants Subrion CMS 4.0.5 Subrion CMS 4.0.5 has CSRF in admin/languages/edit/1/. | 8.8 |
| 2017-03-27 | CVE-2017-6002 | Cross-Site Request Forgery (CSRF) vulnerability in Intelliants Subrion CMS 4.0.5.10 Subrion CMS 4.0.5.10 has CSRF in admin/blog/add/. | 8.8 |
| 2017-03-26 | CVE-2017-7264 | Use After Free vulnerability in Artifex Mupdf 1.10A Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document. | 7.8 |
| 2017-03-26 | CVE-2017-7263 | Out-of-bounds Read vulnerability in Potrace Project Potrace 1.14 The bm_readbody_bmp function in bitmap_io.c in Potrace 1.14 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted BMP image. | 7.8 |
| 2017-03-26 | CVE-2016-10273 | Out-of-bounds Write vulnerability in Jensenofscandinavia products Multiple stack buffer overflow vulnerabilities in Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. | 8.8 |