2017-04-02
2017-04-02 20:59Z
CRIT

CVE-2014-9693 — Huawei Tecal_rh1288_v2_firmware: Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2014-9693

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier ve CVSSv3.1 9.8 (CRITICAL)

CWECWE 19VNDHuaweiTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-04-02
2017-04-02 20:59Z
HIGH

CVE-2014-9137 — Huawei Fusionmanager: USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2014-9137

Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with software V300R001C00SPC900 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface. CVSSv3.1 8.8 (HIGH)

CWECWE 352VNDHuaweiTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 20:59Z
HIGH

CVE-2014-9136 — Huawei Fusionmanager: with software V100R002C03 and V100R003C00 could allow an unauthenticated, remote attacker to

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2014-9136

Huawei FusionManager with software V100R002C03 and V100R003C00 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface. CVSSv3.1 8.8 (HIGH)

CWECWE 352VNDHuaweiTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 20:59Z
HIGH

CVE-2014-4707 — Huawei Campus_s7700_firmware: Campus S7700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00S

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2014-4707

Huawei Campus S7700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300 allow unauthorized users to upgrade the bootrom or bootload software, bypass a Menu protection mechanism, conduct a Menu compromise attack, or bypass a Menu/upgrade protection mechanism. CVSSv3.1 8.8 (HIGH)

CWECWE 284VNDHuaweiTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2485 — Apple Iphone_os: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2485

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Security" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted X.509 certificate file. CVSSv3.1 8.8 (HIGH)

CWECWE 416VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2481 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2481

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
CRIT

CVE-2017-2477 — Apple Mac_os_x: It allows remote attackers to cause a denial of service (memory corruption) or possibly

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2477

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "libxslt" component. It allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors. CVSSv3.1 9.8 (CRITICAL)

CWECWE 119VNDAppleTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
728 × 90 / responsive · programmatic ad slot
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2476 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2476

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2471 — Apple Safari: A use-after-free vulnerability allows remote attackers to execute arbitrary code via a crafted web

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2471

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. watchOS before 3.2 is affected. The issue involves the "WebKit" component. A use-after-free vulnerability allows remote attackers to execute arbitrary code via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 416VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2470 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2470

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2469 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2469

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2468 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2468

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2466 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2466

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2465 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2465

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2464 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2464

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2463 — Apple Icloud: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2463

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 416VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2460 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2460

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2459 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2459

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2457 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2457

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2455 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2455

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2454 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2454

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2447 — Apple Safari: It allows remote attackers to obtain sensitive information or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2447

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to obtain sensitive information or cause a denial of service (memory corruption) via a crafted web site. CVSSv3.1 8.1 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2446 — Apple Safari: It allows remote attackers to execute arbitrary code via a crafted web site that

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2446

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code via a crafted web site that leverages the mishandling of strict mode functions. CVSSv3.1 8.8 (HIGH)

VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
HIGH

CVE-2017-2444 — Apple Safari: It allows remote attackers to execute arbitrary code or cause a denial of service

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2444

An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "CoreGraphics" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. CVSSv3.1 8.8 (HIGH)

CWECWE 119VNDAppleTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-04-02
2017-04-02 01:59Z
CRIT

CVE-2017-2434 — Apple Iphone_os: It allows attackers to have an unspecified impact by leveraging the presence of Home

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-2434

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the "HomeKit" component. It allows attackers to have an unspecified impact by leveraging the presence of Home Control on Control Center. CVSSv3.1 9.8 (CRITICAL)

CWECWE 20VNDAppleTYPVulnerability
9.8
CVSS v3.1
99
Edit Score