|
Medium
|
24 May 2017 |
1 Jun 2017 |
CPAI-2017-0442
|
Trend Micro VRTS-388
|
|
Trend Micro Smart Protection Server wcs_bwlists_handler.php Command Injection
|
|
Medium
|
24 May 2017 |
29 May 2017 |
CPAI-2017-0455
|
WordPress
|
|
WordPress REST API Posts Controller Privilege Escalation
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0454
|
|
CVE-2017-8539
|
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8539)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0453
|
|
CVE-2017-8541
|
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8541)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0447
|
|
CVE-2017-8535
|
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8535)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0450
|
|
CVE-2017-8536
|
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8536)
|
|
Medium
|
8 Jan 2017 |
29 May 2017 |
CPAI-2016-0969
|
PowerDNS
|
CVE-2016-5427
|
PowerDNS Authoritative Server Dot Character Denial of Service (CVE-2016-5427)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0452
|
|
CVE-2017-8537
|
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8537)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0446
|
|
CVE-2017-8538
|
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8538)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0451
|
|
CVE-2017-8542
|
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8542)
|
|
High
|
24 Apr 2017 |
29 May 2017 |
CPAI-2017-0325
|
GnuTLS GNUTLS-SA-2017-1
|
CVE-2017-5334
|
GnuTLS Proxy Certificate Information Extension Memory Corruption (CVE-2017-5334)
|
|
Critical
|
29 May 2017 |
29 May 2017 |
CPAI-2017-0449
|
|
CVE-2017-8540
|
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8540)
|
|
Medium
|
24 Apr 2017 |
28 May 2017 |
CPAI-2017-0322
|
Trend Micro
|
|
Trend Micro SafeSync for Enterprise rollback Command Injection
|
|
High
|
24 May 2017 |
28 May 2017 |
CPAI-2017-0439
|
Trend Micro
|
|
Trend Micro IWSVA PacFileManagement delete_pac_files Command Injection
|
|
Medium
|
11 May 2017 |
28 May 2017 |
CPAI-2017-0411
|
Ntp.org
|
CVE-2017-6464
|
Network Time Protocol Daemon peer xmit mode Denial of Service (CVE-2017-6464)
|
|
High
|
23 Apr 2017 |
28 May 2017 |
CPAI-2017-0312
|
Trend Micro
|
|
Trend Micro SafeSync for Enterprise storage.pm discovery_iscsi_device Command Injection
|
|
High
|
30 Apr 2017 |
28 May 2017 |
CPAI-2017-0348
|
HPE
|
CVE-2017-5789
|
HPE LoadRunner and Performance Center libxdrutil.dll mxdr_string Heap Buffer Overflow (CVE-2017-5789)
|
|
High
|
21 May 2017 |
28 May 2017 |
CPAI-2017-0006
|
|
|
Disk Pulse Enterprise Server HttpParser Buffer Overflow
|
|
High
|
14 Mar 2017 |
28 May 2017 |
CPAI-2017-0202
|
Microsoft Security Bulletin MS17-006
|
CVE-2017-0130
|
Microsoft Internet Explorer Memory Corruption (MS17-006: CVE-2017-0130)
|
|
High
|
14 Mar 2017 |
25 May 2017 |
CPAI-2017-0100
|
Microsoft Security Bulletin MS17-013
|
CVE-2017-0014
|
Microsoft Windows Graphics Component Remote Code Execution (MS17-013: CVE-2017-0014)
|
|
Critical
|
25 May 2017 |
25 May 2017 |
CPAI-2017-0443
|
|
|
Microsoft Windows ArchiTouch SMB Scanner
|
|
Medium
|
28 Feb 2017 |
25 May 2017 |
CPAI-2017-0153
|
OpenSSL
|
CVE-2017-3730
|
OpenSSL DHE and ECDHE Parameters NULL Pointer Dereference (CVE-2017-3730)
|
|
Medium
|
22 May 2017 |
25 May 2017 |
CPAI-2017-0436
|
Zabbix
|
CVE-2017-2824
|
Zabbix Server Active Proxy Trapper Command Injection (CVE-2017-2824)
|
|
Critical
|
22 May 2017 |
25 May 2017 |
CPAI-2017-0434
|
|
|
Microsoft Windows EternalSynergy SMB Remote Code Execution
|
|
Critical
|
22 May 2017 |
24 May 2017 |
