Show filters
1,598 Total Results
Displaying 361-370 of 1,598
Sort by:
Attacker Value
Unknown

CVE-2017-1447

Disclosure Date: August 31, 2017 (last updated November 26, 2024)
IBM Emptoris Sourcing 9.5 - 10.1.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128172.
0
0
Attacker Value
Unknown

CVE-2017-1449

Disclosure Date: August 31, 2017 (last updated November 26, 2024)
IBM Emptoris Sourcing 9.5 - 10.1.3 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 128174.
0
0
Attacker Value
Unknown

CVE-2016-2966

Disclosure Date: August 29, 2017 (last updated November 26, 2024)
IBM Sametime 8.5.1 and 9.0 could allow an authenticated user to enumerate meeting rooms by guessing the meeting room id. IBM X-Force ID: 113847.
0
0
Attacker Value
Unknown

CVE-2015-0101

Disclosure Date: August 28, 2017 (last updated November 26, 2024)
Cross-site scripting (XSS) vulnerability in IBM Business Process Manager Standard 7.5.x before 7.5, 8.0.x before 8.0.1, 8.5.x before 8.5.5; IBM Business Process Manager Express 7.5.x before 7.5, 8.0.x before 8.0.1, 8.5.x before 8.5.5; and IBM Business Process Manager Advanced 7.5.x before 7.5, 8.0.x before 8.0.1, 8.5.x before 8.5.5.
0
0
Attacker Value
Unknown

CVE-2015-7896

Disclosure Date: August 24, 2017 (last updated November 26, 2024)
LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via a crafted image file.
0
0
Attacker Value
Unknown

CVE-2017-0805

Disclosure Date: August 24, 2017 (last updated November 26, 2024)
A elevation of privilege vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37237701.
0
0
Attacker Value
Unknown

CVE-2017-0733

Disclosure Date: August 09, 2017 (last updated November 26, 2024)
A denial of service vulnerability in the Android media framework (libmediaplayerservice). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-38391487.
0
0
Attacker Value
Unknown

CVE-2017-0739

Disclosure Date: August 09, 2017 (last updated November 26, 2024)
A information disclosure vulnerability in the Android media framework (libhevc). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37712181.
0
0
Attacker Value
Unknown

CVE-2017-0726

Disclosure Date: August 09, 2017 (last updated November 26, 2024)
A denial of service vulnerability in the Android media framework (libstagefright). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36389123.
0
0
Attacker Value
Unknown

CVE-2017-0712

Disclosure Date: August 09, 2017 (last updated November 26, 2024)
A elevation of privilege vulnerability in the Android framework (wi-fi service). Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-37207928.
0
0
View More Topics  < Previous  Next >