NVD List

Id Name Description Reject CVSS Version CVSS Score Severity Pub Date Modified Date Actions
84461  CVE-2017-3434  Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: Audience workbench). Supported versions that are affected are 12.1.1, 12.1.2 and 12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle One-to-One Fulfillment. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle One-to-One Fulfillment accessible data as well as unauthorized read access to a subset of Oracle One-to-One Fulfillment accessible data. CVSS 3.0 Base Score 7.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N).    6.8  Medium  2017-05-07  2017-05-04  View
84717  CVE-2017-5988  NetApp Clustered Data ONTAP 8.1 through 9.1P1, when NFS or SMB is enabled, allows remote attackers to cause a denial of service via unspecified vectors.    Medium  2017-04-27  2017-04-14  View
84973  CVE-2017-7877  CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations.    6.8  Medium  2017-04-27  2017-04-21  View
19693  CVE-2016-3956  The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers.    Medium  2017-01-19  2016-07-08  View
85229  CVE-2012-6697  InspIRCd before 2.0.7 allows remote attackers to cause a denial of service (infinite loop).    Medium  2017-04-27  2017-04-19  View

Page 16998 of 17672, showing 5 records out of 88360 total, starting on record 84986, ending on 84990

Actions