Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In November 2017
October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-11-17
tcmu-runner daemon version 0.9.0 to 1.2.0 is vulnerable to invalid memory references in the handler_glfs.so handler resulting in denial of service
CVSS Score
7.5
EPSS Score
0.003
Published
2017-11-17
tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handler_qcow.so resulting in non-privileged users being able to check for existence of any file with root privileges.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-11-17
tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a dbus triggered NULL pointer dereference in the tcmu-runner daemon's on_unregister_handler() function resulting in denial of service
CVSS Score
7.5
EPSS Score
0.004
Published
2017-11-17
In SWFTools, an address access exception was found in swfdump swf_GetBits().
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-17
In SWFTools, a memcpy buffer overflow was found in swfc.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-17
In SWFTools, a memory leak was found in wav2swf.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-17
In SWFTools, a memcpy buffer overflow was found in gif2swf.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-17
In SWFTools, a stack overflow was found in pdf2swf.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-11-17
In SWFTools, an address access exception was found in pdf2swf. FoFiTrueType::writeTTF()
CVSS Score
7.8
EPSS Score
0.002
Published
2017-11-17


Contact Us

Shodan ® - All rights reserved