TippingPoint Zero Day Initiative
 

Published Advisories

The following is a list of all publicly disclosed vulnerabilities discovered by TippingPoint Zero Day Initiative researchers. While the affected vendor is working on a patch for these vulnerabilities, TippingPoint customers are protected from exploitation by security filters delivered ahead of public disclosure. TippingPoint customers are additionally protected against 0day vulnerabilities discovered by our own DVLabs researchers. A list of published advisories discovered by TippingPoint's DVLabs research group is available from:

ZDI Advisories: 2017   |   2016   |   2015   |   2014   |   2013   |   2012   |   2011   |   2010   |   2009   |   2008   |   2007   |   2006   |   2005

ZDI-17-848 CVE: CVE-2017-11812 Published: 2017-10-11
Microsoft Chakra asm.js ArrayBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-847 CVE: CVE-2017-11790 Published: 2017-10-11
Microsoft Office Excel xls File Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-846 CVE: CVE-2017-11779 Published: 2017-10-10
Microsoft Windows DNSAPI NSEC3_RecordRead Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-845 CVE: CVE-2017-8689 Published: 2017-10-10
Microsoft Windows Submenu Use-After-Free Privilege Escalation Vulnerability
ZDI-17-844 CVE: CVE-2017-11800 Published: 2017-10-10
Microsoft Chakra Array JIT Optimization Type Confusion Remote Code Execution Vulnerability
ZDI-17-843 CVE: CVE-2017-11781 Published: 2017-10-10
Microsoft Windows SMB Out-Of-Bounds Read Denial of Service Vulnerability
ZDI-17-842 CVE: CVE-2017-11794 Published: 2017-10-10
Microsoft Edge substringData Use-After-Free Information Disclosure Vulnerability
ZDI-17-841 CVE: CVE-2017-11762 Published: 2017-10-10
Microsoft Windows Font Embedding Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-840 CVE: CVE-2017-8717 Published: 2017-10-10
Microsoft Windows XLS File Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-839 CVE: CVE-2017-8718 Published: 2017-10-10
Microsoft Windows XLS File Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-838 CVE: Published: 2017-10-06
(0Day) Microsoft Windows WAV File Uninitialized Pointer Denial of Service Vulnerability
ZDI-17-837 CVE: CVE-2017-12263 Published: 2017-10-04
Cisco License Manager Server ReportCSV Directory Traversal Information Disclosure Vulnerability
ZDI-17-836 CVE: CVE-2017-12561 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10012 Use-After-Free Remote Code Execution Vulnerability
ZDI-17-835 CVE: CVE-2017-12560 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center mibFileServlet Directory Traversal Denial of Service Vulnerability
ZDI-17-834 CVE: CVE-2017-12559 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center mibFileServlet Directory Traversal Denial of Service Vulnerability
ZDI-17-833 CVE: CVE-2017-12558 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center WebDMServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-832 CVE: CVE-2017-12557 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center WebDMDebugServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-831 CVE: CVE-2017-12556 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center MibBrowserTopoFilterServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-830 CVE: CVE-2017-12554 Published: 2017-10-03
Hewlett Packard Enterprise Intelligent Management Center mibFileServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-829 CVE: CVE-2017-14088 Published: 2017-09-27
Trend Micro OfficeScan tmwfp Memory Corruption Privilege Escalation Vulnerability
ZDI-17-828 CVE: CVE-2017-14088 Published: 2017-09-27
Trend Micro OfficeScan tmwfp Memory Corruption Privilege Escalation Vulnerability
ZDI-17-827 CVE: CVE-2017-8007 Published: 2017-09-26
Dell EMC VNX Monitoring and Reporting Scheduler Directory Traversal Remote Code Execution Vulnerability
ZDI-17-826 CVE: CVE-2017-8012 Published: 2017-09-26
Dell EMC VNX Monitoring and Reporting RMI Registry Deserialization of Untrusted Data Denial of Service Vulnerability
ZDI-17-825 CVE: CVE-2017-14350 Published: 2017-09-26
Hewlett Packard Enterprise Application Performance Management Staging Data Replicator hpbsmsdr Missing Authentication for Critical Function Remote Code Execution Vulnerability
ZDI-17-824 CVE: CVE-2017-7111 Published: 2017-09-26
Apple Safari RegExp replace Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-823 CVE: CVE-2017-7095 Published: 2017-09-26
Apple Safari JSString Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-822 CVE: CVE-2017-7091 Published: 2017-09-26
Apple Safari RenderFlowThread Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-821 CVE: CVE-2017-7092 Published: 2017-09-26
Apple Safari String link Integer Overflow Remote Code Execution Vulnerability
ZDI-17-820 CVE: CVE-2017-7093 Published: 2017-09-26
Apple Safari BoundFunction Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-819 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft SegCmt Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-818 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft LAD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-817 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft SFC File Parsing Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-816 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft DEV File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-815 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft EPC File Parsing Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-814 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft EPC File Parsing Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-813 CVE: Published: 2017-09-26
(0Day) Eaton ELCSoft Device Comment Range Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-812 CVE: CVE-2017-10955 Published: 2017-09-28
(0Day) EMC Data Protection Advisor ScheduledReportResource Command Injection Remote Code Execution Vulnerability
ZDI-17-811 CVE: CVE-2017-8013 Published: 2017-09-15
EMC Data Protection Advisor Application Service Static Credentials Authentication Bypass Vulnerability
ZDI-17-810 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_moveto_group_list Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-809 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise delete_admin_account UserName SQL Injection Remote Code Execution Vulnerability
ZDI-17-808 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise add_app_category Name SQL Injection Remote Code Execution Vulnerability
ZDI-17-807 CVE: CVE-2017-14079 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise upload_img_file Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-806 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_check_upgrade SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-805 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_sync_client_info SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-804 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_sync_all_devices SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-803 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_unregister SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-802 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_upload_new_devices SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-801 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_command SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-800 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise eas_agent_register SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-799 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise cancel_command_list CmdUUID SQL Injection Remote Code Execution Vulnerability
ZDI-17-798 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise delete_user Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-797 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise remove_command_list CmdUUID SQL Injection Remote Code Execution Vulnerability
ZDI-17-796 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise resend_command_list CmdUUID SQL Injection Remote Code Execution Vulnerability
ZDI-17-795 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise edit_eas_note Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-794 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise save_eas_agent_setting SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-793 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise remove_eas_agent_info SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-792 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise show_eas_agent_info SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-791 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise create_db SQL Injection Remote Code Execution Vulnerability
ZDI-17-790 CVE: CVE-2017-14079 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise upload_font_file Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-789 CVE: CVE-2017-14079 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise upload_wallpaper_file Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-788 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise mdm_register_new_connector SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-787 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise diagnose_eas_status SlinkId SQL Injection Remote Code Execution Vulnerability
ZDI-17-786 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise reinvite_user Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-785 CVE: CVE-2017-14079 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise upload_app_file Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-784 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise assign_policy Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-783 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise remote_selective_wipe_device id SQL Injection Remote Code Execution Vulnerability
ZDI-17-782 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_dep_profile Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-781 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise upload_web_app AppFile SQL Injection Remote Code Execution Vulnerability
ZDI-17-780 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise invite_devices user_name SQL Injection Remote Code Execution Vulnerability
ZDI-17-779 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise update_group Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-778 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise delete_group ParentId SQL Injection Remote Code Execution Vulnerability
ZDI-17-777 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise remote_lock_device Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-776 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise export_devices Device_DeviceGroupId SQL Injection Remote Code Execution Vulnerability
ZDI-17-775 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_subgroup_list id SQL Injection Remote Code Execution Vulnerability
ZDI-17-774 CVE: CVE-2017-14081 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-773 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise notify_devices_to_update id SQL Injection Remote Code Execution Vulnerability
ZDI-17-772 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_device_detail_info id SQL Injection Remote Code Execution Vulnerability
ZDI-17-771 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise query_user search_by SQL Injection Remote Code Execution Vulnerability
ZDI-17-770 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_device_list_brief_by_group id SQL Injection Remote Code Execution Vulnerability
ZDI-17-769 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise search_device_invitations user_name SQL Injection Remote Code Execution Vulnerability
ZDI-17-768 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise edit_user id SQL Injection Remote Code Execution Vulnerability
ZDI-17-767 CVE: CVE-2017-14080 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise widgetforsecurity talker Authentication Bypass Vulnerability
ZDI-17-766 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise change_device_user id SQL Injection Remote Code Execution Vulnerability
ZDI-17-765 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise reset_device_passwd id SQL Injection Remote Code Execution Vulnerability
ZDI-17-764 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_remote_unlockstring Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-763 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_user_list LDAPAccount SQL Injection Remote Code Execution Vulnerability
ZDI-17-762 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise move_group Id SQL Injection Remote Code Execution Vulnerability
ZDI-17-761 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise query_installed_applications application_name SQL Injection Remote Code Execution Vulnerability
ZDI-17-760 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise edit_device id SQL Injection Remote Code Execution Vulnerability
ZDI-17-759 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise locate_device id SQL Injection Remote Code Execution Vulnerability
ZDI-17-758 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise search_user_for_report user_name SQL Injection Remote Code Execution Vulnerability
ZDI-17-757 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise get_device_location Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-756 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise search_users_for_vpp user_name SQL Injection Remote Code Execution Vulnerability
