Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-20 CVE-2016-3729 Improper Access Control vulnerability in Moodle
The user editing form in Moodle 3.0 through 3.0.3, 2.9 through 2.9.5, 2.8 through 2.8.11, 2.7 through 2.7.13, and earlier allows remote authenticated users to edit profile fields locked by the administrator.
network
low complexity
moodle CWE-284
6.5
6.5
2017-04-20 CVE-2017-5160 Inadequate Encryption Strength vulnerability in Aveva Wonderware Intouch Access Anywhere 11.5.2
An Inadequate Encryption Strength issue was discovered in Schneider Electric Wonderware InTouch Access Anywhere, version 11.5.2 and prior.
network
high complexity
aveva CWE-326
5.3
5.3
2017-04-20 CVE-2017-5183 Cross-site Scripting vulnerability in Netiq Access Manager 4.2.2/4.3/4.3.1
NetIQ Access Manager 4.2.2 and 4.3.x before 4.3.1+, when configured as an Identity Server, has XSS in the AssertionConsumerServiceURL field of a signed AuthnRequest in a samlp:AuthnRequest document.
network
low complexity
netiq CWE-79
6.1
6.1
2017-04-20 CVE-2016-7540 Data Processing Errors vulnerability in Imagemagick
coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image to rgf format.
network
low complexity
imagemagick CWE-19
6.5
6.5
2017-04-20 CVE-2016-7538 Out-of-bounds Write vulnerability in Imagemagick
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
network
low complexity
imagemagick CWE-787
6.5
6.5
2017-04-20 CVE-2016-7536 Improper Input Validation vulnerability in Imagemagick
magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile.
network
low complexity
imagemagick CWE-20
6.5
6.5
2017-04-20 CVE-2016-7535 Out-of-bounds Write vulnerability in Imagemagick
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file.
network
low complexity
imagemagick CWE-787
6.5
6.5
2017-04-20 CVE-2016-7534 Out-of-bounds Read vulnerability in Imagemagick
The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.
network
low complexity
imagemagick CWE-125
6.5
6.5
2017-04-20 CVE-2016-7532 Out-of-bounds Read vulnerability in Imagemagick
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
network
low complexity
imagemagick CWE-125
6.5
6.5
2017-04-20 CVE-2016-7530 Divide By Zero vulnerability in Imagemagick
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
network
low complexity
imagemagick CWE-369
6.5
6.5