Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-07-31 | CVE-2016-9718 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 10.1. | 5.4 |
| 2017-07-31 | CVE-2016-9717 | Improper Input Validation vulnerability in IBM Infosphere Master Data Management Server HTTP Parameter Override is identified in the IBM Infosphere Master Data Management (MDM) 10.1. | 6.5 |
| 2017-07-31 | CVE-2016-9715 | Cross-site Scripting vulnerability in IBM Infosphere Master Data Management Server IBM InfoSphere Master Data Management Server 11.0, 11.3, 11.4, 11.5, and 11.6 is vulnerable to cross-site scripting. | 5.4 |
| 2017-07-31 | CVE-2017-11551 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libid3Tag Project Libid3Tag 0.15.1B The id3_field_parse function in field.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (OOM) via a crafted MP3 file. | 5.5 |
| 2017-07-31 | CVE-2017-11550 | NULL Pointer Dereference vulnerability in Libid3Tag Project Libid3Tag 0.15.1B The id3_ucs4_length function in ucs4.c in libid3tag 0.15.1b allows remote attackers to cause a denial of service (NULL Pointer Dereference and application crash) via a crafted mp3 file. | 5.5 |
| 2017-07-31 | CVE-2017-11549 | Excessive Iteration vulnerability in Timidity++ Project Timidity++ 2.14.0 The play_midi function in playmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted mid file. | 5.5 |
| 2017-07-31 | CVE-2017-11548 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Xiph Libao 1.2.0 The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service (memory corruption) via a crafted MP3 file. | 5.5 |
| 2017-07-31 | CVE-2017-11547 | Out-of-bounds Read vulnerability in Timidity++ Project Timidity++ 2.14.0 The resample_gauss function in resample.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mid file. | 5.5 |
| 2017-07-31 | CVE-2017-11546 | Divide By Zero vulnerability in Timidity++ Project Timidity++ 2.14.0 The insert_note_steps function in readmidi.c in TiMidity++ 2.14.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mid file. | 5.5 |
| 2017-07-31 | CVE-2017-11359 | Divide By Zero vulnerability in multiple products The wavwritehdr function in wav.c in Sound eXchange (SoX) 14.4.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted snd file, during conversion to a wav file. | 5.5 |