Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-08-28 CVE-2017-12923 NULL Pointer Dereference vulnerability in Libfpx Project Libfpx 1.3.1
OLEStream::WriteVT_LPSTR in olestrm.cpp in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted fpx image.
network
low complexity
libfpx-project CWE-476
6.5
6.5
2017-08-28 CVE-2017-12922 NULL Pointer Dereference vulnerability in Libfpx Project Libfpx 1.3.1
wchar.c in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted fpx image.
network
low complexity
libfpx-project CWE-476
6.5
6.5
2017-08-28 CVE-2017-12921 NULL Pointer Dereference vulnerability in Libfpx Project Libfpx 1.3.1
PFileFlashPixView::GetGlobalInfoProperty in f_fpxvw.cpp in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted fpx image.
network
low complexity
libfpx-project CWE-476
6.5
6.5
2017-08-28 CVE-2017-12920 NULL Pointer Dereference vulnerability in Libfpx Project Libfpx 1.3.1
CDirectory::GetDirEntry in dir.cxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted fpx image.
network
low complexity
libfpx-project CWE-476
6.5
6.5
2017-08-28 CVE-2017-12919 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libfpx Project Libfpx 1.3.1
Heap-based buffer overflow in OLEStream::WriteVT_LPSTR in olestrm.cpp in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service via a crafted fpx image.
network
low complexity
libfpx-project CWE-119
6.5
6.5
2017-08-28 CVE-2017-12877 Use After Free vulnerability in multiple products
Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
network
low complexity
imagemagick debian canonical CWE-416
6.5
6.5
2017-08-28 CVE-2017-12876 Out-of-bounds Write vulnerability in Imagemagick
Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
network
low complexity
imagemagick CWE-787
6.5
6.5
2017-08-28 CVE-2017-12077 Resource Exhaustion vulnerability in Synology Router Manager
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology Router Manager (SRM) before 1.1.4-6509 allows remote authenticated attacker to exhaust the memory resources of the machine, causing a denial of service attack.
network
low complexity
synology CWE-400
4.9
4.9
2017-08-28 CVE-2017-12076 Resource Exhaustion vulnerability in Synology Diskstation Manager
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology DiskStation (DSM) before 6.1.1-15088 allows remote authenticated attacker to exhaust the memory resources of the machine, causing a denial of service attack.
network
low complexity
synology CWE-400
4.9
4.9
2017-08-28 CVE-2015-0233 7PK - Security Features vulnerability in Fedoraproject 389 Administration Server 1.1.37
Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38.
local
low complexity
fedoraproject CWE-254
4.2
4.2