Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2017
CVE-2017-0733
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-38391487.
CVSS Score
5.5
EPSS Score
0.0
Published
2017-08-09
CVE-2017-0734
A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-38014992.
CVSS Score
5.5
EPSS Score
0.0
Published
2017-08-09
CVE-2015-2311
Integer underflow in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 might allow remote peers to cause a denial of service or possibly obtain sensitive information from memory or execute arbitrary code via a crafted message.
CVSS Score
9.8
EPSS Score
0.011
Published
2017-08-09
CVE-2015-2312
Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 allows remote peers to cause a denial of service (CPU and possibly general resource consumption) via a list with a large number of elements.
CVSS Score
7.5
EPSS Score
0.006
Published
2017-08-09
CVE-2015-2313
Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.2, when an application invokes the totalSize method on an object reader, allows remote peers to cause a denial of service (CPU consumption) via a crafted small message, which triggers a "tight" for loop. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-2312.
CVSS Score
7.5
EPSS Score
0.007
Published
2017-08-09
CVE-2015-2674
Restkit allows man-in-the-middle attackers to spoof TLS servers by leveraging use of the ssl.wrap_socket function in Python with the default CERT_NONE value for the cert_reqs argument.
CVSS Score
5.9
EPSS Score
0.004
Published
2017-08-09
CVE-2015-2687
OpenStack Compute (nova) Icehouse, Juno and Havana when live migration fails allows local users to access VM volumes that they would normally not have permissions for.
CVSS Score
4.7
EPSS Score
0.001
Published
2017-08-09
CVE-2015-3277
The mod_nss module before 1.0.11 in Fedora allows remote attackers to obtain cipher lists due to incorrect parsing of multi-keyword cipherstring.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-08-09
CVE-2015-6498
Alcatel-Lucent Home Device Manager before 4.1.10, 4.2.x before 4.2.2 allows remote attackers to spoof and make calls as target devices.
CVSS Score
7.5
EPSS Score
0.009
Published
2017-08-09
CVE-2015-6816
ganglia-web before 3.7.1 allows remote attackers to bypass authentication.
CVSS Score
9.8
EPSS Score
0.021
Published
2017-08-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved