Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-01-11 | CVE-2017-2938 | Unspecified vulnerability in Adobe Flash Player Adobe Flash Player versions 24.0.0.186 and earlier have a security bypass vulnerability related to handling TCP connections. | 6.5 |
| 2017-01-10 | CVE-2016-9247 | Improper Input Validation vulnerability in F5 products Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel (TMM) to restart. | 5.9 |
| 2017-01-10 | CVE-2016-6837 | Cross-site Scripting vulnerability in Mantisbt Cross-site scripting (XSS) vulnerability in MantisBT Filter API in MantisBT versions before 1.2.19, and versions 2.0.0-beta1, 1.3.0-beta1 allows remote attackers to inject arbitrary web script or HTML via the 'view_type' parameter. | 6.1 |
| 2017-01-10 | CVE-2015-4591 | Cross-site Scripting vulnerability in Eclinicalworks Population Health eClinicalWorks Population Health (CCMR) suffers from a cross site scripting vulnerability in login.jsp which allows remote unauthenticated users to inject arbitrary javascript via the strMessage parameter. | 6.1 |
| 2017-01-09 | CVE-2016-8106 | Improper Input Validation vulnerability in multiple products A Denial of Service in Intel Ethernet Controller's X710/XL710 with Non-Volatile Memory Images before version 5.05 allows a remote attacker to stop the controller from processing network traffic working under certain network use conditions. | 5.9 |
| 2017-01-09 | CVE-2017-5217 | Improper Input Validation vulnerability in Samsung Mobile Installing a zero-permission Android application on certain Samsung Android devices with KK(4.4), L(5.0/5.1), and M(6.0) software can continually crash the system_server process in the Android OS. | 5.5 |
| 2017-01-09 | CVE-2017-5216 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Netop Remote Control 12.50 Stack-based buffer overflow vulnerability in Netop Remote Control versions 11.53, 12.21 and prior. | 5.5 |
| 2017-01-06 | CVE-2016-9869 | Permission Issues vulnerability in EMC Scaleio 2.0.1.0 An issue was discovered in EMC ScaleIO versions before 2.0.1.1. | 5.5 |
| 2017-01-06 | CVE-2016-9868 | 7PK - Security Features vulnerability in EMC Scaleio 2.0.1.0 An issue was discovered in EMC ScaleIO versions before 2.0.1.1. | 5.5 |
| 2017-01-06 | CVE-2016-4329 | Improper Input Validation vulnerability in Kaspersky Anti-Virus, Internet Security and Total Security A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. | 5.5 |