Export limit exceeded: 24500 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (24500 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2017-5801 | 1 Hp | 1 Business Process Monitor | 2024-11-21 | N/A |
| A Remote Unauthorized Access to Data vulnerability in HPE Business Process Monitor version v09.2x, v09.30 was found. | ||||
| CVE-2017-5797 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | N/A |
| A Remote Unauthenticated Disclosure of Information vulnerability in HPE Intelligent Management Center (IMC) SOM version v7.3 (E0501) was found. | ||||
| CVE-2017-5795 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | N/A |
| A Local Arbitrary File Download vulnerability in HPE Intelligent Management Center (IMC) version PLAT 7.2 E0403P06 was found. | ||||
| CVE-2017-5794 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | N/A |
| A Remote Arbitrary File Download vulnerability in HPE Intelligent Management Center (IMC) PLAT version 7.2 E0403P06 was found. | ||||
| CVE-2017-5793 | 1 Hp | 1 Intelligent Management Center | 2024-11-21 | N/A |
| A Remote Arbitrary Code Execution vulnerability in HPE Intelligent Management Center (IMC) PLAT version 7.2 E0403P06 was found. | ||||
| CVE-2017-5788 | 1 Hp | 2 Nonstop Server, Nonstop Server Software | 2024-11-21 | N/A |
| A Local Disclosure of Sensitive Information vulnerability in HPE NonStop Software Essentials version T0894 T0894H02 through T0894H02^AAI was found. | ||||
| CVE-2017-5785 | 1 Hp | 1 Matrix Operating Environment | 2024-11-21 | N/A |
| A remote information disclosure vulnerability in HPE Matrix Operating Environment version v7.6 was found. | ||||
| CVE-2017-5784 | 1 Hp | 1 Matrix Operating Environment | 2024-11-21 | N/A |
| A missing HSTS Header vulnerability in HPE Matrix Operating Environment version v7.6 was found. | ||||
| CVE-2017-5783 | 1 Hp | 1 Matrix Operating Environment | 2024-11-21 | N/A |
| A remote clickjacking vulnerability in HPE Matrix Operating Environment version v7.6 was found. | ||||
| CVE-2017-5782 | 1 Hp | 1 Matrix Operating Environment | 2024-11-21 | N/A |
| A missing HSTS Header vulnerability in HPE Matrix Operating Environment version v7.6 was found. | ||||
| CVE-2017-5780 | 1 Hp | 1 Matrix Operating Environment | 2024-11-21 | N/A |
| A remote clickjacking vulnerability in HPE Matrix Operating Environment version v7.6 was found. | ||||
| CVE-2017-5754 | 3 Arm, Intel, Redhat | 218 Cortex-a, Atom C, Atom E and 215 more | 2024-11-21 | N/A |
| Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache. | ||||
| CVE-2017-5699 | 1 Intel | 2 Minnowboard 3, Minnowboard 3 Firmware | 2024-11-21 | N/A |
| Input validation error in Intel MinnowBoard 3 Firmware versions prior to 0.65 allow local attacker to cause denial of service via UEFI APIs. | ||||
| CVE-2017-5660 | 2 Apache, Debian | 2 Traffic Server, Debian Linux | 2024-11-21 | N/A |
| There is a vulnerability in Apache Traffic Server (ATS) 6.2.0 and prior and 7.0.0 and prior with the Host header and line folding. This can have issues when interacting with upstream proxies and the wrong host being used. | ||||
| CVE-2017-5658 | 1 Apache | 1 Pony Mail | 2024-11-21 | N/A |
| The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without disclosing the content itself. As this was primarily used as a caching feature for faster loading times, the caching was disabled by default to prevent this. Users using 0.9 should upgrade to 0.10 to address this issue. | ||||
| CVE-2017-5463 | 2 Google, Mozilla | 2 Android, Firefox | 2024-11-21 | N/A |
| Android intents can be used to launch Firefox for Android in reader mode with a user specified URL. This allows an attacker to spoof the contents of the addressbar as displayed to users. Note: This attack only affects Firefox for Android. Other operating systems are not affected. This vulnerability affects Firefox < 53. | ||||
| CVE-2017-5453 | 1 Mozilla | 1 Firefox | 2024-11-21 | N/A |
| A mechanism to inject static HTML into the RSS reader preview page due to a failure to escape characters sent as URL parameters for a feed's "TITLE" element. This vulnerability allows for spoofing but no scripted content can be run. This vulnerability affects Firefox < 53. | ||||
| CVE-2017-5452 | 1 Mozilla | 1 Firefox | 2024-11-21 | N/A |
| Malicious sites can display a spoofed addressbar on a page when the existing location bar on the new page is scrolled out of view if an HTML editable page element is user selected. Note: This attack only affects Firefox for Android. Other operating systems are not affected. This vulnerability affects Firefox < 53. | ||||
| CVE-2017-5450 | 1 Mozilla | 1 Firefox | 2024-11-21 | N/A |
| A mechanism to spoof the Firefox for Android addressbar using a "javascript:" URI. On Firefox for Android, the base domain is parsed incorrectly, making the resulting location less visibly a spoofed site and showing an incorrect domain in appended notifications. This vulnerability affects Firefox < 53. | ||||
| CVE-2017-5425 | 2 Apple, Mozilla | 3 Mac Os X, Firefox, Thunderbird | 2024-11-21 | N/A |
| The Gecko Media Plugin sandbox allows access to local files that match specific regular expressions. On OS OX, this matching allows access to some data in subdirectories of "/private/var" that could expose personal or temporary data. This has been updated to not allow access to "/private/var" and its subdirectories. Note: this issue only affects OS X. Other operating systems are not affected. This vulnerability affects Firefox < 52 and Thunderbird < 52. | ||||