CPAI-2017-0440
|
|
|
Microsoft Windows SMBTouch Scanner
|
|
Critical
|
21 May 2017 |
24 May 2017 |
CPAI-2017-0431
|
Dell
|
|
Dell SonicWALL GMS-Analyzer license.jsp Information Disclosure
|
|
Medium
|
22 May 2017 |
24 May 2017 |
CPAI-2017-0435
|
Red Hat CVE-2017-2674
|
CVE-2017-2674
|
Red Hat JBoss BPM Suite BRMS Tasks List Cross-Site Scripting (CVE-2017-2674)
|
|
Critical
|
24 May 2017 |
24 May 2017 |
CPAI-2017-0438
|
|
|
PNG Containing Malicious JavaScript Code
|
|
Critical
|
17 May 2017 |
24 May 2017 |
CPAI-2017-0421
|
Trend Micro
|
|
Trend Micro IWSVA LogSettingHandler doPostMountDevice Command Injection
|
|
Critical
|
20 Feb 2017 |
23 May 2017 |
CPAI-2017-0138
|
|
|
Suspected Ransomware Dropzone
|
|
Critical
|
27 Feb 2017 |
22 May 2017 |
CPAI-2017-0149
|
Microsoft Security Bulletin MS17-006
|
CVE-2017-0037
|
Microsoft Browser Memory Corruption (MS17-006: CVE-2017-0037)
|
|
Critical
|
21 May 2017 |
22 May 2017 |
CPAI-2017-0427
|
|
CVE-2017-8917
|
Joomla com_fields Component SQL Injection (CVE-2017-8917)
|
|
Critical
|
10 May 2017 |
21 May 2017 |
CPAI-2017-0404
|
|
|
Serviio Media Server Remote Code Execution
|
|
Medium
|
15 May 2017 |
21 May 2017 |
CPAI-2017-0417
|
MantisBT 22690
|
CVE-2017-7615
|
Mantis Bug Tracker verify.php confirm_hash Remote Password Reset (CVE-2017-7615)
|
|
High
|
14 Mar 2017 |
21 May 2017 |
CPAI-2017-0095
|
Microsoft Security Bulletin MS17-007
|
CVE-2017-0023
|
Microsoft PDF Memory Corruption (MS17-007: CVE-2017-0023)
|
|
Critical
|
10 May 2017 |
21 May 2017 |
CPAI-2017-0410
|
|
|
Serviio Media Server Cross-Site Scripting
|
|
Critical
|
21 May 2017 |
21 May 2017 |
CPAI-2017-0433
|
|
|
VLC ParseJSS Null Skip Subtitle Remote Code Execution
|
|
High
|
11 May 2017 |
21 May 2017 |
CPAI-2017-0413
|
Oracle CVE-2017-3599
|
CVE-2017-3599
|
Oracle MySQL sql_authentication Integer Overflow (CVE-2017-3599)
|
|
Critical
|
21 May 2017 |
21 May 2017 |
CPAI-2017-0432
|
|
|
StremIO Subtitles Remote Code Execution
|
|
Critical
|
21 May 2017 |
21 May 2017 |
CPAI-2017-0429
|
|
|
Microsoft Windows Eternalchampion SMB Remote Code Execution
|
|
Medium
|
27 Feb 2017 |
21 May 2017 |
CPAI-2017-0151
|
OpenSSL
|
CVE-2017-3731
|
OpenSSL ChaCha20-Poly1305 and RC4-MD5 Integer Underflow (CVE-2017-3731)
|
|
Critical
|
26 Apr 2017 |
18 May 2017 |
CPAI-2017-0425
|
|
|
Microsoft Windows Eternalromance SMB Remote Code Execution
|
|
Critical
|
26 Apr 2017 |
18 May 2017 |
CPAI-2017-0332
|
|
|
Microsoft Windows EternalBlue SMB Remote Code Execution
|
|
Critical
|
16 May 2017 |
18 May 2017 |
CPAI-2017-0423
|
Rapid7
|
|
Crypttech CryptoLog Remote Code Execution
|
|
Critical
|
14 Mar 2017 |
18 May 2017 |
CPAI-2017-0177
|
Microsoft Security Bulletin MS17-010
|
CVE-2017-0143
|
Microsoft Windows SMB Remote Code Execution (MS17-010: CVE-2017-0143)
|
|
Critical
|
14 May 2017 |
18 May 2017 |
CPAI-2017-0422
|
|
|
Microsoft Windows DoublePulsar SMB Remote Code Execution
|
|
High
|
26 Feb 2017 |
17 May 2017 |
CPAI-2017-0146
|
PHP
|
CVE-2017-5340
|
PHP zend_hash_destroy Uninitialized Pointer Code Execution (CVE-2017-5340)
|
|
Critical
|
15 May 2017 |
17 May 2017 |
CPAI-2017-0416
|
HPE
|
CVE-2017-5792
|
HPE Intelligent Management Center RMI Registry Insecure Deserialization (CVE-2017-5792)
|
|
Critical
|
16 May 2017 |
16 May 2017 |
CPAI-2017-0419
|
Microsoft Security Bulletin MS17-010
|
CVE-2017-0148
|
Microsoft Windows SMB Remote Code Execution (MS17-010: CVE-2017-0148)
|
|
Medium
|
19 Apr 2017 |
15 May 2017 |
CPAI-2017-0303
|
Trend Micro
|
|
Trend Micro SafeSync for Enterprise storage.pm device_id role Command Injection
|
