Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-05 | CVE-2016-9091 | OS Command Injection vulnerability in Bluecoat products Blue Coat Advanced Secure Gateway (ASG) 6.6 before 6.6.5.4 and Content Analysis System (CAS) 1.3 before 1.3.7.4 are susceptible to an OS command injection vulnerability. | 7.2 |
| 2017-04-05 | CVE-2017-6956 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Broadcom Hardmac Wi-Fi SOC Firmware 6.37.34.40 On the Broadcom Wi-Fi HardMAC SoC with fbt firmware, a stack buffer overflow occurs when handling an 802.11r (FT) authentication response, leading to remote code execution via a crafted access point that sends a long R0KH-ID field in a Fast BSS Transition Information Element (FT-IE). | 8.8 |
| 2017-04-05 | CVE-2017-0339 | Unspecified vulnerability in Linux Kernel 3.10 An elevation of privilege vulnerability in the NVIDIA crypto driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-04-05 | CVE-2017-0332 | Out-of-bounds Write vulnerability in Linux Kernel 3.10 An elevation of privilege vulnerability in the NVIDIA crypto driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-04-05 | CVE-2017-0329 | Unspecified vulnerability in Linux Kernel 3.18 An elevation of privilege vulnerability in the NVIDIA boot and power management processor driver could enable a local malicious application to execute arbitrary code within the context of the boot and power management processor. | 7.0 |
| 2017-04-05 | CVE-2017-0327 | Classic Buffer Overflow vulnerability in Linux Kernel 3.10 An elevation of privilege vulnerability in the NVIDIA crypto driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-04-05 | CVE-2017-0325 | Out-of-bounds Write vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the NVIDIA I2C HID driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-04-05 | CVE-2017-7358 | Path Traversal vulnerability in multiple products In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out. | 7.3 |
| 2017-04-04 | CVE-2017-5649 | Information Exposure vulnerability in Apache Geode 1.0.0/1.1.0 Apache Geode before 1.1.1, when a cluster has enabled security by setting the security-manager property, allows remote authenticated users with CLUSTER:READ but not DATA:READ permission to access the data browser page in Pulse and consequently execute an OQL query that exposes data stored in the cluster. | 7.5 |
| 2017-04-04 | CVE-2016-5870 | NULL Pointer Dereference vulnerability in Linux Kernel The msm_ipc_router_close function in net/ipc_router/ipc_router_socket.c in the ipc_router component for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow attackers to cause a denial of service (NULL pointer dereference) or possibly have unspecified other impact by triggering failure of an accept system call for an AF_MSM_IPC socket. | 7.8 |