ZDI-17-755 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise query_event_log AdminName SQL Injection Remote Code Execution Vulnerability
ZDI-17-754 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise add_group Name SQL Injection Remote Code Execution Vulnerability
ZDI-17-753 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise remote_wipe_device id SQL Injection Remote Code Execution Vulnerability
ZDI-17-752 CVE: CVE-2017-14081 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-751 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise broadcast_group GroupId SQL Injection Remote Code Execution Vulnerability
ZDI-17-750 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise search_devices group_id SQL Injection Remote Code Execution Vulnerability
ZDI-17-749 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise invite_devices email SQL Injection Remote Code Execution Vulnerability
ZDI-17-748 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise stop_mirroring Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-747 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise change_ios_setting Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-746 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise export_eas_devices Domain SQL Injection Remote Code Execution Vulnerability
ZDI-17-745 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise broadcast_devices Device_DeviceDeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-744 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise notify_groups_to_update DeviceGroupId SQL Injection Remote Code Execution Vulnerability
ZDI-17-743 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise delete_devices Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-742 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise show_eas_devices Domain SQL Injection Remote Code Execution Vulnerability
ZDI-17-741 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise move_devices Device_DeviceDeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-740 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise notify_devices_to_scan Device_DeviceDeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-739 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise notify_groups_to_scan DeviceGroupId SQL Injection Remote Code Execution Vulnerability
ZDI-17-738 CVE: CVE-2017-4924 Published: 2017-09-15
VMware Workstation Shader Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-737 CVE: CVE-2017-14078 Published: 2017-09-15
Trend Micro Mobile Security for Enterprise change_user Device_DeviceId SQL Injection Remote Code Execution Vulnerability
ZDI-17-736 CVE: CVE-2017-8738 Published: 2017-09-15
Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability
ZDI-17-735 CVE: CVE-2017-8720 Published: 2017-09-15
Microsoft Windows PlgBlt Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-734 CVE: CVE-2017-8692 Published: 2017-09-12
Microsoft Windows Uniscribe Bidirectional Text Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-733 CVE: CVE-2016-0165 Published: 2017-09-12
Microsoft Windows win32kfull Integer Overflow Remote Code Execution Vulnerability
ZDI-17-732 CVE: CVE-2017-8743 Published: 2017-09-12
Microsoft Office PowerPoint ppt File Use-After-Free Remote Code Execution Vulnerability
ZDI-17-731 CVE: CVE-2017-8738 Published: 2017-09-12
Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability
ZDI-17-730 CVE: CVE-2017-8744 Published: 2017-09-12
Microsoft Office Word WordPerfect Document Converter Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-729 CVE: CVE-2017-8728 Published: 2017-09-15
Microsoft Windows PDF Library JPEG2000 Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-728 CVE: CVE-2017-8737 Published: 2017-09-12
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-727 CVE: CVE-2017-8631 Published: 2017-09-15
Microsoft Office Excel xlsb File Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-726 CVE: CVE-2017-8750 Published: 2017-09-15
Microsoft Internet Explorer JavaScript WeakMap Type Confusion Remote Code Execution Vulnerability
ZDI-17-725 CVE: CVE-2017-8661 Published: 2017-09-12
Microsoft Edge Undo Command Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-724 CVE: CVE-2017-8676 Published: 2017-09-12
Microsoft Windows Bitmap Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-723 CVE: CVE-2017-8015 Published: 2017-09-12
EMC AppSync Apollo REST Services SQL Injection Information Disclosure Vulnerability
ZDI-17-722 CVE: CVE-2017-13983 Published: 2017-09-07
Hewlett Packard Enterprise Application Performance Management System Health Authentication Bypass Vulnerability
ZDI-17-721 CVE: CVE-2017-13985 Published: 2017-09-07
Hewlett Packard Enterprise Application Performance Management System Health Email Servlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-720 CVE: CVE-2017-13984 Published: 2017-09-07
Hewlett Packard Enterprise Application Performance Management System Health SHExportToExcel Servlet Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-719 CVE: CVE-2017-13982 Published: 2017-09-07
Hewlett Packard Enterprise Application Performance Management System Health UploadManager Servlet Directory Traversal Unrestricted File Upload Vulnerability
ZDI-17-718 CVE: CVE-2017-10953 Published: 2017-09-07
Foxit Reader XFA gotoURL Command Injection Remote Code Execution Vulnerability
ZDI-17-717 CVE: CVE-2017-10954 Published: 2017-09-06
Bitdefender Internet Security PDF Predictor Integer Overflow Remote Code Execution Vulnerability
ZDI-17-716 CVE: CVE-2017-8994 Published: 2017-09-05
Hewlett Packard Enterprise Operations Orchestration Backwards Compatibility Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-715 CVE: CVE-2017-8994 Published: 2017-09-05
Hewlett Packard Enterprise Operations Orchestration Central-Remoting Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-714 CVE: CVE-2017-7071 Published: 2017-09-05
Apple Safari HTMLSlotElement Use-After-Free Remote Code Execution Vulnerability
ZDI-17-713 CVE: CVE-2017-12713 Published: 2017-08-30
Advantech WebAccess Product Installation File Access Control Modification Privilege Escalation Vulnerability
ZDI-17-712 CVE: CVE-2017-12710 Published: 2017-08-30
Advantech WebAccess rmTemplate SQL Injection Information Disclosure Vulnerability
ZDI-17-711 CVE: CVE-2017-8003 Published: 2017-08-25
EMC Data Protection Advisor ScheduledReportResource Directory Traversal Information Disclosure Vulnerability
ZDI-17-710 CVE: CVE-2017-8002 Published: 2017-08-25
EMC Data Protection Advisor RequestHistoryResource orderby SQL Injection Information Disclosure Vulnerability
ZDI-17-709 CVE: CVE-2017-8002 Published: 2017-08-25
EMC Data Protection Advisor ReportQueueResource orderby SQL Injection Information Disclosure Vulnerability
ZDI-17-708 CVE: CVE-2017-8002 Published: 2017-08-25
EMC Data Protection Advisor BaseRestEntityResource orderby SQL Injection Information Disclosure Vulnerability
ZDI-17-707 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation PMSoft Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-706 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation PMSoft Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-705 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-704 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-703 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-702 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-701 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-700 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-699 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-698 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-697 CVE: Published: 2017-08-24
(0Day) Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-696 CVE: CVE-2017-8496 Published: 2017-08-24
Microsoft Edge DOMAttrModified Type Confusion Remote Code Execution Vulnerability
ZDI-17-695 CVE: CVE-2017-12694 Published: 2017-08-23
SpiderControl SCADA Webserver iniNet Directory Traversal Information Disclosure Vulnerability
ZDI-17-694 CVE: CVE-2017-12707 Published: 2017-08-23
SpiderControl SCADA MicroBrowser StaticHTMLTagsFileName Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-693 CVE: CVE-2017-10950 Published: 2017-08-17
Bitdefender Total Security bdfwfpf Kernel Driver Double Free Privilege Escalation Vulnerability
ZDI-17-692 CVE: CVE-2017-10952 Published: 2017-08-17
(0Day) Foxit Reader saveAs Arbitrary File Write Remote Code Execution Vulnerability
ZDI-17-691 CVE: CVE-2017-10951 Published: 2017-08-17
(0Day) Foxit Reader launchURL Command Injection Remote Code Execution Vulnerability
ZDI-17-690 CVE: CVE-2017-12526 Published: 2017-08-14
Hewlett Packard Enterprise Intelligent Management Center wmiConfigContent Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-689 CVE: CVE-2017-12525 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center index Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-688 CVE: CVE-2017-12524 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center operatorGroupSelectContent Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-687 CVE: CVE-2017-12523 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center guiDataDetail Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-686 CVE: CVE-2017-12522 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center quickTemplateSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-685 CVE: CVE-2017-12521 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center userSelectPagingContent Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-684 CVE: CVE-2017-12520 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfAddorModDeviceMonitor Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-683 CVE: CVE-2017-12519 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center faultEventSelectFactWithRecover Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-682 CVE: CVE-2017-12518 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center operationSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-681 CVE: CVE-2017-12517 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center iccSelectDymicParam Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-680 CVE: CVE-2017-12515 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center iccSelectRules Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-679 CVE: CVE-2017-12514 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center devSoftSel Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-678 CVE: CVE-2017-12513 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfSelectTask Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-677 CVE: CVE-2017-12512 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center deviceThresholdConfig Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-676 CVE: CVE-2017-12510 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center iccSelectDeviceSeries Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-675 CVE: CVE-2017-12511 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center dnd Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-674 CVE: CVE-2017-12499 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center select Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-673 CVE: CVE-2017-12509 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center smsRulesDownload Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-672 CVE: CVE-2017-12508 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center operatorGroupTreeSelectContent Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-671 CVE: CVE-2017-12516 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center deploySelectBootrom Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-670 CVE: CVE-2017-12507 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center deploySelectSoftware Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-669 CVE: CVE-2017-12506 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center compareFilesResult Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-668 CVE: CVE-2017-12505 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center iccSelectCommand Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-667 CVE: CVE-2017-12504 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center iccSelectDevType Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-666 CVE: CVE-2017-12503 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center templateSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-665 CVE: CVE-2017-12502 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center reportTaskSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-664 CVE: CVE-2017-12501 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center select Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-663 CVE: CVE-2017-12500 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center ictExpertDownload Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-662 CVE: CVE-2017-12498 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center customTemplateSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-661 CVE: CVE-2017-12497 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center deviceSelect Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-660 CVE: CVE-2017-12496 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center sshConfig Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-659 CVE: CVE-2017-12495 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center selectUserGroup Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-658 CVE: CVE-2017-12494 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center mediaForAction Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-657 CVE: CVE-2017-12493 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center queryCustomCondition Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-656 CVE: CVE-2017-12492 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center saveSelectedInterfaces Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-655 CVE: CVE-2017-12491 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center safeSelectedDevices Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-654 CVE: CVE-2017-12490 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfSelInsServer Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-653 CVE: CVE-2017-12489 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfInsListServer Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-652 CVE: CVE-2017-12488 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfSelItemServer Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-651 CVE: CVE-2017-12487 Published: 2017-08-11
