Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-10 | CVE-2017-16633 | Information Exposure vulnerability in Joomla Joomla! In Joomla! before 3.8.2, a logic bug in com_fields exposed read-only information about a site's custom fields to unauthorized users. | 4.3 |
| 2017-11-10 | CVE-2017-16568 | Cross-site Scripting vulnerability in Logitech Media Server 7.9.0 Persistent Cross-Site Scripting (XSS) vulnerability in Logitech Media Server 7.9.0, affecting the "Radio" functionality. | 5.4 |
| 2017-11-10 | CVE-2017-16567 | Cross-site Scripting vulnerability in Logitech Media Server 7.9.0 Persistent Cross-Site Scripting (XSS) vulnerability in Logitech Media Server 7.9.0, affecting the "Favorites" feature. | 5.4 |
| 2017-11-10 | CVE-2017-15638 | Unspecified vulnerability in Suse Susefirewall2 The SuSEfirewall2 package before 3.6.312-2.13.1 in SUSE Linux Enterprise (SLE) Desktop 12 SP2, Server 12 SP2, and Server for Raspberry Pi 12 SP2; before 3.6.312.333-3.10.1 in SLE Desktop 12 SP3 and Server 12 SP3; before 3.6_SVNr208-2.18.3.1 in SLE Server 11 SP4; before 3.6.312-5.9.1 in openSUSE Leap 42.2; and before 3.6.312.333-7.1 in openSUSE Leap 42.3 might allow remote attackers to bypass intended access restrictions on the portmap service by leveraging a missing source net restriction for _rpc_ services. | 6.5 |
| 2017-11-10 | CVE-2017-12803 | NULL Pointer Dereference vulnerability in Matroska Mkclean 0.8.9 The Node_ValidatePtr function in corec/corec/node/node.c in mkclean 0.8.9 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. | 6.5 |
| 2017-11-10 | CVE-2017-12802 | Improper Input Validation vulnerability in Matroska Libebml2, Mkclean and Mkvalidator The EBML_IntegerValue function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. | 6.5 |
| 2017-11-10 | CVE-2017-12801 | Improper Input Validation vulnerability in Matroska Libebml2, Mkclean and Mkvalidator The UpdateDataSize function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. | 6.5 |
| 2017-11-10 | CVE-2017-12800 | NULL Pointer Dereference vulnerability in Matroska Libebml2, Mkclean and Mkvalidator The EBML_FindNextElement function in ebmlmain.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (Null pointer dereference and application crash) via a crafted mkv file. | 6.5 |
| 2017-11-10 | CVE-2017-12783 | Improper Input Validation vulnerability in Matroska Libebml2, Mkclean and Mkvalidator The ReadDataFloat function in ebmlnumber.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. | 6.5 |
| 2017-11-10 | CVE-2017-12782 | Improper Input Validation vulnerability in Matroska Libebml2, Mkclean and Mkvalidator The ReadData function in ebmlmaster.c in libebml2 through 2012-08-26 allows remote attackers to cause a denial of service (assert fault) via a crafted mkv file. | 6.5 |