Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27302 of 28220

CVE-2017-11469

Posted by Cyberthreat Blog | Jul 19, 2017 | CVE Notifications |

get2post.php in IDERA Uptime Monitor 7.8 has directory traversal in the file_name parameter.

CVE-2017-11471

Posted by Cyberthreat Blog | Jul 19, 2017 | CVE Notifications |

IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.php via the element parameter.

CVE-2017-11473

Posted by Cyberthreat Blog | Jul 19, 2017 | CVE Notifications |

Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel through 4.12.2 allows local users to gain privileges via a crafted ACPI table.

CVE-2017-6316

Posted by Cyberthreat Blog | Jul 19, 2017 | CVE Notifications |

Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name...

CVE-2017-11470

Posted by Cyberthreat Blog | Jul 19, 2017 | CVE Notifications |

IDERA Uptime Monitor 7.8 has SQL injection in /gadgets/definitions/uptime.CapacityWhatifGadget/getxenmetrics.php via the element parameter.

Author: Cyberthreat Blog

CVE-2017-11469

CVE-2017-11471

CVE-2017-11473

CVE-2017-6316

CVE-2017-11470