Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-01-09 CVE-2017-5217 Improper Input Validation vulnerability in Samsung Mobile
Installing a zero-permission Android application on certain Samsung Android devices with KK(4.4), L(5.0/5.1), and M(6.0) software can continually crash the system_server process in the Android OS.
local
low complexity
samsung CWE-20
5.5
5.5
2017-01-09 CVE-2017-5216 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Netop Remote Control 12.50
Stack-based buffer overflow vulnerability in Netop Remote Control versions 11.53, 12.21 and prior.
local
low complexity
netop CWE-119
5.5
5.5
2017-01-06 CVE-2016-9869 Permission Issues vulnerability in EMC Scaleio 2.0.1.0
An issue was discovered in EMC ScaleIO versions before 2.0.1.1.
local
low complexity
emc CWE-275
5.5
5.5
2017-01-06 CVE-2016-9868 7PK - Security Features vulnerability in EMC Scaleio 2.0.1.0
An issue was discovered in EMC ScaleIO versions before 2.0.1.1.
local
low complexity
emc CWE-254
5.5
5.5
2017-01-06 CVE-2016-4329 Improper Input Validation vulnerability in Kaspersky Anti-Virus, Internet Security and Total Security
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software.
local
low complexity
kaspersky CWE-20
5.5
5.5
2017-01-06 CVE-2016-4307 Improper Access Control vulnerability in Kaspersky Internet Security 16.0.0
A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver.
local
low complexity
kaspersky CWE-284
5.5
5.5
2017-01-06 CVE-2016-4306 Information Exposure vulnerability in Kaspersky Total Security 16.0.0.614
Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver.
local
low complexity
kaspersky CWE-200
5.5
5.5
2017-01-06 CVE-2016-4305 Improper Access Control vulnerability in Kaspersky Internet Security 16.0.0
A denial of service vulnerability exists in the syscall filtering functionality of Kaspersky Internet Security KLIF driver.
local
low complexity
kaspersky CWE-284
5.5
5.5
2017-01-06 CVE-2016-4304 Improper Access Control vulnerability in Kaspersky Internet Security 16.0.0
A denial of service vulnerability exists in the syscall filtering functionality of the Kaspersky Internet Security KLIF driver.
local
low complexity
kaspersky CWE-284
5.5
5.5
2017-01-06 CVE-2016-2375 Out-of-bounds Read vulnerability in multiple products
An exploitable out-of-bounds read exists in the handling of the MXIT protocol in Pidgin.
network
low complexity
pidgin canonical debian CWE-125
5.3
5.3