CVE-2017-1000253
- EPSS 10.7%
- Veröffentlicht 05.10.2017 01:29:04
- Zuletzt bearbeitet 21.04.2026 18:00:48
Linux distributions that have not patched their long-term kernels with https://git.kernel.org/linus/a87938b2e246b81b4fb713edb371a9fa3c5c3c86 (committed on April 14, 2015). This kernel vulnerability was fixed in April 2015 by commit a87938b2e246b81b4f...
CVE-2015-7837
- EPSS 0.41%
- Veröffentlicht 19.09.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The Linux kernel, as used in Red Hat Enterprise Linux 7, kernel-rt, and Enterprise MRG 2 and when booted with UEFI Secure Boot enabled, allows local users to bypass intended securelevel/secureboot restrictions by leveraging improper handling of secur...
CVE-2015-7553
- EPSS 0.21%
- Veröffentlicht 14.09.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Race condition in the kernel in Red Hat Enterprise Linux 7, kernel-rt and Red Hat Enterprise MRG 2, when the nfnetlink_log module is loaded, allows local users to cause a denial of service (panic) by creating netlink sockets.
CVE-2017-10661
- EPSS 13.38%
- Veröffentlicht 19.08.2017 18:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Race condition in fs/timerfd.c in the Linux kernel before 4.10.15 allows local users to gain privileges or cause a denial of service (list corruption or use-after-free) via simultaneous file-descriptor operations that leverage improper might_cancel q...
CVE-2017-3085
- EPSS 4.48%
- Veröffentlicht 11.08.2017 19:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Adobe Flash Player versions 26.0.0.137 and earlier have a security bypass vulnerability that leads to information disclosure when performing URL redirect.
CVE-2017-3106
- EPSS 22.31%
- Veröffentlicht 11.08.2017 19:29:02
- Zuletzt bearbeitet 13.05.2026 00:24:29
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.
- EPSS 0.4%
- Veröffentlicht 10.08.2017 15:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Multiple integer overflows in the block drivers in QEMU, possibly before 2.0.0, allow local users to cause a denial of service (crash) via a crafted catalog size in (1) the parallels_open function in block/parallels.c or (2) bochs_open function in bo...
CVE-2016-6312
- EPSS 2.2%
- Veröffentlicht 17.07.2017 13:18:06
- Zuletzt bearbeitet 13.05.2026 00:24:29
The mod_dontdothat component of the mod_dav_svn Apache module in Subversion as packaged in Red Hat Enterprise Linux 5.11 does not properly detect recursion during entity expansion, which allows remote authenticated users with access to the webdav rep...
CVE-2017-9953
- EPSS 2.81%
- Veröffentlicht 26.06.2017 23:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault in Exiv2 0.26. A crafted input will lead to a remote denial of service attack.
CVE-2017-1000366
- EPSS 2.73%
- Veröffentlicht 19.06.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made t...