Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-08-08 CVE-2017-10008 Unspecified vulnerability in Oracle Flexcube Private Banking
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous).
network
low complexity
oracle
4.3
2017-08-08 CVE-2017-10007 Unspecified vulnerability in Oracle Flexcube Private Banking
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous).
network
low complexity
oracle
4.3
2017-08-08 CVE-2017-10006 Unspecified vulnerability in Oracle Flexcube Private Banking
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous).
network
low complexity
oracle
6.5
2017-08-08 CVE-2017-10005 Unspecified vulnerability in Oracle Flexcube Private Banking
Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous).
network
low complexity
oracle
6.1
2017-08-08 CVE-2017-10004 Unspecified vulnerability in Oracle Solaris 10/11
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel).
local
low complexity
oracle
6.7
2017-08-08 CVE-2017-10003 Unspecified vulnerability in Oracle Solaris 10
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Network Services Library).
local
high complexity
oracle
4.5
2017-08-08 CVE-2017-10002 Unspecified vulnerability in Oracle Hospitality Inventory Management 8.5.1/9.0.0
Vulnerability in the Oracle Hospitality Inventory Management component of Oracle Hospitality Applications (subcomponent: Settings and Config).
network
low complexity
oracle
5.4
2017-08-08 CVE-2017-12677 Cross-site Scripting vulnerability in Identityserver Identityserver3
IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the IdentityServer authorization response.
network
low complexity
identityserver CWE-79
6.1
2017-08-08 CVE-2017-6872 Exposure of Resource to Wrong Sphere vulnerability in Siemens Ozw672 Firmware and Ozw772 Firmware
A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker with access to port 21/tcp to access or alter historical measurement data stored on the device.
network
low complexity
siemens CWE-668
6.5
2017-08-08 CVE-2017-6871 Improper Authentication vulnerability in Siemens products
A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2).
low complexity
siemens CWE-287
5.4