Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-07 | CVE-2017-6420 | Use After Free vulnerability in Clamav 0.99.2 The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service (use-after-free) via a crafted PE file with WWPack compression. | 5.5 |
| 2017-08-07 | CVE-2017-6418 | Out-of-bounds Read vulnerability in Clamav 0.99.2 libclamav/message.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted e-mail message. | 5.5 |
| 2017-08-07 | CVE-2006-3635 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Linux Kernel The ia64 subsystem in the Linux kernel before 2.6.26 allows local users to cause a denial of service (stack consumption and system crash) via a crafted application that leverages the mishandling of invalid Register Stack Engine (RSE) state. | 5.5 |
| 2017-08-06 | CVE-2017-12586 | Path Traversal vulnerability in Slims Akasia SLiMS 8 Akasia through 8.3.1 has an arbitrary file reading issue because of directory traversal in the url parameter to admin/help.php. | 6.5 |
| 2017-08-06 | CVE-2017-12583 | Cross-site Scripting vulnerability in Dokuwiki DokuWiki through 2017-02-19b has XSS in the at parameter (aka the DATE_AT variable) to doku.php. | 6.1 |
| 2017-08-05 | CVE-2017-12572 | Cross-site Scripting vulnerability in Splunk Persistent Cross Site Scripting (XSS) exists in Splunk Enterprise 6.5.x before 6.5.2, 6.4.x before 6.4.6, and 6.3.x before 6.3.9 and Splunk Light before 6.5.2, with exploitation requiring administrative access, aka SPL-134104. | 4.8 |
| 2017-08-05 | CVE-2017-12566 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.62 In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMVGImage in coders/mvg.c, which allows attackers to cause a denial of service, related to the function ReadSVGImage in svg.c. | 6.5 |
| 2017-08-05 | CVE-2017-12565 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.62 In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. | 6.5 |
| 2017-08-05 | CVE-2017-12564 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.62 In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service. | 6.5 |
| 2017-08-05 | CVE-2017-12563 | Allocation of Resources Without Limits or Throttling vulnerability in Imagemagick 7.0.62 In ImageMagick 7.0.6-2, a memory exhaustion vulnerability was found in the function ReadPSDImage in coders/psd.c, which allows attackers to cause a denial of service. | 6.5 |