Hewlett Packard Enterprise Intelligent Management Center perfAddFormServer Expression Language Injection Remote Code Execution Vulnerability
ZDI-17-650 CVE: Published: 2017-08-11
Bitdefender Internet Security RAR STM Record Integer Overflow Remote Code Execution Vulnerability
ZDI-17-649 CVE: Published: 2017-08-11
Bitdefender Internet Security Inno File Locations Integer Overflow Remote Code Execution Vulnerability
ZDI-17-648 CVE: Published: 2017-08-11
Bitdefender Internet Security Inno Header Strings Integer Overflow Remote Code Execution Vulnerability
ZDI-17-647 CVE: Published: 2017-08-11
Bitdefender Internet Security NSIS Sections Integer Overflow Remote Code Execution Vulnerability
ZDI-17-646 CVE: CVE-2017-9662 Published: 2017-08-10
Fuji Electric Monitouch V-SFT Insecure Configuration Privilege Escalation Vulnerability
ZDI-17-645 CVE: CVE-2017-9660 Published: 2017-08-10
Fuji Electric Monitouch V-SFT Project File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-644 CVE: CVE-2017-9659 Published: 2017-08-10
Fuji Electric Monitouch V-SFT Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-643 CVE: CVE-2017-9659 Published: 2017-08-10
Fuji Electric Monitouch V-SFT Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-642 CVE: CVE-2017-11274 Published: 2017-08-09
Adobe Digital Editions ePub Font Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-641 CVE: CVE-2017-8641 Published: 2017-08-08
Microsoft Chakra eval Integer Overflow Remote Code Execution Vulnerability
ZDI-17-640 CVE: CVE-2017-8653 Published: 2017-08-08
Microsoft Internet Explorer SVG Layout Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-639 CVE: CVE-2017-8633 Published: 2017-08-08
Microsoft Windows Error Reporting Manager Improper Access Control Privilege Escalation Vulnerability
ZDI-17-638 CVE: CVE-2017-0250 Published: 2017-08-08
Microsoft Windows Jet Engine Library Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-637 CVE: CVE-2017-8503 Published: 2017-08-08
Microsoft Edge XAML File Improper Access Control Privilege Escalation Vulnerability
ZDI-17-636 CVE: CVE-2017-0293 Published: 2017-08-08
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-635 CVE: CVE-2017-8624 Published: 2017-08-08
Microsoft Windows CLFS Driver Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-634 CVE: CVE-2017-3085 Published: 2017-08-08
Adobe Flash URL Redirect Information Disclosure Vulnerability
ZDI-17-633 CVE: CVE-2017-11231 Published: 2017-08-08
Adobe Acrobat Reader DC PDF Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-632 CVE: CVE-2017-11265 Published: 2017-08-08
Adobe Acrobat Pro DC PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-631 CVE: CVE-2017-11256 Published: 2017-08-08
Adobe Acrobat Pro DC XFA AFLayoutInfo Use-After-Free Remote Code Execution Vulnerability
ZDI-17-630 CVE: CVE-2017-11255 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-629 CVE: CVE-2017-11271 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-628 CVE: CVE-2017-11256 Published: 2017-08-09
Adobe Acrobat Pro DC XFA PDEContent Use-After-Free Remote Code Execution Vulnerability
ZDI-17-627 CVE: CVE-2017-11257 Published: 2017-08-09
Adobe Acrobat Pro DC XFA nodes Type Confusion Remote Code Execution Vulnerability
ZDI-17-626 CVE: CVE-2017-11261 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-625 CVE: CVE-2017-11270 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-624 CVE: CVE-2017-11259 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-623 CVE: CVE-2017-11269 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-622 CVE: CVE-2017-11268 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-621 CVE: CVE-2017-11267 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-620 CVE: CVE-2017-11259 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-619 CVE: CVE-2017-11258 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-618 CVE: CVE-2017-11261 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-617 CVE: CVE-2017-11260 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-616 CVE: CVE-2017-11233 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-615 CVE: CVE-2017-11249 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-614 CVE: CVE-2017-11232 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-613 CVE: CVE-2017-11231 Published: 2017-08-08
Adobe Acrobat Pro DC PDF Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-612 CVE: CVE-2017-11252 Published: 2017-08-08
Adobe Acrobat Pro DC PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-611 CVE: CVE-2017-11230 Published: 2017-08-08
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-610 CVE: CVE-2017-11228 Published: 2017-08-08
Adobe Acrobat Pro DC JPEG2000 Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-609 CVE: CVE-2017-11251 Published: 2017-08-08
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-608 CVE: CVE-2017-11244 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-607 CVE: CVE-2017-11216 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-606 CVE: CVE-2017-11227 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-605 CVE: CVE-2017-11242 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-604 CVE: CVE-2017-11248 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-603 CVE: CVE-2017-11246 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-602 CVE: CVE-2017-11245 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-601 CVE: CVE-2017-11244 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-600 CVE: CVE-2017-11243 Published: 2017-08-08
Adobe Acrobat Pro DC XSLT Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-599 CVE: CVE-2017-3121 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-598 CVE: CVE-2017-11242 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-597 CVE: CVE-2017-11241 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-596 CVE: CVE-2017-3122 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-595 CVE: CVE-2017-11239 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-594 CVE: CVE-2017-11239 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-593 CVE: CVE-2017-11238 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-592 CVE: CVE-2017-11237 Published: 2017-08-08
Adobe Acrobat Pro DC Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-591 CVE: CVE-2017-11236 Published: 2017-08-08
Adobe Acrobat Pro DC Forms Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-590 CVE: CVE-2017-11235 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-589 CVE: CVE-2017-11234 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-588 CVE: CVE-2017-11223 Published: 2017-08-08
Adobe Reader DC XFA closeDoc Use-After-Free Remote Code Execution Vulnerability
ZDI-17-587 CVE: CVE-2017-11224 Published: 2017-08-08
Adobe Reader DC XFA loadXML Use-After-Free Remote Code Execution Vulnerability
ZDI-17-586 CVE: CVE-2017-11217 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-585 CVE: CVE-2017-11219 Published: 2017-08-08
Adobe Reader DC XFA topInset Use-After-Free Remote Code Execution Vulnerability
ZDI-17-584 CVE: CVE-2017-11216 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-583 CVE: CVE-2017-3121 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-582 CVE: CVE-2017-11214 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-581 CVE: CVE-2017-3122 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-580 CVE: CVE-2017-11212 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-579 CVE: CVE-2017-11211 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-578 CVE: CVE-2017-11210 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion XPS Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-577 CVE: CVE-2017-11209 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion XPS Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-576 CVE: CVE-2017-3124 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion PCX Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-575 CVE: CVE-2017-3123 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-574 CVE: CVE-2017-3122 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-573 CVE: CVE-2017-3121 Published: 2017-08-08
Adobe Acrobat Pro DC ImageConversion EMF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-572 CVE: CVE-2017-11218 Published: 2017-08-08
Adobe Reader DC XFA Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-571 CVE: CVE-2017-3120 Published: 2017-08-08
Adobe Reader DC XFA Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-570 CVE: CVE-2017-3115 Published: 2017-08-08
Adobe Reader DC URL Parsing Insufficient Verification of Data Authenticity Information Disclosure Vulnerability
ZDI-17-569 CVE: CVE-2017-3113 Published: 2017-08-08
Adobe Reader DC XFA exportAsXFAStr Use-After-Free Remote Code Execution Vulnerability
ZDI-17-568 CVE: CVE-2017-3091 Published: 2017-08-08
Adobe Digital Editions ePub JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-567 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaUsername Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-566 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media DeviceType 3 Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-565 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaPassword Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-564 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Name Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-563 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 SetLangStringHex Out-of-bounds Access Remote Code Execution Vulnerability
ZDI-17-562 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Height Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-561 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT setCameraName Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-560 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 SetPaybackFilePath Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-559 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT createStream Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-558 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Width Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-557 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaPassword Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-556 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaURL Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-555 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Saturation Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-554 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media GetMDInterval Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-553 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaURL Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-552 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Hue Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-551 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaPassword Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-550 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaPassword Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-549 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 SetPaybackFilePath Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-548 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaUsername Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-547 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Brightness Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-546 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess VideoDAQ SDFileEnum Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-545 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Name Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-544 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT setGroupIp Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-543 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT startSoundRecord Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-542 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media ExecuteURLCommand Format String Remote Code Execution Vulnerability
