CVE-2017-13082
- EPSS 4.58%
- Veröffentlicht 17.10.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, ...
CVE-2017-13084
- EPSS 2.21%
- Veröffentlicht 17.10.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVE-2017-13086
- EPSS 2.05%
- Veröffentlicht 17.10.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVE-2017-13087
- EPSS 1.74%
- Veröffentlicht 17.10.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Group Temporal Key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to replay frames f...
CVE-2017-13088
- EPSS 1.81%
- Veröffentlicht 17.10.2017 13:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to repl...
CVE-2017-13077
- EPSS 2.39%
- Veröffentlicht 17.10.2017 02:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVE-2017-12629
- EPSS 91.9%
- Veröffentlicht 14.10.2017 23:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is N...
CVE-2017-15298
- EPSS 1.64%
- Veröffentlicht 14.10.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denial of service (memory consumption) via a crafted repository, aka a Git bomb. This can also have an impact of disk consumption; however, an affected pro...
CVE-2017-15281
- EPSS 2.73%
- Veröffentlicht 12.10.2017 08:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to "Conditional jump or move depends on uninitialised v...
CVE-2017-2888
- EPSS 3.07%
- Veröffentlicht 11.10.2017 18:29:05
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable integer overflow vulnerability exists when creating a new RGB Surface in SDL 2.0.5. A specially crafted file can cause an integer overflow resulting in too little memory being allocated which can lead to a buffer overflow and potential...