05/01週のCVE ... High Vulnerabilities

High Vulnerabilities だけだと、過去最少。

Medium Vulnerabilitiesや、Severity Not Yet Assigned には、Cybozu Garoon, ImageMagic 他、いろいろ有ります。

Primary Vendor -- Product	Description	Published	CVSS Score	Source & Patch Info
iodata -- wn-g300r3_firmware	WN-G300R3 firmware 1.03 and earlier allows attackers with administrator rights to execute arbitrary OS commands via unspecified vectors.	2017-04-28	9.0	CVE-2017-2141 JVN MISC
iodata -- wn-g300r3_firmware	Buffer overflow in WN-G300R3 firmware Ver.1.03 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.	2017-04-28	10.0	CVE-2017-2142 JVN MISC
ipa -- appgoat	Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.0 and earlier allows remote attackers to bypass authentication to perform arbitrary operations via unspecified vectors.	2017-04-28	7.5	CVE-2017-2101 JVN BID

Back to top