Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-06-30 | CVE-2017-10669 | Improper Verification of Cryptographic Signature vulnerability in Xoev Osci Transport Library 1.6/1.6.1 Signature Wrapping exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 (Java) and OSCI Transport Library 1.6 (.NET). | 6.5 |
| 2017-06-30 | CVE-2017-10668 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Xoev Osci Transport Library 1.6/1.6.1 A Padding Oracle exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 (Java) and OSCI Transport Library 1.6 (.NET). | 5.9 |
| 2017-06-30 | CVE-2017-6040 | Information Exposure vulnerability in Belden Hirschmann Gecko Lite Managed Switch Firmware An Information Exposure issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. | 5.3 |
| 2017-06-30 | CVE-2017-6036 | Server-Side Request Forgery (SSRF) vulnerability in Belden Hirschmann Gecko Lite Managed Switch Firmware A Server-Side Request Forgery issue was discovered in Belden Hirschmann GECKO Lite Managed switch, Version 2.0.00 and prior versions. | 6.5 |
| 2017-06-30 | CVE-2017-6032 | Improperly Implemented Security Check for Standard vulnerability in Schneider-Electric Modbus Firmware A Violation of Secure Design Principles issue was discovered in Schneider Electric Modicon Modbus Protocol. | 5.3 |
| 2017-06-30 | CVE-2017-6030 | Insufficient Entropy vulnerability in Schneider-Electric products A Predictable Value Range from Previous Values issue was discovered in Schneider Electric Modicon PLCs Modicon M221, firmware versions prior to Version 1.5.0.0, Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. | 6.5 |
| 2017-06-30 | CVE-2017-6018 | Open Redirect vulnerability in Bbraun Station Firmware An open redirect issue was discovered in B. | 6.1 |
| 2017-06-29 | CVE-2017-3750 | Unspecified vulnerability in Google Android On Lenovo VIBE mobile phones, the Lenovo Security Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3749. high complexity google | 6.4 |
| 2017-06-29 | CVE-2017-3749 | Unspecified vulnerability in Google Android On Lenovo VIBE mobile phones, the Idea Friend Android application allows private data to be backed up and restored via Android Debug Bridge, which allows tampering leading to privilege escalation in conjunction with CVE-2017-3748 and CVE-2017-3750. high complexity google | 6.4 |
| 2017-06-29 | CVE-2017-3747 | Unspecified vulnerability in Lenovo Nerve Center Privilege escalation vulnerability in Lenovo Nerve Center for Windows 10 on Desktop systems (Lenovo Nerve Center for notebook systems is not affected) that could allow an attacker with local privileges on a system to alter registry keys. | 5.5 |