ZDI-17-541 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Height Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-540 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess VideoDAQ SDFileDownload Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-539 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Caption Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-538 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaUsername Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-537 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Contrast Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-536 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess bwocxrun OpenUrlToBufferTimeout Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-535 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT CreateSound Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-534 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT CreateStream Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-533 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT getSectionValue createStream Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-532 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media SetMDInterval Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-531 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 SetLangString Out-of-bounds Access Remote Code Execution Vulnerability
ZDI-17-530 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT startSoundRecord Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-529 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess RtspVapgDecoderNew2 PMSettingData3D Width Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-528 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaURL Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-527 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess TpMegaJVT Set_MD_Mode Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-526 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaURL Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-525 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess nvA1Media Connect MediaUsername Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-524 CVE: Published: 2017-08-07
(0Day) Advantech WebAccess ExlViewer getTemplateDetailByName template SQL Injection Information Disclosure Vulnerability
ZDI-17-523 CVE: CVE-2017-10949 Published: 2017-08-02
Dell Storage Manager EmWebsiteServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-522 CVE: CVE-2017-11393 Published: 2017-08-02
Trend Micro OfficeScan Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-521 CVE: CVE-2017-11394 Published: 2017-08-02
Trend Micro OfficeScan Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-520 CVE: Published: 2017-08-07
(0Day) Eaton ELCSoft ELCSimulator Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-519 CVE: Published: 2017-08-07
(0Day) Eaton ELCSoft Project File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-518 CVE: CVE-2017-9636 Published: 2017-08-01
Mitsubishi Electric E-Designer BEMatsushita Driver Configuration TCP_IP_Address Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-517 CVE: CVE-2017-9636 Published: 2017-08-01
Mitsubishi Electric E-Designer BEYaskawaSMC Driver Configuration IPAddress Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-516 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer BECMpi Driver Configuration ClockDevice Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-515 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer BES7IsoTcp Driver Configuration ClockDevice Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-514 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer BEMBSlave Driver Configuration CommErrIO Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-513 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer BEModbus Driver Configuration ClockDevice Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-512 CVE: CVE-2017-9636 Published: 2017-08-01
Mitsubishi Electric E-Designer BEGalil Driver Configuration IPAddress Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-511 CVE: CVE-2017-9636 Published: 2017-08-01
Mitsubishi Electric E-Designer BECoDeSysARTI Driver Configuration IPAddress0 Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-510 CVE: CVE-2017-9636 Published: 2017-08-01
Mitsubishi Electric E-Designer BEMicroLogix Driver Configuration TCP_IP_Address Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-509 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer BEComliSlave Driver Configuration Status_bit Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-508 CVE: CVE-2017-9638 Published: 2017-08-01
Mitsubishi Electric E-Designer SetupAlarm Font Property Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-507 CVE: CVE-2017-9634 Published: 2017-08-01
Mitsubishi Electric E-Designer Symbol xSize Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-506 CVE: CVE-2017-9634 Published: 2017-08-01
Mitsubishi Electric E-Designer TxStaticString Col Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-505 CVE: CVE-2017-8011 Published: 2017-08-01
Dell EMC VNX Monitoring and Reporting Scheduler Static Credentials Remote Code Execution Vulnerability
ZDI-17-504 CVE: CVE-2017-11392 Published: 2017-07-31
Trend Micro InterScan Messaging Security Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-503 CVE: CVE-2017-11382 Published: 2017-07-31
Trend Micro Deep Discovery Email Inspector kdump_setting Denial of Service Vulnerability
ZDI-17-502 CVE: CVE-2017-11391 Published: 2017-07-31
Trend Micro InterScan Messaging Security Proxy Command Injection Remote Code Execution Vulnerability
ZDI-17-501 CVE: CVE-2017-11390 Published: 2017-07-31
Trend Micro Control Manager BasePageSessionExpire External Entity Processing Information Disclosure Vulnerability
ZDI-17-500 CVE: CVE-2017-11389 Published: 2017-07-31
Trend Micro Control Manager cmdHandlerFileHandling Directory Traversal Remote Code Execution Vulnerability
ZDI-17-499 CVE: CVE-2017-11388 Published: 2017-07-31
Trend Micro Control Manager RestfulServiceUtility.NET SQL Injection Remote Code Execution Vulnerability
ZDI-17-498 CVE: CVE-2017-11388 Published: 2017-07-31
Trend Micro Control Manager RestfulServiceUtility.NET SQL Injection Remote Code Execution Vulnerability
ZDI-17-497 CVE: CVE-2017-11387 Published: 2017-07-31
Trend Micro Control Manager Debug Level Authentication Bypass Information Disclosure Vulnerability
ZDI-17-496 CVE: CVE-2017-11386 Published: 2017-08-02
Trend Micro Control Manager cmdHandlerNewReportScheduler SQL Injection Remote Code Execution Vulnerability
ZDI-17-495 CVE: CVE-2017-11385 Published: 2017-08-02
Trend Micro Control Manager cmdHandlerStatusMonitor SQL Injection Remote Code Execution Vulnerability
ZDI-17-494 CVE: CVE-2017-11384 Published: 2017-08-02
Trend Micro Control Manager cmdHandlerLicenseManager SQL Injection Remote Code Execution Vulnerability
ZDI-17-493 CVE: CVE-2017-11383 Published: 2017-08-02
Trend Micro Control Manager cmdHandlerTVCSCommander SQL Injection Remote Code Execution Vulnerability
ZDI-17-492 CVE: Published: 2017-07-20
AlienVault Unified Security Management nfcapd Process_ipfix_template_withdraw Heap-based Buffer Overflow Remove Code Execution Vulnerability
ZDI-17-491 CVE: CVE-2017-4997 Published: 2017-07-19
EMC VMAX3 VASA Provider UploadConfigurator Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-490 CVE: CVE-2017-7053 Published: 2017-07-19
Apple iTunes iPodService Privilege Escalation Vulnerability
ZDI-17-489 CVE: CVE-2017-7052 Published: 2017-07-19
Apple Safari Frame Use-After-Free Remote Code Execution Vulnerability
ZDI-17-488 CVE: CVE-2017-0285 Published: 2017-07-14
Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-487 CVE: CVE-2017-8465 Published: 2017-07-12
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-486 CVE: CVE-2017-3080 Published: 2017-07-12
Adobe Flash BrokerCreateFile Broker Method Information Disclosure Vulnerability
ZDI-17-485 CVE: CVE-2017-9639 Published: 2017-07-12
Fuji Electric V-Server VPR File Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-484 CVE: CVE-2017-8956 Published: 2017-08-07
Hewlett Packard Enterprise Intelligent Management Center dbman Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-483 CVE: CVE-2017-8954 Published: 2017-08-07
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10005 Command Injection Remote Code Execution Vulnerability
ZDI-17-482 CVE: CVE-2017-8955 Published: 2017-08-07
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10006 Arbitrary File Deletion Denial of Service Vulnerability
ZDI-17-481 CVE: CVE-2017-8957 Published: 2017-08-07
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10005 Command Injection Remote Code Execution Vulnerability
ZDI-17-480 CVE: CVE-2017-8601 Published: 2017-07-11
Microsoft Chakra Array JIT Optimization Type Confusion Remote Code Execution Vulnerability
ZDI-17-479 CVE: CVE-2017-8601 Published: 2017-07-11
Microsoft Chakra Array JIT Optimization Type Confusion Remote Code Execution Vulnerability
ZDI-17-478 CVE: CVE-2017-8601 Published: 2017-07-11
Microsoft Chakra Typed Array JIT Optimization Use-After-Free Remote Code Execution Vulnerability
ZDI-17-477 CVE: CVE-2017-3100 Published: 2017-07-11
Adobe Flash Player BitmapData applyFilter Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-476 CVE: CVE-2017-8590 Published: 2017-07-11
(Pwn2Own) Microsoft Windows CLFS Driver Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-475 CVE: CVE-2017-8598 Published: 2017-08-01
Microsoft Windows JavaScript super Keyword Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-474 CVE: CVE-2017-8580 Published: 2017-07-31
(Pwn2Own) Microsoft Windows Palette Object Use-After-Free Privilege Escalation Vulnerability
ZDI-17-473 CVE: CVE-2017-8578 Published: 2017-07-11
(Pwn2Own) Microsoft Windows PlgBlt Integer Overflow Privilege Escalation Vulnerability
ZDI-17-472 CVE: CVE-2017-8577 Published: 2017-07-11
(Pwn2Own) Microsoft Windows GDI Region Object Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-471 CVE: CVE-2017-8486 Published: 2017-07-11
(Pwn2Own) Microsoft Windows win32kfull CopyOutputString Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-470 CVE: CVE-2017-8467 Published: 2017-07-11
(Pwn2Own) Microsoft Windows fnHKINLPRECT Untrusted Pointer Dereference Privilege Escalation Vulnerability
ZDI-17-469 CVE: CVE-2017-8579 Published: 2017-07-11
(Pwn2Own) Microsoft Windows D3DKMTCreateAllocation Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-468 CVE: CVE-2017-0291 Published: 2017-07-11
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-467 CVE: CVE-2017-0291 Published: 2017-07-11
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-466 CVE: CVE-2017-0291 Published: 2017-07-11
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-465 CVE: CVE-2017-6023 Published: 2017-07-11
Fatek Automation PLC Ethernet Module Configuration Tool Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-464 CVE: CVE-2017-0236 Published: 2017-07-10
(Pwn2Own) Microsoft Chakra ArrayBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-463 CVE: CVE-2017-8575 Published: 2017-07-10
(Pwn2Own) Microsoft Windows basicrender WarpKMEscape Information Disclosure Vulnerability
ZDI-17-462 CVE: CVE-2017-5053 Published: 2017-07-10
(Pwn2Own) Google Chrome Array indexOf Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-461 CVE: CVE-2017-10948 Published: 2017-07-07
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-460 CVE: CVE-2017-10947 Published: 2017-07-07
Foxit Reader print Use-After-Free Remote Code Execution Vulnerability
ZDI-17-459 CVE: CVE-2017-10946 Published: 2017-07-07
Foxit Reader setItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-458 CVE: CVE-2017-10945 Published: 2017-07-07
Foxit Reader App alert Use-After-Free Remote Code Execution Vulnerability
ZDI-17-457 CVE: CVE-2017-10944 Published: 2017-07-07
Foxit Reader ObjStm Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-456 CVE: CVE-2017-10943 Published: 2017-07-07
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-455 CVE: CVE-2017-10942 Published: 2017-07-07
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-454 CVE: CVE-2017-10941 Published: 2017-07-07
Foxit Reader AFParseDateEx Use-After-Free Remote Code Execution Vulnerability
ZDI-17-453 CVE: CVE-2017-10940 Published: 2017-07-07
Joyent Smart Data Center Docker API Zone Escape Privilege Escalation Vulnerability
ZDI-17-452 CVE: CVE-2017-12705 Published: 2017-08-15
(0Day) Advantech WebOP Designer Project File Heap Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-451 CVE: CVE-2017-8553 Published: 2017-06-27
(Pwn2Own) Microsoft Windows XPS Document Writer Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-450 CVE: CVE-2017-8576 Published: 2017-06-27
(Pwn2Own) Microsoft Windows WarpKMSubmitCommandVirtual Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-449 CVE: CVE-2017-6636 Published: 2017-06-26
Cisco Prime Collaboration Provisioning Logs Directory Improper Access Control Information Disclosure Vulnerability
ZDI-17-448 CVE: CVE-2017-6637 Published: 2017-06-26
Cisco Prime Collaboration Provisioning logconfigtracer Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-447 CVE: CVE-2017-6621 Published: 2017-06-26
Cisco Prime Collaboration Provisioning logconfigtracer Directory Traversal Information Disclosure Vulnerability
ZDI-17-446 CVE: CVE-2017-6635 Published: 2017-06-26
Cisco Prime Collaboration Provisioning licensestatus Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-445 CVE: CVE-2017-6622 Published: 2017-06-26
Cisco Prime Collaboration Provisioning ScriptMgr Servlet Authentication Bypass Remote Code Execution Vulnerability
ZDI-17-444 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File Memory Corruption Remote Code Execution Vulnerability
ZDI-17-443 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File Memory Corruption Remote Code Execution Vulnerability
