May 11, 2017

05/01週のCVE ... High Vulnerabilities

High Vulnerabilities だけだと、過去最少。

Medium Vulnerabilitiesや、Severity Not Yet Assigned には、Cybozu Garoon, ImageMagic 他、いろいろ有ります。

Primary
Vendor -- Product
Description
Published
CVSS Score
Source & Patch Info
iodata -- wn-g300r3_firmware
WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute arbitrary OS commands via unspecified vectors.
2017-04-28
iodata -- wn-g300r3_firmware
Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.
2017-04-28
ipa -- appgoat
Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.
2017-04-28

No comments: