Security Vulnerabilities - CVEs Published In October 2017
Aruba Networks ClearPass Policy Manager before 6.4.7 and 6.5.x before 6.5.2 allows remote attackers to gain shell access and execute arbitrary code with root privileges via unspecified vectors.
CVSS Score
9.8
EPSS Score
0.055
Published
2017-10-16
Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via vectors involving req_ca_vrfy_smtp and req_ca_vrfy_mta.
CVSS Score
9.8
EPSS Score
0.101
Published
2017-10-16
ASX to MP3 converter 3.1.3.7.2010.11.05 has a buffer overflow via a crafted M3U file, a related issue to CVE-2009-1324.
CVSS Score
7.8
EPSS Score
0.071
Published
2017-10-16
Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c.
CVSS Score
7.0
EPSS Score
0.001
Published
2017-10-16
The mode4and5 write functions in hw/display/cirrus_vga.c in Qemu allow local OS guest privileged users to cause a denial of service (out-of-bounds write access and Qemu process crash) via vectors related to dst calculation.
CVSS Score
6.0
EPSS Score
0.001
Published
2017-10-16
The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module (TPM) firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 133.33, mishandles RSA key generation, which makes it easier for attackers to defeat various cryptographic protection mechanisms via targeted attacks, aka ROCA. Examples of affected technologies include BitLocker with TPM 1.2, YubiKey 4 (before 4.3.5) PGP key generation, and the Cached User Data encryption feature in Chrome OS.
CVSS Score
5.9
EPSS Score
0.734
Published
2017-10-16
Nero 7.10.1.0 has an unquoted BINARY_PATH_NAME for NBService, exploitable via a Trojan horse Nero.exe file in the %PROGRAMFILES(x86)%\Nero directory.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-10-16
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-10-16
Xpress Server in SAP POS does not require authentication for read/write/delete file access. This is SAP Security Note 2520064.
CVSS Score
9.8
EPSS Score
0.005
Published
2017-10-16
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-10-16