ZDI-17-442 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File CImageList Use-After-Free Remote Code Execution Vulnerability
ZDI-17-441 CVE: CVE-2017-2454 Published: 2017-06-22
Apple Safari Node Use-After-Free Remote Code Execution Vulnerability
ZDI-17-440 CVE: Published: 2017-06-21
(0Day) Lepide LepideAuditor Suite Malicious Server Command Injection Remote Code Execution Vulnerability
ZDI-17-439 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddTabShapeEmptyPage Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-438 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddStringUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-437 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddIntUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-436 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddFloatUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-435 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS RemoveShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-434 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS FindPortFromIndex Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-433 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddDoubleUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-432 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddDateUserProperty AddDefaultPort Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-431 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddColorUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-430 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddBoolUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-429 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddShapePoint Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-428 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS CloneShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-427 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCSIMPLE PositionShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-426 CVE: Published: 2017-08-30
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCHMI UpdateShapeGeo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-425 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCUML SetShapeWithLabelShow Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-424 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDIAGRAM InsertShapePoint Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-423 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCPRINT FlashShape Untrusted Pointer Dreference Remote Code Execution Vulnerability
ZDI-17-422 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKDRAWCAD RotateShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-421 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW MoveShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-420 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER RotateFromCenter Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-419 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER MoveCenterTo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-418 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER ScaleFromCenter Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-417 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER SelectShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-416 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER AddShapeWithoutUndo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-415 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER UpdateControl Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-414 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER StartRichTextEdit Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-413 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER Multiple Methods Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-412 CVE: CVE-2017-2530 Published: 2017-06-21
Apple Safari Element Use-After-Free Remote Code Execution Vulnerability
ZDI-17-411 CVE: Published: 2017-06-15
Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-410 CVE: Published: 2017-06-14
Novell ZENworks Reporting Appliance Directory Traversal Arbitrary File Creation Vulnerability
ZDI-17-409 CVE: CVE-2017-0285 Published: 2017-06-13
Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-408 CVE: CVE-2017-3082 Published: 2017-06-13
Adobe Flash LocaleID determinePreferredLocales Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-407 CVE: CVE-2017-3084 Published: 2017-06-13
Adobe Flash AuditudeSettings clone Use-After-Free Remote Code Execution Vulnerability
ZDI-17-406 CVE: CVE-2017-3083 Published: 2017-06-13
Adobe Flash Profile Use-After-Free Remote Code Execution Vulnerability
ZDI-17-405 CVE: CVE-2017-8532 Published: 2017-06-13
Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-404 CVE: CVE-2017-8466 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-403 CVE: CVE-2017-8468 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-402 CVE: CVE-2017-8465 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-401 CVE: CVE-2017-8547 Published: 2017-06-13
Microsoft Internet Explorer InsertRow Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-400 CVE: CVE-2017-0296 Published: 2017-06-13
(Pwn2Own) Microsoft Windows TdxCreateTransportAddress Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-399 CVE: CVE-2017-3075 Published: 2017-06-13
Adobe Flash XML load Use-After-Free Remote Code Execution Vulnerability
ZDI-17-398 CVE: CVE-2017-8460 Published: 2017-06-13
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-397 CVE: CVE-2017-0292 Published: 2017-06-13
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-396 CVE: Published: 2017-06-13
Trend Micro Maximum Security tmusa Time-Of-Check/Time-Of-Use Privilege Escalation Vulnerability
ZDI-17-395 CVE: Published: 2017-06-13
Trend Micro Maximum Security tmusa Kernel Driver Untrusted Pointer Dereference Denial of Service Vulnerability
ZDI-17-394 CVE: CVE-2016-8211 Published: 2017-06-12
EMC Data Protection Advisor ImageServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-393 CVE: CVE-2017-8947 Published: 2017-06-12
Hewlett Packard Enterprise Universal CMDB UploadFileOnUIServerServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-392 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Local Privilege Escalation Vulnerability
ZDI-17-391 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Embedded Session ID Authentication Bypass Vulnerability
ZDI-17-390 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder css.inc Directory Traversal Information Disclosure Vulnerability
ZDI-17-389 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder runscript Directory Traversal Information Disclosure Vulnerability
ZDI-17-388 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder file_picker Directory Traversal Arbitrary File Upload Remote Code Execution Vulnerability
ZDI-17-387 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder SOAP Request Remote SQL Command Execution Vulnerability
ZDI-17-386 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Error Message Path Information Disclosure Vulnerability
ZDI-17-385 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder error Information Disclosure Vulnerability
ZDI-17-384 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder editobject SQL Injection Remote Code Execution Vulnerability
ZDI-17-383 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder xmlserver SQL Injection Remote Code Execution Vulnerability
ZDI-17-382 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder track_getdata SQL Injection Remote Code Execution Vulnerability
ZDI-17-381 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder nfcserver SQL Injection Remote Code Execution Vulnerability
ZDI-17-380 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder localize SQL Injection Remote Code Execution Vulnerability
ZDI-17-379 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder syslog_getdata SQL Injection Remote Code Execution Vulnerability
ZDI-17-378 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder track_import_export SQL Injection Remote Code Execution Vulnerability
ZDI-17-377 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder HTTP Cookie SQL Injection Remote Code Execution Vulnerability
ZDI-17-376 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder editscript Directory Traversal Remote Code Execution Vulnerability
ZDI-17-375 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder message_simple_html reboot Parameter Denial of Service Vulnerability
ZDI-17-374 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder loadtemplate SQL Injection Remote Code Execution Vulnerability
ZDI-17-373 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder sendmail email_attachment Parameter Absolute Path Traversal Information Disclosure Vulnerability
ZDI-17-372 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Hard-Coded Password Remote Code Execution Vulnerability
ZDI-17-371 CVE: CVE-2017-0266 Published: 2017-05-30
Microsoft Windows JavaScript Array Type Confusion Remote Code Execution Vulnerability
ZDI-17-370 CVE: Published: 2017-05-30
(Pwn2Own) Apple macOS nsurlstoraged Null Pointer Dereference Denial of Service Vulnerability
ZDI-17-369 CVE: CVE-2017-7002 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL matchinfo Type Confusion Remote Code Execution Vulnerability
ZDI-17-368 CVE: CVE-2017-7001 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL offsets Type Confusion Remote Code Execution Vulnerability
ZDI-17-367 CVE: CVE-2017-7000 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL snippet Type Confusion Remote Code Execution Vulnerability
ZDI-17-366 CVE: CVE-2017-6983 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL optimize Type Confusion Remote Code Execution Vulnerability
ZDI-17-365 CVE: CVE-2017-8944 Published: 2017-05-18
Hewlett Packard Enterprise Cloud Optimizer DownloadServlet Information Disclosure Vulnerability
ZDI-17-364 CVE: CVE-2017-2543 Published: 2017-05-18
(Pwn2Own) Apple macOS AppleMultitouchDevice Use-After-Free Privilege Escalation Vulnerability
ZDI-17-363 CVE: CVE-2017-2542 Published: 2017-05-18
(Pwn2Own) Apple macOS AppleMultitouchDevice Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-362 CVE: CVE-2017-2538 Published: 2017-05-18
(Pwn2Own) Apple Safari ProcessingInstruction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-361 CVE: CVE-2017-2539 Published: 2017-05-18
(Pwn2Own) Apple Safari WebGLRenderingContextBase drawElements Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-360 CVE: CVE-2017-6991 Published: 2017-05-18
(Pwn2Own) Apple Safari WebSQL Type Confusion Information Disclosure Vulnerability
ZDI-17-359 CVE: CVE-2017-2546 Published: 2017-05-18
(Pwn2Own) Apple macOS smbfs Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-358 CVE: CVE-2017-2536 Published: 2017-05-18
(Pwn2Own) Apple Safari Spread Operator Integer Overflow Remote Code Execution Vulnerability
ZDI-17-357 CVE: CVE-2017-2533 Published: 2017-05-18
(Pwn2Own) Apple macOS diskarbitrationd Time-Of-Check/Time-Of-Use Privilege Escalation Vulnerability
ZDI-17-356 CVE: CVE-2017-2535 Published: 2017-05-18
(Pwn2Own) Apple macOS authd Privilege Escalation Vulnerability
ZDI-17-355 CVE: CVE-2017-2548 Published: 2017-05-18
(Pwn2Own) Apple macOS WindowServer XSetWindowListBrightness Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-354 CVE: CVE-2017-2547 Published: 2017-05-18
(Pwn2Own) Apple Safari B3 Optimization Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-353 CVE: CVE-2017-2537 Published: 2017-05-18
(Pwn2Own) Apple macOS WindowServer Dragging Space Use-After-Free Privilege Escalation Vulnerability
ZDI-17-352 CVE: CVE-2017-6990 Published: 2017-05-18
(Pwn2Own) Apple macOS HFS Uninitialized Memory Information Disclosure Privilege Escalation Vulnerability
ZDI-17-351 CVE: CVE-2017-2545 Published: 2017-05-15
(Pwn2Own) Apple macOS IOGraphic Use-After-Free Privilege Escalation Vulnerability
ZDI-17-350 CVE: CVE-2017-2544 Published: 2017-05-15
(Pwn2Own) Apple Safari Array concat Integer Overflow Remote Code Execution Vulnerability
ZDI-17-349 CVE: CVE-2017-2541 Published: 2017-05-15
(Pwn2Own) Apple macOS WindowServer _XGetWindowMovementGroup Stack-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-348 CVE: CVE-2017-2540 Published: 2017-05-15
(Pwn2Own) Apple macOS WindowServer _XGetConnectionPSN Information Disclosure Vulnerability
ZDI-17-347 CVE: CVE-2017-2534, CVE-2017-6977 Published: 2017-05-15
(Pwn2Own) Apple macOS speechsynthesisd Unsigned Dylib Loading Privilege Escalation Vulnerability
ZDI-17-346 CVE: CVE-2017-2506 Published: 2017-05-15
Apple Safari RenderElement Use-After-Free Remote Code Execution Vulnerability
ZDI-17-345 CVE: CVE-2017-2526 Published: 2017-05-15
Apple Safari RenderInline Use-After-Free Remote Code Execution Vulnerability
ZDI-17-344 CVE: CVE-2017-2525 Published: 2017-05-15
Apple Safari RenderLayer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-343 CVE: CVE-2017-5819 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Command Injection Remote Code Execution Vulnerability
ZDI-17-342 CVE: CVE-2017-5818 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Arbitrary File Deletion Denial of Service Vulnerability
ZDI-17-341 CVE: CVE-2017-5817 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Command Injection Remote Code Execution Vulnerability
ZDI-17-340 CVE: CVE-2017-5816 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10008 Command Injection Remote Code Execution Vulnerability
