Security Vulnerabilities - CVEs Published In 2017
b3log Symphony (aka Sym) 2.2.0 does not properly address XSS in JSON objects, as demonstrated by a crafted userAvatarURL value to /settings/avatar, related to processor/AdminProcessor.java, processor/ArticleProcessor.java, processor/UserProcessor.java, service/ArticleQueryService.java, service/AvatarQueryService.java, and service/CommentQueryService.java.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-11-18
HTML Injection in Securimage 3.6.4 and earlier allows remote attackers to inject arbitrary HTML into an e-mail message body via the $_SERVER['HTTP_USER_AGENT'] parameter to example_form.ajax.php or example_form.php.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-11-18
On Jooan IP Camera A5 2.3.36 devices, an insecure FTP server does not require authentication, which allows remote attackers to read or replace core system files including those used for authentication (such as passwd and shadow). This can be abused to take full root level control of the device.
CVSS Score
9.8
EPSS Score
0.013
Published
2017-11-17
exiv2 0.26 contains a Stack out of bounds read in webp parser
CVSS Score
5.5
EPSS Score
0.003
Published
2017-11-17
Exiv2 0.26 contains a heap buffer overflow in tiff parser
CVSS Score
5.5
EPSS Score
0.004
Published
2017-11-17
Exiv2 0.26 contains a stack out of bounds read in JPEG2000 parser
CVSS Score
5.5
EPSS Score
0.001
Published
2017-11-17
Opencast 2.3.2 and older versions are vulnerable to script injections through media and metadata in the player and media module resulting in arbitrary code execution, fixed in 2.3.3 and 3.0.
CVSS Score
8.8
EPSS Score
0.007
Published
2017-11-17
In Opencast 2.2.3 and older if user names overlap, the Opencast search service used for publication to the media modules and players will handle the access control incorrectly so that users only need to match part of the user name used for the access restriction. For example, a user with the role ROLE_USER will have access to recordings published only for ROLE_USER_X.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-11-17
The Phoenix Framework versions 1.0.0 through 1.0.4, 1.1.0 through 1.1.6, 1.2.0, 1.2.2 and 1.3.0-rc.0 are vulnerable to unvalidated URL redirection, which may result in phishing or social engineering attacks.
CVSS Score
6.1
EPSS Score
0.018
Published
2017-11-17
SimpleXML (latest version 2.7.1) is vulnerable to an XXE vulnerability resulting SSRF, information disclosure, DoS and so on.
CVSS Score
9.1
EPSS Score
0.004
Published
2017-11-17