Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-08-08 | CVE-2017-10004 | Unspecified vulnerability in Oracle Solaris 10/11 Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). | 6.7 |
| 2017-08-08 | CVE-2017-10003 | Unspecified vulnerability in Oracle Solaris 10 Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Network Services Library). | 4.5 |
| 2017-08-08 | CVE-2017-10002 | Unspecified vulnerability in Oracle Hospitality Inventory Management 8.5.1/9.0.0 Vulnerability in the Oracle Hospitality Inventory Management component of Oracle Hospitality Applications (subcomponent: Settings and Config). | 5.4 |
| 2017-08-08 | CVE-2017-12677 | Cross-site Scripting vulnerability in Identityserver Identityserver3 IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the IdentityServer authorization response. | 6.1 |
| 2017-08-08 | CVE-2017-6872 | Exposure of Resource to Wrong Sphere vulnerability in Siemens Ozw672 Firmware and Ozw772 Firmware A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker with access to port 21/tcp to access or alter historical measurement data stored on the device. | 6.5 |
| 2017-08-08 | CVE-2017-6871 | Improper Authentication vulnerability in Siemens products A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). | 5.4 |
| 2017-08-07 | CVE-2017-6866 | Unspecified vulnerability in Siemens XHQ Server 4.7.1.2/5.0.0.1 A vulnerability was discovered in Siemens XHQ server 4 and 5 (4 before V4.7.1.3 and 5 before V5.0.0.2) that could allow an authenticated low-privileged remote user to gain read access to data in the XHQ solution exceeding his configured permission level. | 6.5 |
| 2017-08-07 | CVE-2017-12676 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63 In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. | 6.5 |
| 2017-08-07 | CVE-2017-12675 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63 In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service. | 6.5 |
| 2017-08-07 | CVE-2017-12674 | Excessive Iteration vulnerability in Imagemagick 7.0.62 In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service. | 6.5 |