ZDI-17-339 CVE: CVE-2017-5821 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10006 Command Injection Remote Code Execution Vulnerability
ZDI-17-338 CVE: CVE-2017-5823 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10013 Command Injection Remote Code Execution Vulnerability
ZDI-17-337 CVE: CVE-2017-5822 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10010 Arbitrary File Write Remote Code Execution Vulnerability
ZDI-17-336 CVE: CVE-2017-5820 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10004 Command Injection Remote Code Execution Vulnerability
ZDI-17-335 CVE: CVE-2017-3040 Published: 2017-05-12
Adobe Reader DC PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-334 CVE: Published: 2017-05-11
Bitdefender Internet Security Dalvik Integer Overflow Remote Code Execution Vulnerability
ZDI-17-333 CVE: Published: 2017-05-11
Bitdefender Internet Security cevakrnl Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-332 CVE: CVE-2017-5812 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation PermissionFilter Authentication Bypass Vulnerability
ZDI-17-331 CVE: CVE-2017-5810 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation RedirectServlet SQL Injection Remote Code Execution Vulnerability
ZDI-17-330 CVE: CVE-2017-5811 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation TrueControl Management Engine Service FileServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-329 CVE: CVE-2017-0240 Published: 2017-05-10
(Pwn2Own) Microsoft Edge AudioBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-328 CVE: CVE-2017-0240 Published: 2017-05-10
(Pwn2Own) Microsoft Edge AudioBuffer Use-After-Free Information Disclosure Vulnerability
ZDI-17-327 CVE: CVE-2017-0238 Published: 2017-05-10
(Pwn2Own) Microsoft Chakra Array unshift Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-326 CVE: CVE-2017-0228 Published: 2017-05-10
(Pwn2Own) Microsoft Chakra Array Use-After-Free Remote Code Execution Vulnerability
ZDI-17-324 CVE: CVE-2017-0234 Published: 2017-05-10
(Pwn2Own) Microsoft Edge ArrayBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-323 CVE: CVE-2017-0226 Published: 2017-05-10
Microsoft Internet Explorer Enhanced Protected Mode Sandbox Escape Vulnerability
ZDI-17-322 CVE: CVE-2017-7929 Published: 2017-05-04
Advantech WebAccess odbcPg4 Absolute Path Traversal File Denial of Service Vulnerability
ZDI-17-321 CVE: CVE-2017-2491 Published: 2017-05-04
(Pwn2Own) Apple Safari String replace Use-After-Free Remote Code Execution Vulnerability
ZDI-17-320 CVE: CVE-2017-5448 Published: 2017-05-03
Mozilla Firefox ClearKeyDecryptor Integer Overflow Remote Code Execution Vulnerability
ZDI-17-319 CVE: Published: 2017-05-03
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-318 CVE: Published: 2017-05-03
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-317 CVE: CVE-2017-5806 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm SSID Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-316 CVE: CVE-2017-5805 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm UserName Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-315 CVE: CVE-2017-5804 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm Integer Overflow Remote Code Execution Vulnerability
ZDI-17-314 CVE: CVE-2017-5059 Published: 2017-05-02
Google Chrome List Item Marker Type Confusion Remote Code Execution Vulnerability
ZDI-17-313 CVE: Published: 2017-04-21
Foxit Reader getAnnot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-312 CVE: Published: 2017-04-21
Foxit Reader Annotations lock Use-After-Free Remote Code Execution Vulnerability
ZDI-17-311 CVE: Published: 2017-04-21
Foxit Reader Annotations style Use-After-Free Remote Code Execution Vulnerability
ZDI-17-310 CVE: Published: 2017-04-21
Foxit Reader Annotations opacity Use-After-Free Remote Code Execution Vulnerability
ZDI-17-309 CVE: Published: 2017-04-21
Foxit Reader Annotations arrowEnd Use-After-Free Remote Code Execution Vulnerability
ZDI-17-308 CVE: Published: 2017-04-21
Foxit Reader importAnXFDF Use-After-Free Remote Code Execution Vulnerability
ZDI-17-307 CVE: Published: 2017-04-21
Foxit Reader Field setAction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-306 CVE: Published: 2017-04-21
Foxit Reader Link setAction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-305 CVE: Published: 2017-04-21
Foxit Reader getURL Use-After-Free Remote Code Execution Vulnerability
ZDI-17-304 CVE: Published: 2017-04-21
Foxit Reader spawnPageFromTemplate Use-After-Free Remote Code Execution Vulnerability
ZDI-17-303 CVE: Published: 2017-04-21
Foxit Reader Field insertItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-302 CVE: Published: 2017-04-21
Foxit Reader scroll Use-After-Free Remote Code Execution Vulnerability
ZDI-17-301 CVE: Published: 2017-04-21
Foxit Reader exportAsFDF Use-After-Free Remote Code Execution Vulnerability
ZDI-17-300 CVE: Published: 2017-04-21
Foxit Reader resetForm Use-After-Free Information Disclosure Vulnerability
ZDI-17-299 CVE: Published: 2017-04-21
Foxit Reader Field buttonSetCaption Use-After-Free Remote Code Execution Vulnerability
ZDI-17-298 CVE: Published: 2017-04-21
Foxit Reader response Use-After-Free Remote Code Execution Vulnerability
ZDI-17-297 CVE: Published: 2017-04-21
Foxit Reader Field getItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-296 CVE: Published: 2017-04-21
Foxit Reader addAnnot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-295 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-294 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-293 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-292 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-291 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-290 CVE: CVE-2017-4910 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Read Privilege Escalation Vulnerability
ZDI-17-289 CVE: CVE-2017-4908 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-288 CVE: CVE-2017-3230 Published: 2017-04-19
Oracle Fusion Middleware MapViewer FileUploaderServlet fileName Remote Code Execution Vulnerability
ZDI-17-287 CVE: CVE-2017-2994 Published: 2017-04-19
Adobe Flash PSDKEvent Use-After-Free Remote Code Execution Vulnerability
ZDI-17-286 CVE: CVE-2017-6020 Published: 2017-04-12
LAquis SCADA Software Web Server Directory Traversal Information Disclosure Vulnerability
ZDI-17-285 CVE: CVE-2017-0155 Published: 2017-04-11
Microsoft Windows Font Object Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-284 CVE: CVE-2017-0158 Published: 2017-04-11
Microsoft Windows ADO Array-Type Parameter Use-After-Free Information Disclosure Vulnerability
ZDI-17-283 CVE: Published: 2017-04-11
Trend Micro Deep Discovery Email Inspector policy_setting Arbitrary File Upload Remote Code Execution Vulnerability
ZDI-17-282 CVE: CVE-2017-3057 Published: 2017-08-01
(Pwn2Own) Adobe Reader DC Collab documentToStream Use-After-Free Remote Code Execution Vulnerability
ZDI-17-281 CVE: CVE-2017-3056 Published: 2017-08-01
(Pwn2Own) Adobe Reader DC util streamFromString Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-280 CVE: CVE-2017-3055 Published: 2017-04-11
(Pwn2Own) Adobe Reader DC JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-279 CVE: CVE-2017-3063 Published: 2017-08-01
(Pwn2Own) Adobe Flash NetStream Use-After-Free Remote Code Execution Vulnerability
ZDI-17-278 CVE: CVE-2017-3062 Published: 2017-04-11
(Pwn2Own) Adobe Flash TextField Attribute Array Use-After-Free Remote Code Execution Vulnerability
ZDI-17-277 CVE: CVE-2017-3053 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-276 CVE: CVE-2017-3052 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-275 CVE: CVE-2017-3051 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-274 CVE: CVE-2017-3050 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion GIF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-273 CVE: CVE-2017-3049 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-272 CVE: CVE-2017-3048 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-271 CVE: CVE-2017-3047 Published: 2017-04-11
Adobe Reader DC Annotations Object Use-After-Free Remote Code Execution Vulnerability
ZDI-17-270 CVE: CVE-2017-3046 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-269 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-268 CVE: CVE-2017-3045 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-267 CVE: CVE-2017-3044 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-266 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-265 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-264 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-263 CVE: CVE-2017-3043 Published: 2017-04-11
Adobe Reader DC Collab shareFile Information Disclosure Vulnerability
ZDI-17-262 CVE: CVE-2017-3036 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion PCX Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-261 CVE: CVE-2017-3035 Published: 2017-04-11
Adobe Reader DC XFA dashDotDot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-260 CVE: CVE-2017-3034 Published: 2017-04-11
Adobe Reader DC XFA Array Index Integer Underflow Remote Code Execution Vulnerability
ZDI-17-259 CVE: CVE-2017-3031 Published: 2017-04-11
Adobe Reader DC Nested Variables Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-258 CVE: CVE-2017-3033 Published: 2017-04-11
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-257 CVE: CVE-2017-3032 Published: 2017-04-11
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-256 CVE: CVE-2017-3031 Published: 2017-04-11
Adobe Reader DC XSLT Namespace Node Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-255 CVE: CVE-2017-3029 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-254 CVE: CVE-2017-3028 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-253 CVE: CVE-2017-3023 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-252 CVE: CVE-2017-3022 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-251 CVE: CVE-2017-3021 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-250 CVE: CVE-2017-3020 Published: 2017-04-11
Adobe Reader DC Weblink Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-249 CVE: CVE-2017-3019 Published: 2017-04-11
Adobe Reader DC PRC Parsing Out-Of-Bound Read Remote Code Execution Vulnerability
ZDI-17-248 CVE: CVE-2017-3060 Published: 2017-04-11
Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-247 CVE: CVE-2017-3060 Published: 2017-04-11
Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-246 CVE: CVE-2017-3059 Published: 2017-04-11
Adobe Flash AS2 New Opcode Use-After-Free Remote Code Execution Vulnerability
ZDI-17-245 CVE: CVE-2017-3058 Published: 2017-04-11
Adobe Flash ByteArray Use-After-Free Remote Code Execution Vulnerability
ZDI-17-244 CVE: Published: 2017-04-05
Trend Micro Control Manager cgiShowClientAdm Missing Authentication for Critical Function Vulnerability
ZDI-17-243 CVE: Published: 2017-04-05
Trend Micro Smart Protection Server wcs_bwlists_handler Command Injection Remote Code Execution Vulnerability
ZDI-17-242 CVE: CVE-2017-3009 Published: 2017-04-05
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-241 CVE: CVE-2017-2463 Published: 2017-03-30
Apple Safari RenderBox Use-After-Free Remote Code Execution Vulnerability
ZDI-17-240 CVE: CVE-2017-7184 Published: 2017-03-30
(Pwn2Own) Linux Kernel XFRM Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-239 CVE: CVE-2017-4904 Published: 2017-03-30
(Pwn2Own) VMware Workstation Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-238 CVE: CVE-2017-4905 Published: 2017-03-30
(Pwn2Own) VMware Workstation Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-237 CVE: CVE-2017-4903 Published: 2017-03-30
(Pwn2Own) VMware Workstation SVGA Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-236 CVE: CVE-2017-4902 Published: 2017-03-30
VMware Workstation SVGA Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-235 CVE: CVE-2017-4902 Published: 2017-03-30
VMware Workstation SVGA Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-234 CVE: CVE-2017-5428 Published: 2017-03-30
(Pwn2Own) Mozilla Firefox createImageBitmap Integer Overflow Remote Code Execution Vulnerability
ZDI-17-233 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance transparent_setting CRLF Injection Authentication Bypass Vulnerability
ZDI-17-232 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance TestConfigure Command Injection Remote Code Execution Vulnerability
ZDI-17-231 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration datagateIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-230 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isMgntDHCPIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-229 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance PacFileManagement delete_pac_files Command Injection Remote Code Execution Vulnerability
ZDI-17-228 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration hostname Command Injection Remote Code Execution Vulnerability
ZDI-17-227 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigBackup Information Disclosure Vulnerability
ZDI-17-226 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setHostname Command Injection Remote Code Execution Vulnerability
ZDI-17-225 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance uihelper Privilege Escalation Vulnerability
ZDI-17-224 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration Command Injection Remote Code Execution Vulnerability
ZDI-17-223 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration manageIP6 Command Injection Remote Code Execution Vulnerability
ZDI-17-222 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration gateChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-221 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataIP6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-220 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ContentCacheSSAction Command Injection Remote Code Execution Vulnerability
ZDI-17-219 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance PacFileManagement Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-218 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setMgmtIPConfig Command Injection Remote Code Execution Vulnerability
ZDI-17-217 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance DomainList TestingADKerberos Command Injection Remote Code Execution Vulnerability
ZDI-17-216 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManagePatches untarPatchFile Command Injection Remote Code Execution Vulnerability
ZDI-17-215 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgmtPingChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-214 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance DeploymentWizardAction GetClusterInfo Command Injection Remote Code Execution Vulnerability
ZDI-17-213 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataPingChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-212 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration primaryDNS6 Command Injection Remote Code Execution Vulnerability
ZDI-17-211 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance VerboseLog Directory Traversal Information Disclosure Vulnerability
ZDI-17-210 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setMgmtIPConfig Command Injection Remote Code Execution Vulnerability
ZDI-17-209 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance LogSettingHandler doPostMountDevice Command Injection Remote Code Execution Vulnerability
ZDI-17-208 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManagePatches rollbackPatch Command Injection Remote Code Execution Vulnerability
ZDI-17-207 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgmtIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-206 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ReportHandler DoCmd Command Injection Remote Code Execution Vulnerability
ZDI-17-205 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration manageEth Command Injection Remote Code Execution Vulnerability
ZDI-17-204 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isDHCP Command Injection Remote Code Execution Vulnerability
ZDI-17-203 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig static IP Information Command Injection Remote Code Execution Vulnerability
ZDI-17-202 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ClusterManagement ChangeNodeSetting Command Injection Remote Code Execution Vulnerability
ZDI-17-201 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance config_date_time Command Injection Remote Code Execution Vulnerability
ZDI-17-200 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance WmiDCDetector getAdHost Command Injection Remote Code Execution Vulnerability
ZDI-17-199 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance LogDelete processRequest method Directory Traversal Denial of Service Vulnerability
ZDI-17-198 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgnt_gateway6 Command Injection Remote Code Execution Vulnerability
ZDI-17-197 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isDHCP6_data Command Injection Remote Code Execution Vulnerability
ZDI-17-196 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration proxyEthChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-195 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataIPChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-194 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig DNS Information Command Injection Remote Code Execution Vulnerability
ZDI-17-193 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig DHCP Information Command Injection Remote Code Execution Vulnerability
ZDI-17-192 CVE: CVE-2017-5797 Published: 2017-03-29
Hewlett Packard Enterprise Intelligent Management Center Service Operation Manager Module FileDownloadServlet filePath Information Disclosure Vulnerability
ZDI-17-191 CVE: CVE-2017-2481 Published: 2017-03-28
Apple Safari ElementData Use-After-Free Remote Code Execution Vulnerability
ZDI-17-190 CVE: CVE-2017-2430 Published: 2017-03-28
Apple macOS M4A Parsing Type Confusion Remote Code Execution Vulnerability
ZDI-17-189 CVE: CVE-2017-2462 Published: 2017-03-28
Apple macOS M4A Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-188 CVE: CVE-2017-2432 Published: 2017-03-28
Apple macOS ImageIO JPEG Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-17-187 CVE: Published: 2017-03-22
Trend Micro InterScan Messaging Security Suite DetailReportAction Directory Traversal Information Disclosure Vulnerability
ZDI-17-186 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet SpecialSpywarePolicyResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-185 CVE: Published: 2017-09-22
Trend Micro Control Manager AdHocQueryExportProcessing SQL Injection Remote Code Execution Vulnerability
ZDI-17-184 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet IDTB_SV parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-183 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet ID_HIDDEN_UG_STR SQL Injection Remote Code Execution Vulnerability
ZDI-17-182 CVE: Published: 2017-09-22
Trend Micro Control Manager cgiCMUIDispatcher ScheduleDownloadSavedEnableList SQL Injection Remote Code Execution Vulnerability
ZDI-17-181 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet ID_QUERY_COMMAND_TRACKING_ID SQL Injection Remote Code Execution Vulnerability
ZDI-17-180 CVE: Published: 2017-09-22
Trend Micro Control Manager cgiCMUIDispatcher ManualDownloadResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-179 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash MovieClip transform Use-After-Free Remote Code Execution Vulnerability
ZDI-17-178 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash Transform matrix Use-After-Free Remote Code Execution Vulnerability
ZDI-17-177 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash BitmapData Use-After-Free Remote Code Execution Vulnerability
ZDI-17-176 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash Sound loadSound Use-After-Free Remote Code Execution Vulnerability
ZDI-17-175 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash TextFormat getTextExtent Use-After-Free Remote Code Execution Vulnerability
ZDI-17-174 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash AS2 RemoveClip Opcode Use-After-Free Remote Code Execution Vulnerability
ZDI-17-173 CVE: CVE-2017-0067 Published: 2017-03-21
Microsoft Edge JavaScript Parsing Uninitialized Pointer Remote Code Execution Vulnerability
ZDI-17-172 CVE: CVE-2017-0015 Published: 2017-03-21
Microsoft Windows JavaScript Spread Operator Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-171 CVE: CVE-2017-0032 Published: 2017-03-21
Microsoft Windows JavaScript Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-170 CVE: CVE-2017-0094 Published: 2017-03-21
Microsoft Windows JavaScript Proxy Setter Type Confusion Remote Code Execution Vulnerability
ZDI-17-169 CVE: CVE-2017-0018 Published: 2017-03-21
Microsoft Internet Explorer CHtmTag Use-After-Free Remote Code Execution Vulnerability
ZDI-17-168 CVE: CVE-2017-0047 Published: 2017-03-21
Microsoft Windows DrawIconEx Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-167 CVE: CVE-2017-0011 Published: 2017-03-21
Microsoft Edge CTransitionValues Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-166 CVE: CVE-2017-5790 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center accessMgrServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-165 CVE: CVE-2017-5795 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center FileDownloadServlet fileName Directory Traversal Information Disclosure Vulnerability
ZDI-17-164 CVE: CVE-2017-5794 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center FileUploadServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-163 CVE: CVE-2017-5793 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center CommonUtils Directory Traversal Remote Code Execution Vulnerability
ZDI-17-162 CVE: CVE-2017-5792 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center RMI Registry Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-161 CVE: CVE-2017-5791 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center UrlAccessController Filter Authentication Bypass Vulnerability
ZDI-17-160 CVE: CVE-2017-5789 Published: 2017-03-09
Hewlett Packard Enterprise LoadRunner libxdrutil mxdr_string Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-159 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector download_pdf Command Injection Remote Code Execution Vulnerability
ZDI-17-158 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector write_new_html_with_svg Directory Traversal Remote Code Execution Vulnerability
ZDI-17-157 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector network_dump Command Injection Remote Code Execution Vulnerability
ZDI-17-156 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector get_filesize Command Injection Remote Code Execution Vulnerability
ZDI-17-155 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector firewall_setting Command Injection Remote Code Execution Vulnerability
ZDI-17-154 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector reboot_after_hotfix Denial of Service Vulnerability
ZDI-17-153 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector screenshot Command Injection Remote Code Execution Vulnerability
ZDI-17-152 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector ajax_checklicense_AC Command Injection Remote Code Execution Vulnerability
ZDI-17-151 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector db_export Command Injection Remote Code Execution Vulnerability
ZDI-17-150 CVE: Published: 2017-03-09
Foxit Reader Field buttonGetIcon Use-After-Free Remote Code Execution Vulnerability
ZDI-17-149 CVE: Published: 2017-03-09
Foxit Reader ePub Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-148 CVE: Published: 2017-03-09
Foxit Reader openDoc Use-After-Free Remote Code Execution Vulnerability
ZDI-17-147 CVE: Published: 2017-03-09
Foxit Reader Field deleteItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-146 CVE: Published: 2017-03-09
Foxit Reader PDB Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-145 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-144 CVE: Published: 2017-03-09
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-143 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-142 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-141 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-140 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-139 CVE: Published: 2017-03-09
Foxit Reader ePub Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-138 CVE: Published: 2017-03-09
Foxit Reader XFA Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-137 CVE: Published: 2017-03-09
Foxit Reader Pattern Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-136 CVE: Published: 2017-03-09
Foxit Reader Xref Use-After-Free Remote Code Execution Vulnerability
ZDI-17-135 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-134 CVE: Published: 2017-03-09
Foxit Reader Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-133 CVE: Published: 2017-03-09
Foxit Reader ConvertToPDF TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-132 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise displayName_get SQL Injection Information Disclosure Vulnerability
ZDI-17-131 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise count_ad_members SQL Injection Information Disclosure Vulnerability
ZDI-17-130 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise restartService Command Injection Remote Code Execution Vulnerability
ZDI-17-129 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise rollback Command Injection Remote Code Execution Vulnerability
ZDI-17-128 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_device_info SQL Injection Information Disclosure Vulnerability
ZDI-17-127 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_replacement Command Injection Remote Code Execution Vulnerability
ZDI-17-126 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise license Command Injection Remote Code Execution Vulnerability
ZDI-17-125 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_nic_device SQL Injection Information Disclosure Vulnerability
ZDI-17-124 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_nfs_device Command Injection Remote Code Execution Vulnerability
ZDI-17-123 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-122 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-121 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise mount_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-120 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise mount_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-119 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise replace_local_disk Command Injection Remote Code Execution Vulnerability
ZDI-17-118 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise dead_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-117 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise dead_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-116 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise discovery_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-115 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise save_local_config Command Injection Remote Code Execution Vulnerability
ZDI-17-114 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise save_iscsi_config Command Injection Remote Code Execution Vulnerability
ZDI-17-113 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise check_nfs_server_status Command Injection Remote Code Execution Vulnerability
ZDI-17-112 CVE: CVE-2017-5177 Published: 2017-02-28
VIPA Automation WinPLC7 recv Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-111 CVE: CVE-2017-2939 Published: 2017-02-16
Adobe Acrobat Reader DC Memory Corruption Remote Code Execution Vulnerability
ZDI-17-110 CVE: CVE-2017-2994 Published: 2017-02-14
Adobe Flash Player MediaPlayer Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-109 CVE: CVE-2017-2995 Published: 2017-02-14
Adobe Flash Player MessageChannel Type Confusion Remote Code Execution Vulnerability
ZDI-17-108 CVE: CVE-2017-2976 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-107 CVE: CVE-2017-2975 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-106 CVE: CVE-2017-2974 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-105 CVE: CVE-2017-2981 Published: 2017-02-14
Adobe Digital Editions PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-104 CVE: CVE-2017-2978 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-103 CVE: CVE-2017-2979 Published: 2017-02-14
Adobe Digital Editions FlateDecode Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-102 CVE: CVE-2017-2977 Published: 2017-02-14
Adobe Digital Editions FlateDecode Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-101 CVE: Published: 2017-09-22
Trend Micro Control Manager cgiRedAlertStatusTracking SQL Injection Remote Code Execution Vulnerability
ZDI-17-100 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet NotificationMethodResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-099 CVE: Published: 2017-09-22
Trend Micro Control Manager AdHocQuery_Result XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-098 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet CnCContactAlertResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-097 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet HighRiskDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-096 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet DLPIncidentStatusChangeResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-095 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet StealthProgramFoundResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-094 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet SHA1DenyDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-093 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet CorrelatedIncidentResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-092 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet DLPIncidentScheduleSummaryResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-091 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet VirtualAnalysisDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-090 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet KnownAttackDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-089 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet SuspiciousThreat parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-088 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet ID_HIDDEN_RED_ALERT_TASK_ID SQL Injection Remote Code Execution Vulnerability
ZDI-17-087 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet EmailMessageDetected parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-086 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet CnC parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-085 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet ThreatSentToWatchlistResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-084 CVE: Published: 2017-09-22
Trend Micro Control Manager ProductTree_TreeManagement1 XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-083 CVE: Published: 2017-09-22
Trend Micro Control Manager ProductTree_Table XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-082 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet IDTB_ Parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-081 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet IDTB_GroupName SQL Injection Remote Code Execution Vulnerability
ZDI-17-080 CVE: Published: 2017-09-22
Trend Micro Control Manager TreeUserControl_process_tree_event XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-079 CVE: Published: 2017-09-22
Trend Micro Control Manager ProductTree XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-078 CVE: Published: 2017-09-22
Trend Micro Control Manager CCGIServlet IDCB_SuspiciousThreat SQL Injection Remote Code Execution Vulnerability
ZDI-17-077 CVE: Published: 2017-09-22
Trend Micro Control Manager ProductTree_RightWindow XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-076 CVE: Published: 2017-09-22
Trend Micro Control Manager ProductTree_LeftWindow XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-075 CVE: Published: 2017-09-22
Trend Micro Control Manager DeploymentPlan_Event_Handler XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-074 CVE: Published: 2017-09-22
Trend Micro Control Manager ProgressReportCGI SQL Injection Authentication Bypass Vulnerability
ZDI-17-073 CVE: Published: 2017-09-22
Trend Micro Control Manager cgiCMUIDispatcher Login Token SQL Injection Remote Code Execution Vulnerability
ZDI-17-072 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-071 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-070 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-069 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-068 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-067 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-066 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-065 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-064 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-063 CVE: Published: 2017-02-07
Trend Micro Control Manager importFile Directory Traversal Remote Code Execution Vulnerability
ZDI-17-062 CVE: Published: 2017-02-07
Trend Micro Control Manager download Directory Traversal Information Disclosure Vulnerability
ZDI-17-061 CVE: Published: 2017-02-07
Trend Micro Control Manager download Directory Traversal Information Disclosure Vulnerability
ZDI-17-060 CVE: Published: 2017-02-07
Trend Micro Control Manager importFile Directory Traversal Remote Code Execution Vulnerability
ZDI-17-059 CVE: CVE-2016-8341 Published: 2017-02-07
Ecava IntegraXor getdata param SQL Injection Remote Code Execution Vulnerability
ZDI-17-058 CVE: CVE-2016-8341 Published: 2017-02-07
Ecava IntegraXor getdata name SQL Injection Remote Code Execution Vulnerability
ZDI-17-057 CVE: CVE-2017-3289 Published: 2017-01-24
Oracle Java Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-056 CVE: CVE-2017-3272 Published: 2017-01-24
Oracle Java AtomicReferenceFieldUpdater Type Confusion Remote Code Execution Vulnerability
ZDI-17-055 CVE: CVE-2017-3248 Published: 2017-01-24
Oracle WebLogic RMI Registry UnicastRef Object Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-054 CVE: CVE-2017-2354 Published: 2017-01-24
Apple Safari SearchInputType Type Confusion Remote Code Execution Vulnerability
ZDI-17-053 CVE: CVE-2016-2123 Published: 2017-01-20
Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-052 CVE: CVE-2016-8207 Published: 2017-01-20
Brocade Network Advisor CliMonitorReportServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-051 CVE: CVE-2016-8206 Published: 2017-01-20
Brocade Network Advisor SoftwareImageUpload Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-050 CVE: CVE-2016-8205 Published: 2017-01-20
Brocade Network Advisor DashboardFileReceiveServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-049 CVE: CVE-2016-8204 Published: 2017-01-20
Brocade Network Advisor FileReceiveServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-048 CVE: Published: 2017-01-20
Bitdefender Internet Security NSIS Entries Integer Overflow Remote Code Execution Vulnerability
ZDI-17-047 CVE: Published: 2017-01-20
Bitdefender Internet Security NSIS Pages Integer Overflow Remote Code Execution Vulnerability
ZDI-17-046 CVE: Published: 2017-01-20
Bitdefender Internet Security SIS Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-17-045 CVE: CVE-2017-2970 Published: 2017-01-20
Adobe Reader DC XSLT apply-templates Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-044 CVE: CVE-2016-6814 Published: 2017-01-20
Apache Groovy MethodClosure Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-043 CVE: CVE-2017-5154, CVE-2017-5152 Published: 2017-01-12
Advantech WebAccess updateTemplate SQL Injection Information Disclosure Vulnerability
ZDI-17-042 CVE: Published: 2017-01-11
Foxit PhantomPDF ConvertToPDF TIFF Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-041 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-040 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-039 CVE: Published: 2017-01-11
Foxit PhantomPDF ConvertToPDF JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-038 CVE: Published: 2017-01-11
Foxit Reader setInterval Use-After-Free Remote Code Execution Vulnerability
ZDI-17-037 CVE: Published: 2017-01-11
Foxit Reader Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-036 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-035 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-034 CVE: Published: 2017-01-11
Foxit Reader alert Use-After-Free Remote Code Execution Vulnerability
ZDI-17-033 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-032 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-031 CVE: CVE-2017-2967 Published: 2017-01-10
Adobe Reader DC XFA template Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-030 CVE: CVE-2017-2966 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-029 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT call-template Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-028 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT element Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-027 CVE: CVE-2017-2963 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-026 CVE: CVE-2017-2962 Published: 2017-01-10
Adobe Reader DC XSLT lang Type Confusion Remote Code Execution Vulnerability
ZDI-17-025 CVE: CVE-2017-2961 Published: 2017-01-10
Acrobat Reader DC XFA Field Font Size Use-After-Free Remote Code Execution Vulnerability
ZDI-17-024 CVE: CVE-2017-2960 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-023 CVE: CVE-2017-2959 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-022 CVE: CVE-2017-2951 Published: 2017-01-10
Adobe Reader DC XFA hyphenation Use-After-Free Remote Code Execution Vulnerability
ZDI-17-021 CVE: CVE-2017-2950 Published: 2017-01-10
Adobe Reader DC XFA Layout Use-After-Free Remote Code Execution Vulnerability
ZDI-17-020 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT decimal-format Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-019 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT namespace-alias Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-018 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT processing-instruction Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-017 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT function-available Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-016 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT sort Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-015 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT key Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-014 CVE: CVE-2017-2964 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-013 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT key Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-012 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT attribute Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-011 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT attribute-set Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-010 CVE: CVE-2017-2965 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-009 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT format-number Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-008 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT output Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-007 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT variable Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-006 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT system-property Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-005 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT element-available Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-004 CVE: CVE-2017-2946 Published: 2017-01-10
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-003 CVE: CVE-2017-2946 Published: 2017-01-10
Adobe Reader DC JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-002 CVE: CVE-2017-2941 Published: 2017-01-10
Adobe Reader DC Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-001 CVE: CVE-2016-8519 Published: 2017-01-10
Hewlett Packard Enterprise Operations Orchestration Backwards Compatibility Deserialization of Untrusted Data Remote Code Execution Vulnerability